Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft
File:                     ZFOB6enwr6NsKmagd8odV50ikr8.mft (raw, json)
Hash identifier:          i1dNIWAkarjcitezwwcWbHlfChNq7M5di0bfa/7Pcdo=
Subject key identifier:   B2:7B:1B:8E:16:08:BE:56:92:67:70:CA:EA:7D:98:8B:D2:26:A4:54
Authority key identifier: 64:53:81:E9:E9:F0:AF:A3:6C:2A:66:A0:77:CA:1D:57:9D:22:92:BF
Certificate issuer:       /CN=645381e9e9f0afa36c2a66a077ca1d579d2292bf
Certificate serial:       018F874973C31CFD00CE7155B5BD3F05EC8F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZFOB6enwr6NsKmagd8odV50ikr8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft
Manifest number:          0F93
Signing time:             Fri 17 May 2024 16:01:28 +0000
Manifest this update:     Fri 17 May 2024 16:01:28 +0000
Manifest next update:     Sat 18 May 2024 16:01:28 +0000
Files and hashes:         1: ZFOB6enwr6NsKmagd8odV50ikr8.crl (hash: o28CVYIJZLLRrsr2IMdgofviChlCJqtGRY5RUGw8Fjw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZFOB6enwr6NsKmagd8odV50ikr8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:73:c3:1c:fd:00:ce:71:55:b5:bd:3f:05:ec:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=645381e9e9f0afa36c2a66a077ca1d579d2292bf
        Validity
            Not Before: May 17 16:01:28 2024 GMT
            Not After : May 18 16:01:28 2024 GMT
        Subject: CN=b27b1b8e1608be56926770caea7d988bd226a454
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:9f:96:48:57:a4:bf:4c:dc:53:d0:f0:73:f3:
                    8f:8d:dc:93:bf:d9:7f:54:d5:70:fe:3f:c8:01:39:
                    1e:4b:05:6f:d4:c7:bf:67:34:61:4c:bd:e9:db:34:
                    80:05:c7:5c:03:ab:e1:47:c4:19:90:37:5a:20:95:
                    71:a7:f1:1c:f8:6a:be:06:21:5f:47:a5:84:6d:15:
                    54:ff:a6:a8:03:f3:73:ff:cc:23:0c:71:68:c9:74:
                    5c:43:e7:e9:c2:4e:e1:05:74:e5:6b:f2:60:99:dd:
                    51:7c:e7:9f:a2:1f:39:f7:41:8c:3f:e7:71:3a:39:
                    bc:f1:44:49:36:95:fc:9b:bb:f5:2a:8c:09:90:70:
                    2e:24:b5:b9:b5:37:7f:8d:c9:81:e2:72:27:c1:c9:
                    50:6f:33:30:e9:c4:c4:fd:91:f1:a5:e7:cf:cd:cc:
                    88:53:41:5f:d8:67:dc:c0:a7:ae:6c:7f:50:2a:2b:
                    c2:16:c4:08:e3:f4:b5:2c:30:57:76:3d:e3:ab:ca:
                    53:3b:15:f4:5e:88:ce:08:1d:ae:61:65:1b:48:41:
                    43:b8:6b:dd:76:c4:6d:53:0a:10:c8:d1:c2:6b:25:
                    99:6d:23:fa:38:03:72:65:8b:b1:b7:a1:36:48:b8:
                    a5:95:e6:19:0e:6a:a5:75:bf:ec:b6:ff:b3:01:d0:
                    ae:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:7B:1B:8E:16:08:BE:56:92:67:70:CA:EA:7D:98:8B:D2:26:A4:54
            X509v3 Authority Key Identifier:
                keyid:64:53:81:E9:E9:F0:AF:A3:6C:2A:66:A0:77:CA:1D:57:9D:22:92:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZFOB6enwr6NsKmagd8odV50ikr8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:67:4f:94:f4:c4:15:6d:42:e0:27:82:ce:da:f0:23:2b:8c:
         f2:96:bb:db:c4:23:0e:15:99:ea:84:b1:d0:a4:3a:69:4b:38:
         9c:6e:d6:a8:c4:9b:db:bc:6b:a1:eb:56:f4:20:8f:82:4c:52:
         e3:95:f9:5c:4c:26:59:d8:ae:ae:5f:f8:19:de:1c:a4:64:8b:
         c2:39:0d:95:d4:db:97:85:16:32:c8:dd:b7:3d:81:4b:1c:47:
         a0:d7:55:bc:62:6d:98:89:98:72:5b:0d:74:e1:c0:4c:9f:02:
         0f:a5:44:b3:cf:3c:28:06:3d:3e:58:3c:86:8d:61:2c:18:65:
         64:9f:dd:7a:63:04:f0:f1:87:57:cc:35:f8:94:18:03:e0:2b:
         78:bc:1e:67:6c:9f:c3:4b:1f:72:fd:8f:74:ed:6c:62:c8:7d:
         a9:57:99:51:5b:6e:f4:68:4b:6e:46:dd:66:39:66:4b:8e:6a:
         9e:84:84:3b:54:68:21:46:7b:fc:03:c3:2a:90:44:3f:ca:6d:
         b2:55:41:6a:4b:28:90:60:aa:25:eb:a5:90:ed:36:20:cc:bd:
         0f:2b:4f:ab:d0:a8:2a:f6:9a:0d:75:08:30:2a:92:84:b1:e4:
         9e:8d:ee:ac:3e:c2:c8:3f:fe:37:e2:b9:50:91:ad:bd:a0:94:
         6e:a3:1f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----