Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
File:                     aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json)
Hash identifier:          juquVP6zjpYjB7B2yHPQAKx4BwlHz7xhphz9rChbWbk=
Subject key identifier:   B5:4D:A0:8A:2A:26:87:2A:DB:2A:10:36:7B:08:8D:49:15:60:71:90
Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
Certificate issuer:       /CN=6a89936276ad2d187107dfb7400793003ac149a7
Certificate serial:       018F86A3E1DC25BC5186696C384E1522AF65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
Manifest number:          1106
Signing time:             Fri 17 May 2024 13:00:38 +0000
Manifest this update:     Fri 17 May 2024 13:00:38 +0000
Manifest next update:     Sat 18 May 2024 13:00:38 +0000
Files and hashes:         1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: C8AZZI1V5+09E6Mc6zNN3N33yUA9XFnSuHVXRoGoLiM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 13:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:86:a3:e1:dc:25:bc:51:86:69:6c:38:4e:15:22:af:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7
        Validity
            Not Before: May 17 13:00:38 2024 GMT
            Not After : May 18 13:00:38 2024 GMT
        Subject: CN=b54da08a2a26872adb2a10367b088d4915607190
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:29:09:cf:8f:b9:bc:f1:8f:c7:ae:fd:80:a0:
                    24:45:38:de:5e:63:43:df:79:22:27:89:e1:67:44:
                    d6:d9:6e:11:c2:6a:04:a4:fc:c9:26:e4:d9:ff:95:
                    8c:54:4a:16:78:75:37:50:17:57:4b:c6:22:2e:0a:
                    53:38:70:e0:f2:60:50:71:ed:db:67:33:ec:3c:e3:
                    ae:94:4c:d2:13:9d:01:00:2a:a5:6b:62:08:8c:ae:
                    a7:31:90:ce:09:a7:f3:07:7f:b1:89:95:4e:b3:10:
                    a6:7b:8c:ab:45:cf:3a:6d:42:eb:77:55:04:94:b8:
                    3d:4b:9b:92:37:6b:46:78:38:89:f7:39:1c:ed:2b:
                    52:af:1c:d1:d5:0a:38:89:62:c8:d8:57:7b:2a:f7:
                    b9:4b:76:17:2b:c4:2d:ba:cb:e6:2d:69:c1:01:60:
                    f7:3e:00:3a:28:5a:79:cd:53:b0:24:71:fa:e3:29:
                    61:ba:08:42:1f:67:2a:74:79:3e:31:6e:f7:37:02:
                    61:ea:eb:b8:2b:aa:93:99:19:f6:cb:cd:f7:8d:c4:
                    3d:0f:3d:93:f4:0f:2f:d3:1f:13:5c:f9:6b:59:0b:
                    61:5a:58:3f:aa:a1:0a:54:cd:4f:fb:60:04:61:ac:
                    0d:cd:6b:98:39:d0:db:9b:b5:8f:64:32:98:76:5f:
                    4f:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:4D:A0:8A:2A:26:87:2A:DB:2A:10:36:7B:08:8D:49:15:60:71:90
            X509v3 Authority Key Identifier:
                keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:dc:14:f4:2a:e1:4b:16:48:6b:6d:6d:72:85:67:69:7a:8c:
         60:f1:9a:38:cb:38:ed:7c:b1:b7:30:60:81:6c:31:2d:d3:4e:
         f9:ef:ed:b2:5d:52:70:ce:ce:28:94:50:b4:73:e5:bd:92:74:
         93:1f:1b:5c:9b:e7:b9:94:dd:c2:65:f8:9a:55:0a:e0:75:d5:
         da:b4:6d:60:30:44:ef:bd:f4:83:c3:f4:e8:77:1f:26:d5:f5:
         75:91:09:93:5a:ec:42:1f:24:99:5a:8a:72:ef:9c:3c:ab:2a:
         b0:a6:82:3f:81:d3:7c:3f:bc:04:64:08:e2:79:bd:64:a9:ed:
         a3:35:d3:8f:76:39:25:50:ba:40:21:35:71:4c:4a:57:7c:70:
         04:15:c2:97:e8:c1:6d:2d:d2:33:c0:56:1f:0c:d3:1f:09:98:
         8e:dc:77:ac:c1:d7:f7:6b:dd:0b:a5:f7:5f:a2:8c:9e:2f:02:
         69:f2:0e:92:c0:cf:f4:bf:d4:06:26:98:01:c3:5e:57:13:12:
         55:fa:5e:ec:2e:d5:8e:3b:c6:c9:1a:f6:9b:87:9c:a6:fb:85:
         84:1b:71:56:73:c2:b7:e4:3e:59:a6:c6:43:17:0f:31:c3:00:
         f2:82:fd:71:84:95:f7:d4:76:5d:e7:18:66:b0:7d:b0:97:13:
         7e:f9:8d:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----