Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
File:                     6MSDt1wtsc-f9OlMeg_fDbAADwA.mft (raw, json)
Hash identifier:          xHB/jrMV3FjrGHxXjMrIitM+fKmkPvuWdDIq/qXBdDA=
Subject key identifier:   A2:F1:2A:79:FA:19:D6:8F:54:98:9F:DD:94:20:F6:2E:62:C3:FF:87
Authority key identifier: E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00
Certificate issuer:       /CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00
Certificate serial:       018F57A62D8C1B7FA55DCA7F3D914B4C23B4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
Manifest number:          0C9B
Signing time:             Wed 08 May 2024 10:00:59 +0000
Manifest this update:     Wed 08 May 2024 10:00:59 +0000
Manifest next update:     Thu 09 May 2024 10:00:59 +0000
Files and hashes:         1: 6MSDt1wtsc-f9OlMeg_fDbAADwA.crl (hash: g6VKWTCgJuobXUX/RJeW/JZ4781MJzTYx221G6JOLtE=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 May 2024 08:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:57:a6:2d:8c:1b:7f:a5:5d:ca:7f:3d:91:4b:4c:23:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00
        Validity
            Not Before: May  8 10:00:59 2024 GMT
            Not After : May  9 10:00:59 2024 GMT
        Subject: CN=a2f12a79fa19d68f54989fdd9420f62e62c3ff87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:af:7d:30:0c:9e:1f:08:83:61:f7:ab:1e:6b:
                    54:e5:49:20:e4:02:e7:d4:43:bd:a3:a5:f6:cd:7c:
                    e3:58:b5:84:8a:2a:28:58:bb:7e:2d:d3:cb:89:b9:
                    86:79:2f:88:58:d6:cd:25:20:95:27:a3:6c:b4:8c:
                    04:95:9e:50:1b:6c:01:07:11:98:53:70:fe:d7:b8:
                    30:46:12:d6:74:21:e9:32:7a:96:51:29:ab:48:74:
                    73:66:9e:86:d5:f4:af:8a:b7:77:fc:e1:74:52:9c:
                    18:08:55:bd:b2:6a:29:2a:85:d3:10:4a:b6:42:85:
                    3e:23:aa:76:6a:16:66:13:73:6d:e2:cf:f1:47:70:
                    f9:d4:a5:b1:73:c7:4b:e6:4e:00:9c:58:26:4e:6b:
                    a3:4d:db:fd:54:10:1c:db:df:20:f1:de:65:5a:07:
                    a3:ed:f2:cb:c0:c4:88:f1:91:d9:91:ec:e6:b1:32:
                    c9:72:8e:64:5e:26:f1:81:54:4e:cb:34:ee:9b:4b:
                    d4:6f:1f:db:c1:4e:30:23:83:f9:56:82:b9:cb:e6:
                    cb:38:95:6d:e3:26:9a:33:b7:6d:a5:ab:2f:93:82:
                    12:fd:e2:68:9e:79:06:25:9f:47:b7:1e:96:85:b4:
                    dd:21:94:ac:90:b7:f5:55:60:e6:fd:61:8d:1c:0c:
                    8e:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:F1:2A:79:FA:19:D6:8F:54:98:9F:DD:94:20:F6:2E:62:C3:FF:87
            X509v3 Authority Key Identifier:
                keyid:E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:8e:3a:18:22:29:ad:8e:74:43:2e:05:83:03:f2:fc:e7:00:
         f9:20:a3:5f:17:5a:89:7e:fb:93:69:8c:92:ae:d5:8b:19:6b:
         99:a8:33:99:62:1c:ca:1a:41:3e:ea:20:4d:59:ef:28:61:45:
         b7:60:db:18:bc:8b:c3:94:05:f3:60:db:6b:71:ce:74:3e:0a:
         2a:1e:34:9d:41:d3:16:d4:46:f0:b7:6b:bb:f7:92:4c:8f:51:
         5e:9c:87:eb:5d:ac:23:ce:1c:2d:bb:77:66:88:59:c4:88:30:
         50:73:12:fb:8d:b3:ee:9b:c6:52:04:f4:d1:14:28:34:93:e6:
         27:4c:f7:85:4a:c0:e7:af:21:34:80:0a:d3:41:5b:74:6b:76:
         8e:1e:a7:79:a2:57:70:0e:74:e3:1a:40:d2:74:a2:49:9d:d5:
         ab:ba:4f:ab:01:67:d7:c1:fb:3b:e3:55:d6:14:04:20:d3:c3:
         3e:32:7d:74:2d:e3:df:3f:c4:0f:52:21:fd:39:9c:57:e0:b7:
         94:84:db:9d:f2:57:88:dd:b8:2e:39:ae:a6:b3:89:8e:1c:ee:
         17:38:56:57:3e:af:17:66:bb:dd:98:1a:d3:b0:93:af:62:12:
         4f:1a:de:26:2f:3c:f9:0c:d8:8f:09:9f:e5:5c:0c:ee:e9:0a:
         4f:a8:1d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----