Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
File:                     FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json)
Hash identifier:          S0RpxSd+ELVFm9DUyCeWbv+vbLkeRawt4Mb/70Au/VM=
Subject key identifier:   FC:D5:BE:55:E3:9C:4E:EB:7B:9B:F3:AC:48:B6:48:2E:71:98:4F:C9
Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23
Certificate issuer:       /CN=156fa931c85eb798c682dc32e42909d71c923b23
Certificate serial:       019237DCE6BEA7B9FC00B58B2BDFB9CCF22E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
Manifest number:          01C6
Signing time:             Sat 28 Sep 2024 09:01:16 +0000
Manifest this update:     Sat 28 Sep 2024 09:01:16 +0000
Manifest next update:     Sun 29 Sep 2024 09:01:16 +0000
Files and hashes:         1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: m1Me1eXoS2zYGC12Xk/WnOrAkT5fY0TFQg9AJveAf5o=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Sep 2024 06:21:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:92:37:dc:e6:be:a7:b9:fc:00:b5:8b:2b:df:b9:cc:f2:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23
        Validity
            Not Before: Sep 28 09:01:16 2024 GMT
            Not After : Sep 29 09:01:16 2024 GMT
        Subject: CN=fcd5be55e39c4eeb7b9bf3ac48b6482e71984fc9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:c7:e6:01:8c:62:c3:13:48:a5:f5:1f:96:dc:
                    e1:0f:44:fa:d8:cb:69:32:6e:8f:92:25:54:73:a3:
                    b4:ec:f8:95:d4:bc:c6:db:a8:eb:82:2e:23:4b:c6:
                    54:15:c1:37:21:3f:53:61:62:4f:57:b7:1a:8d:26:
                    60:03:77:19:13:af:fc:af:ee:ef:d9:57:7d:ff:cf:
                    58:c5:c8:4f:bc:a9:81:55:11:9f:67:af:b0:b2:7b:
                    fb:fb:9a:3f:c5:03:cf:d2:0c:16:3d:71:94:97:70:
                    8e:e2:7b:db:15:3c:20:49:61:da:85:c0:a3:a6:fc:
                    d0:5b:b3:44:23:e3:14:0f:f9:af:c5:3d:d0:50:90:
                    7f:d2:c8:da:ab:59:a9:8c:ea:6d:72:26:fd:30:35:
                    db:99:ec:ae:1c:2d:ef:bc:e9:69:11:35:f7:b4:6d:
                    99:19:59:ad:e8:c2:ca:78:59:99:a7:dc:b3:96:06:
                    b1:76:b3:27:1c:51:5d:4d:8d:c1:e5:a4:ff:cf:6c:
                    22:bc:98:6a:42:ae:09:ff:e3:f4:5d:ca:18:b6:b9:
                    d1:a2:ac:e9:6e:94:86:dc:22:9d:33:16:19:4c:af:
                    5d:6d:ff:de:62:d0:1c:de:58:07:c6:cf:67:b0:59:
                    23:57:3f:70:37:a6:3d:79:4a:7d:11:d1:b2:61:79:
                    41:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:D5:BE:55:E3:9C:4E:EB:7B:9B:F3:AC:48:B6:48:2E:71:98:4F:C9
            X509v3 Authority Key Identifier:
                keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:30:6a:85:ac:b8:8f:1a:97:01:47:a6:7d:4c:98:78:9b:b0:
         0a:80:17:c8:14:d4:fe:52:a5:fa:71:73:ad:83:c6:cb:d1:6d:
         e1:f5:79:5d:10:cb:6d:a3:29:da:7a:4c:e2:80:0e:50:e4:8d:
         de:c5:58:6d:f5:f4:61:35:81:0c:54:f0:8c:fc:d7:eb:3d:58:
         b3:85:28:cb:77:02:60:c6:e9:a4:9a:3f:5f:97:3d:2a:80:d0:
         dc:6e:03:56:a9:99:64:c6:05:c2:7b:a8:bd:33:63:ba:ef:c3:
         69:32:b6:5f:4f:ac:bf:33:f2:ff:5a:68:0b:9f:5b:89:d6:36:
         32:20:93:d5:b6:1c:b0:98:2a:63:fa:50:6c:78:19:a3:0b:87:
         36:eb:a4:79:df:29:c9:09:91:0b:80:7b:35:12:d2:ba:de:ce:
         9d:64:35:3a:40:65:ee:ea:17:f3:70:54:8a:13:d6:2a:48:11:
         ee:5c:40:25:15:34:df:b2:89:34:eb:8d:99:c6:f7:d6:42:03:
         63:03:a3:1a:11:55:4d:11:74:7e:12:02:6f:82:77:75:44:c1:
         33:62:f3:e6:b4:6a:2f:aa:41:c8:27:42:1b:e7:6a:31:ae:49:
         11:f2:00:f4:e7:57:a7:fd:6a:95:78:85:f0:0f:5b:27:a0:9a:
         0d:32:e4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----