Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft
File:                     4H6guRTmNDEcyfDvoUSPy3l9OJw.mft (raw, json)
Hash identifier:          pW9yWr0pr49MbHV14K9bpXMiNviCjfEwqI8WMVh3jFA=
Subject key identifier:   E6:8F:97:33:76:33:CE:61:D4:71:6D:D5:4B:FE:5D:A3:6E:08:1E:E8
Authority key identifier: E0:7E:A0:B9:14:E6:34:31:1C:C9:F0:EF:A1:44:8F:CB:79:7D:38:9C
Certificate issuer:       /CN=e07ea0b914e634311cc9f0efa1448fcb797d389c
Certificate serial:       01940646FC1C8E2FEBA1481C372C64ECE18A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4H6guRTmNDEcyfDvoUSPy3l9OJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft
Manifest number:          0A99
Signing time:             Fri 27 Dec 2024 04:01:42 +0000
Manifest this update:     Fri 27 Dec 2024 04:01:42 +0000
Manifest next update:     Sat 28 Dec 2024 04:01:42 +0000
Files and hashes:         1: 4H6guRTmNDEcyfDvoUSPy3l9OJw.crl (hash: qSWe+xu4b4hOsDsI4t6+VHSqN2uLyiperEK3qC1Sfeg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4H6guRTmNDEcyfDvoUSPy3l9OJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 28 Dec 2024 00:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:06:46:fc:1c:8e:2f:eb:a1:48:1c:37:2c:64:ec:e1:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e07ea0b914e634311cc9f0efa1448fcb797d389c
        Validity
            Not Before: Dec 27 04:01:42 2024 GMT
            Not After : Dec 28 04:01:42 2024 GMT
        Subject: CN=e68f97337633ce61d4716dd54bfe5da36e081ee8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:ef:f9:4d:8e:c1:69:0d:5b:d3:95:73:68:96:
                    d2:92:3d:66:e7:fb:4d:53:6b:98:a9:7a:71:ff:ec:
                    83:d3:83:9e:42:b3:34:d2:94:73:19:df:c1:16:d9:
                    0f:8e:cf:da:b0:e7:46:ff:c1:31:ae:0e:c4:1c:b2:
                    e8:a1:31:d7:63:ea:cd:6e:f1:3a:6b:87:5d:7b:c1:
                    ba:b5:0c:79:5f:54:73:fc:33:f3:14:87:29:6c:d1:
                    79:a0:8d:a1:2d:da:fe:47:65:83:4f:a4:72:fc:9d:
                    dc:3a:9e:6a:e9:1c:82:eb:25:da:3c:59:06:a0:8a:
                    45:bd:0d:5c:62:a9:a8:14:0b:4f:1e:fc:9e:a8:91:
                    01:26:f2:ca:45:b4:90:69:b9:35:e7:e4:0b:25:dc:
                    74:ef:86:05:46:d8:43:54:c5:8f:16:a0:81:22:2c:
                    dc:ba:5e:da:9d:04:8f:9d:93:07:ef:66:0f:22:5d:
                    b9:d5:64:27:f6:bd:ad:b0:8d:76:67:91:73:62:88:
                    4d:6c:3d:b3:9c:36:64:ad:7e:66:74:f8:6e:8a:8e:
                    08:f4:dc:33:c7:05:b3:4c:1f:46:bb:cb:06:62:26:
                    e6:f2:6a:87:fe:5a:2a:da:61:3b:3c:14:ce:06:22:
                    5e:9e:7a:7f:ed:0d:2f:71:a7:1f:f0:81:c3:eb:04:
                    e6:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:8F:97:33:76:33:CE:61:D4:71:6D:D5:4B:FE:5D:A3:6E:08:1E:E8
            X509v3 Authority Key Identifier:
                keyid:E0:7E:A0:B9:14:E6:34:31:1C:C9:F0:EF:A1:44:8F:CB:79:7D:38:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4H6guRTmNDEcyfDvoUSPy3l9OJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b66a81-3e89-4392-9644-6c561ab82ae3/1/4H6guRTmNDEcyfDvoUSPy3l9OJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:69:5d:8e:3c:1f:d6:77:cb:3d:b1:bb:8c:69:90:26:17:0b:
         a1:01:8f:21:c6:59:4f:95:cb:d9:45:cf:0d:5d:10:49:21:5e:
         87:9d:65:b4:6c:ac:aa:48:70:6a:e3:49:67:39:1a:c5:37:77:
         0b:15:2e:d4:f2:df:43:10:b7:85:12:1c:8b:fb:6b:1f:cf:0e:
         86:d1:cf:c9:e8:20:20:d8:e4:09:53:2b:bb:a8:4a:97:b5:7d:
         41:ed:6a:7b:15:e8:89:d7:3d:c5:c8:5c:bb:6a:63:e1:c7:6f:
         d3:30:d5:27:c0:b6:53:0c:07:ba:3d:bd:7d:3e:24:ef:f8:15:
         dd:47:93:50:69:0d:cc:40:90:48:5c:98:0d:81:01:d3:1f:4e:
         73:5f:5e:76:2f:03:71:a7:10:c7:85:e4:62:a2:af:a7:41:30:
         8d:54:07:4b:94:cb:e0:82:55:9a:10:c8:f8:94:32:13:17:88:
         0d:25:d2:65:b9:45:39:c3:e9:54:50:8d:3e:29:b3:b8:b2:5b:
         82:35:ef:51:89:a4:4b:56:c1:a9:68:86:3c:b2:96:03:d7:7d:
         3e:e7:df:c3:79:df:d2:eb:42:f8:09:5a:7b:0c:47:a7:5d:4e:
         bf:e7:97:6e:02:99:c1:41:fb:88:00:d8:ff:06:c5:17:00:0d:
         4f:80:c0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----