Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
File:                     79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json)
Hash identifier:          oLkM5p21VKFJo/7mZyos28N0o3J9c44OAMgH64a2Ij4=
Subject key identifier:   67:26:42:30:67:60:3D:65:4A:38:F8:06:81:43:80:0F:80:F2:7E:88
Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A
Certificate issuer:       /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
Certificate serial:       0194056A4A9751767555979C775A13EA2B5E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
Manifest number:          03A3
Signing time:             Fri 27 Dec 2024 00:00:39 +0000
Manifest this update:     Fri 27 Dec 2024 00:00:39 +0000
Manifest next update:     Sat 28 Dec 2024 00:00:39 +0000
Files and hashes:         1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: GsudKE9n8Ed2EEFcgWh4/zkkPV9AFmydGzRkzQSA4nk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 28 Dec 2024 00:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:05:6a:4a:97:51:76:75:55:97:9c:77:5a:13:ea:2b:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
        Validity
            Not Before: Dec 27 00:00:39 2024 GMT
            Not After : Dec 28 00:00:39 2024 GMT
        Subject: CN=6726423067603d654a38f8068143800f80f27e88
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:92:4d:1a:d9:94:47:4b:a5:d5:d2:dc:f7:85:
                    63:6c:98:1a:3d:a3:f4:77:1c:e8:31:81:ba:2a:cd:
                    12:0b:7f:b7:c4:3b:78:15:ea:cc:63:6c:85:7f:c6:
                    b6:1b:70:5a:be:52:4d:dd:66:29:1d:a4:e1:01:f1:
                    14:2c:16:f4:af:fc:c8:82:ff:4f:9f:9d:b2:51:36:
                    f8:fb:c6:5b:3b:a3:35:de:89:89:55:e1:a3:92:2c:
                    7e:00:82:9d:39:90:f9:36:e4:22:29:f1:3d:1f:1d:
                    3f:45:c2:72:15:3b:43:19:fb:cd:0b:71:77:9d:64:
                    2d:a1:38:06:22:5a:10:b9:dd:80:f0:f0:24:69:67:
                    0b:1b:b7:ea:3c:bd:d0:83:fd:05:47:ef:82:24:c7:
                    ba:be:3e:83:9c:68:5c:f6:c2:67:70:39:5c:2b:ec:
                    4d:cc:ea:bf:ab:85:36:72:b6:29:20:f2:89:5b:e5:
                    3e:1e:4c:a4:70:ce:45:58:81:3f:eb:b4:1f:6f:47:
                    73:51:66:ff:73:7c:80:e9:87:0c:0c:fc:36:0a:88:
                    39:fc:38:0a:78:41:c0:c3:86:8b:1d:a9:7d:05:93:
                    e8:23:35:26:fc:ee:06:18:fb:e6:75:20:0d:d7:c9:
                    80:3e:56:3b:fd:1d:cf:ba:ba:19:d3:9d:a4:00:6c:
                    20:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:26:42:30:67:60:3D:65:4A:38:F8:06:81:43:80:0F:80:F2:7E:88
            X509v3 Authority Key Identifier:
                keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:a0:60:57:44:f0:bb:32:40:8c:f2:70:4d:86:9d:71:71:5a:
         69:74:07:c0:f7:30:e7:e5:a0:57:d8:88:fd:de:dd:bf:51:93:
         a0:71:ec:6a:4d:6f:e1:8a:de:0c:45:72:c2:75:ec:84:78:86:
         d0:33:c0:b5:de:d1:18:70:e4:44:b4:9f:ea:7f:4d:db:1a:a9:
         0d:fb:7c:73:4f:1c:9d:57:eb:70:20:a1:0a:df:f0:c0:c2:a5:
         64:2f:60:69:cc:13:38:37:a9:19:fc:05:0a:53:8c:fe:3d:dc:
         eb:69:9a:21:71:f3:15:fc:d7:4e:99:d0:94:6f:64:e4:7a:3e:
         5d:0f:68:74:84:59:98:30:67:bf:8e:83:33:ac:4c:af:15:ce:
         01:01:f1:ee:ad:0a:fa:1e:f6:0e:bb:51:6c:dc:30:02:57:c7:
         06:51:15:59:f0:fd:a0:ac:89:fe:0e:ec:d0:b4:04:f3:55:df:
         66:f8:45:46:dd:f9:61:d2:be:df:3a:5a:94:f6:34:f0:14:03:
         a5:72:4b:6e:fb:75:2f:de:a1:69:69:f9:4e:01:00:40:3a:05:
         89:fa:43:37:19:05:99:e5:61:a1:e4:30:ad:74:2c:11:d4:c4:
         d9:66:2b:9d:f4:77:3f:a6:54:20:a9:1a:04:f3:c1:ea:e1:b2:
         47:43:4c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----