Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File:                     dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier:          /ygcddBe55ZFMsLlpDi3cHdVnFqB8RVywoMCwvy4BHA=
Subject key identifier:   09:59:E9:1C:03:CB:35:6F:AA:A4:35:C5:93:A3:70:61:FC:37:6B:AE
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer:       /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial:       018F87ED752979C73B40F8EAB34385CF36F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number:          1175
Signing time:             Fri 17 May 2024 19:00:37 +0000
Manifest this update:     Fri 17 May 2024 19:00:37 +0000
Manifest next update:     Sat 18 May 2024 19:00:37 +0000
Files and hashes:         1: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: 69IHTlGH3a2MaLQAkyjzVIUJkMUC/rHuuQcee6btvlA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:ed:75:29:79:c7:3b:40:f8:ea:b3:43:85:cf:36:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
        Validity
            Not Before: May 17 19:00:37 2024 GMT
            Not After : May 18 19:00:37 2024 GMT
        Subject: CN=0959e91c03cb356faaa435c593a37061fc376bae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:a0:23:2e:1b:55:6b:29:71:33:e1:78:ee:91:
                    bd:da:c8:1a:24:eb:d6:8f:31:9d:fe:75:f6:e2:98:
                    0a:b5:37:08:da:c1:71:85:38:3f:8a:9a:3b:53:dc:
                    2e:7c:60:64:e3:65:a1:7d:d0:b4:c0:ab:7e:ee:47:
                    57:85:6c:26:7f:41:ea:58:2e:04:1b:30:20:77:9c:
                    cc:5d:fc:7d:1e:5e:7c:16:4a:28:70:9f:f3:c3:2a:
                    17:6f:bb:8d:07:0c:7e:02:94:c5:bb:fe:c9:de:1d:
                    09:55:22:5c:a6:61:75:92:20:9e:1c:8e:73:3d:61:
                    78:3f:14:db:a2:99:49:75:57:ed:e7:c1:e2:cf:ae:
                    fd:2e:a6:09:b7:63:6b:8c:fd:aa:c7:70:1c:fc:a6:
                    a3:be:83:fe:f8:77:9a:f6:ad:b7:91:52:2e:8c:83:
                    20:e2:25:ae:c6:e0:d0:a6:b4:de:28:7e:42:e2:1a:
                    b4:20:fc:d4:d2:f6:da:d8:1a:28:3c:ec:67:ed:d7:
                    1a:d2:fb:67:da:83:d1:63:6d:e1:fe:12:45:5a:89:
                    ed:9e:4d:08:14:09:9f:9b:23:03:d9:f0:59:b2:72:
                    45:27:a8:12:85:44:66:3f:01:92:a8:54:ca:96:74:
                    19:98:26:b0:66:da:b3:3e:be:9c:b8:1e:95:5d:a7:
                    a3:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:59:E9:1C:03:CB:35:6F:AA:A4:35:C5:93:A3:70:61:FC:37:6B:AE
            X509v3 Authority Key Identifier:
                keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         eb:38:75:73:d1:e0:25:c0:26:84:c0:c7:c8:83:bb:a4:9d:2f:
         1c:45:4c:3f:7a:13:2a:ea:30:2e:6a:f9:81:7d:96:7d:5e:0e:
         fd:e1:6c:af:89:1b:2c:c7:1a:e3:65:19:bf:7b:b7:31:71:13:
         00:62:f9:32:24:3d:ba:f5:4d:51:b2:d8:b8:dd:dd:48:5b:ec:
         b6:2f:fa:a5:ca:b5:0d:1f:86:a5:c6:fd:63:5d:81:01:a5:27:
         74:3b:80:0e:04:f1:6d:96:03:43:fa:5b:56:15:68:30:1b:af:
         0f:1b:41:bb:c1:32:b4:73:c7:de:91:bd:24:4c:7d:87:d4:4b:
         9a:c6:ca:1a:b9:b2:53:b0:56:3c:09:74:ef:e0:13:aa:0a:cf:
         70:9a:aa:99:b7:3e:15:f9:91:15:34:72:32:27:69:ea:09:a0:
         83:26:bb:32:f5:2a:1f:1e:21:4c:36:48:ae:6b:3d:61:8e:21:
         7a:9f:f3:00:62:0c:33:d7:42:93:b9:aa:40:cc:b2:10:c5:59:
         6c:dc:a8:57:e1:ed:23:d2:db:16:01:63:32:5a:08:14:b0:2d:
         73:dc:a3:e7:73:4b:74:df:2b:4c:46:7d:1b:77:16:d4:14:7c:
         8a:9d:e5:e5:01:5a:d7:2e:71:98:b8:42:ca:94:5f:66:23:5d:
         a0:fb:82:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----