Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
File:                     oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft (raw, json)
Hash identifier:          sCaiyo00SPWNlSYYJUymUazIb++1AS9zBmPHkhHdR3A=
Subject key identifier:   4D:AE:3B:7F:24:EB:8D:86:41:47:14:9A:FA:EE:DF:89:D5:9F:49:3B
Authority key identifier: A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10
Certificate issuer:       /CN=a223d15344c02a551e63f831c604f80dbec4ba10
Certificate serial:       018F8748B10083666762DCFDE36E7DD1E5C2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
Manifest number:          05CD
Signing time:             Fri 17 May 2024 16:00:38 +0000
Manifest this update:     Fri 17 May 2024 16:00:38 +0000
Manifest next update:     Sat 18 May 2024 16:00:38 +0000
Files and hashes:         1: oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl (hash: r2namAmLFAX8NKtbHU7z58a7vz8R1qBi9KVHlqB5mLU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:b1:00:83:66:67:62:dc:fd:e3:6e:7d:d1:e5:c2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a223d15344c02a551e63f831c604f80dbec4ba10
        Validity
            Not Before: May 17 16:00:38 2024 GMT
            Not After : May 18 16:00:38 2024 GMT
        Subject: CN=4dae3b7f24eb8d864147149afaeedf89d59f493b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:9c:6c:32:2f:66:d2:68:c9:21:4e:51:04:9c:
                    10:68:d5:3a:b9:46:87:93:93:79:f6:89:a1:ae:79:
                    5d:15:3d:b5:6d:66:c7:f7:fd:76:39:97:35:2f:34:
                    82:15:f4:25:37:0c:28:09:7e:fb:bf:e5:2e:1a:b0:
                    6d:5b:85:3b:4e:6a:ce:01:85:11:84:5d:d4:b8:e5:
                    89:cd:14:60:9c:bd:57:ff:70:58:78:cf:30:9c:45:
                    d3:04:df:0b:6c:65:33:9f:cf:3e:a5:4a:10:72:39:
                    20:b7:6a:e6:14:68:14:f2:ed:c1:0a:5f:4f:63:c2:
                    64:48:82:62:dd:89:ce:69:bb:16:52:c4:26:ad:67:
                    ec:85:2c:3c:c9:0c:d0:3a:f3:79:25:3f:41:f6:de:
                    28:17:aa:08:48:80:3f:cd:93:ec:f0:a2:af:1f:cf:
                    df:11:1d:44:90:22:8b:9f:34:7d:e0:0c:32:0e:f9:
                    c4:b1:62:68:15:5f:1e:79:be:16:52:21:5a:f9:d3:
                    95:19:9a:90:c9:1e:52:9b:8e:32:ba:6e:cf:eb:a4:
                    b6:42:95:f6:69:ad:d1:f9:70:b8:f0:d0:bf:93:02:
                    1b:75:8e:96:2d:74:a3:1f:6b:09:44:dc:0f:b2:e3:
                    34:df:b4:d2:50:7b:89:a3:c6:f7:fe:86:53:77:28:
                    cf:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:AE:3B:7F:24:EB:8D:86:41:47:14:9A:FA:EE:DF:89:D5:9F:49:3B
            X509v3 Authority Key Identifier:
                keyid:A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:be:0d:3d:09:0b:3f:8a:f1:88:cf:16:39:c2:e8:1e:da:ca:
         fe:7c:22:8a:85:d4:c8:7e:e9:5c:24:6d:14:06:90:15:e4:4f:
         30:51:10:3c:7e:39:06:6e:9d:aa:8c:4c:af:bf:3d:be:85:96:
         c5:f6:3c:1f:04:cd:14:9a:12:20:75:a8:3c:2d:79:73:c8:64:
         53:ff:d1:23:cb:30:dd:e5:ae:c2:33:9f:fa:cf:31:06:26:a2:
         ef:f9:8e:10:a5:d5:ed:fb:38:f8:db:34:f3:d5:09:26:8d:40:
         3c:46:bf:a7:51:15:74:4f:d1:a9:49:11:0d:5f:ab:b4:a9:06:
         fc:94:4f:98:72:af:f8:8f:b7:9e:bc:77:ce:3e:4d:c1:fe:45:
         f3:fe:2b:1d:2d:d3:2d:e8:1d:c5:61:1d:65:17:0b:78:a2:83:
         ba:23:fd:85:5c:50:15:79:bf:62:9a:21:00:a4:0f:3f:b3:c4:
         e8:28:30:82:1e:42:87:f1:77:6a:2f:97:69:17:89:82:24:a1:
         17:88:8f:c2:7a:3a:3e:db:4e:51:dc:c0:32:ee:27:51:84:19:
         58:e3:32:ee:4f:e8:67:33:82:6d:14:32:97:78:cf:3e:1d:65:
         d9:60:8c:c2:81:ef:dc:94:69:72:e6:86:58:18:b6:26:bc:3a:
         3a:cf:e0:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----