Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File:                     b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier:          Rm9YEEcrGfKtjtV6AtdyzsBXyRRxNMEZWU/CrnmoUMw=
Subject key identifier:   45:B3:3D:FB:2F:64:76:24:CD:95:70:EA:F7:7B:06:E6:75:E3:F7:27
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer:       /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial:       01936AB4E8777C1A306EA33D5F41F6EF90D4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number:          0D73
Signing time:             Tue 26 Nov 2024 23:01:00 +0000
Manifest this update:     Tue 26 Nov 2024 23:01:00 +0000
Manifest next update:     Wed 27 Nov 2024 23:01:00 +0000
Files and hashes:         1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: B7v8gdkm+dbe4NyUtpIW+bCTiQxOI5ILtlW7147Cgus=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:6a:b4:e8:77:7c:1a:30:6e:a3:3d:5f:41:f6:ef:90:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
        Validity
            Not Before: Nov 26 23:01:00 2024 GMT
            Not After : Nov 27 23:01:00 2024 GMT
        Subject: CN=45b33dfb2f647624cd9570eaf77b06e675e3f727
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:73:13:7c:7c:b9:7c:b9:40:e2:b5:6a:9d:4b:
                    29:ed:90:7d:4f:bb:05:29:2f:b4:74:ce:8b:e0:fe:
                    db:d1:56:9b:d6:63:57:2a:4e:96:c3:1c:75:b4:96:
                    5c:c6:b3:1c:22:89:65:da:59:0f:c8:fa:bc:26:30:
                    aa:64:99:7d:52:03:aa:e9:5d:76:7f:f9:0a:6e:1a:
                    96:3a:7f:4a:64:92:d5:a9:b0:db:b0:2c:d2:cb:c3:
                    38:4b:6d:74:f0:19:b5:56:5c:6c:96:1c:6d:60:18:
                    8f:65:d0:f0:ca:2e:d6:f5:5d:f9:ed:d6:a4:dd:c5:
                    54:db:8e:7d:ce:a7:ab:cb:84:37:b5:be:ff:14:99:
                    4a:bc:f7:d8:86:1f:b3:40:1e:1d:4d:73:f2:b1:cc:
                    bd:9e:4d:94:ca:16:ab:3f:b1:af:98:c9:39:8f:43:
                    0c:2b:39:85:22:51:e6:28:b0:47:4c:39:e1:3f:f1:
                    43:0c:0a:c0:c3:ad:af:a2:aa:28:55:30:fb:50:c9:
                    ad:ca:17:91:58:78:50:ba:6a:a2:4d:77:2a:d8:06:
                    32:2e:d9:7c:a7:ce:22:a8:ee:2e:d5:c5:f3:1d:e8:
                    ed:d8:8a:66:9f:8c:12:87:98:11:0c:b7:5a:de:63:
                    0b:5c:29:c0:75:aa:66:fd:f0:31:69:c0:ff:dd:3a:
                    7c:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:B3:3D:FB:2F:64:76:24:CD:95:70:EA:F7:7B:06:E6:75:E3:F7:27
            X509v3 Authority Key Identifier:
                keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:dc:40:1e:8d:24:5d:15:31:7a:de:30:c2:31:a5:d0:45:a3:
         cc:8b:94:10:c5:22:c1:3b:a9:bd:5c:d2:61:99:2b:fd:03:bf:
         17:72:ac:29:68:74:18:d4:ae:d5:67:11:50:e9:35:db:bb:34:
         fc:10:41:c2:01:f0:1e:27:c5:05:df:ec:c2:ba:fd:9e:35:b4:
         d2:ec:c6:46:f7:d1:09:7e:31:58:43:c0:0e:28:5a:36:4a:88:
         b2:43:2f:68:b7:25:58:7d:c2:5a:be:b1:65:98:2f:51:73:96:
         4b:3c:c4:6c:62:97:f1:3e:45:c0:4b:65:8b:c8:44:5d:c2:79:
         52:b0:9d:78:dc:39:04:00:25:10:e3:f8:ec:bb:09:3b:1f:45:
         dc:3f:68:ed:07:6c:bf:47:d6:58:c7:d7:6c:e2:02:7b:ed:97:
         66:d9:40:9c:a7:4c:18:34:af:66:07:c9:41:3a:94:a1:e6:de:
         62:ca:5e:55:3c:ed:8c:d6:98:43:2b:18:2e:13:ab:6f:f4:c7:
         19:b4:79:1d:18:2c:05:e3:5c:35:a2:7f:ee:d1:97:fb:65:fa:
         97:9b:9f:18:07:0a:5b:96:af:f6:71:02:8f:ac:2f:01:70:c4:
         9d:59:1d:ec:a3:0d:b2:b2:45:a0:97:fd:cc:5c:15:08:e6:56:
         37:c9:f0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----