Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
File:                     TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft (raw, json)
Hash identifier:          uuj5M/dWNqRAJ1bf/8z/3A66Qw/mS8LdyVFRF3YsvkM=
Subject key identifier:   87:B6:C3:1F:F4:F6:DE:8B:11:EA:B8:DB:A8:1C:B3:B1:6F:43:0D:BD
Authority key identifier: 4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
Certificate issuer:       /CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Certificate serial:       019235B7AFE64D301931CDDC515D09ACCB2F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
Manifest number:          084E
Signing time:             Fri 27 Sep 2024 23:01:23 +0000
Manifest this update:     Fri 27 Sep 2024 23:01:23 +0000
Manifest next update:     Sat 28 Sep 2024 23:01:23 +0000
Files and hashes:         1: TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl (hash: tw6V8bOKsUayImAm+LcpEHj0FaDfBSAtI5G9/7nsDpA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 28 Sep 2024 22:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:92:35:b7:af:e6:4d:30:19:31:cd:dc:51:5d:09:ac:cb:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
        Validity
            Not Before: Sep 27 23:01:23 2024 GMT
            Not After : Sep 28 23:01:23 2024 GMT
        Subject: CN=87b6c31ff4f6de8b11eab8dba81cb3b16f430dbd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:39:f2:dc:14:99:26:33:00:57:d7:a2:7d:81:
                    8f:f1:8a:74:dd:4b:12:93:f8:c9:3a:7f:c8:2a:0d:
                    d0:97:38:83:89:73:1b:f6:3a:e7:22:7c:fc:e2:ad:
                    e7:e1:ad:7a:5d:d7:51:81:a1:49:ee:69:49:33:28:
                    40:f8:60:4f:c0:91:58:1a:c7:f4:b2:fc:cc:b2:0d:
                    ec:a2:f6:14:d9:ee:a1:0c:c8:d6:4b:6b:1a:f6:83:
                    9d:44:81:4c:2e:c0:29:7c:c7:cc:e1:a4:e8:0d:f1:
                    7e:18:65:eb:94:40:21:fd:10:b5:f3:50:e3:c7:d1:
                    67:15:d0:9a:53:c2:4e:56:94:97:f3:0d:27:ab:8b:
                    5a:c6:a9:6b:16:d4:3d:e2:a1:04:7e:1d:61:1f:af:
                    28:8d:00:0e:42:4d:85:5f:48:3f:26:b3:3a:cf:5d:
                    4c:98:df:b0:9c:98:f2:72:0d:5b:61:65:bb:ff:59:
                    0d:28:cb:3b:cc:ed:8d:b0:d4:4f:03:6a:34:0a:8b:
                    58:92:a9:ae:38:22:44:2b:50:8d:87:f6:68:73:d9:
                    f6:45:ef:b2:9f:39:57:66:bb:95:e9:45:90:d2:c9:
                    ec:d1:ae:bb:11:8b:d6:31:cb:a0:99:64:e6:0f:ae:
                    c6:44:6f:ac:dd:00:a6:34:22:c2:b6:31:be:c0:c4:
                    b7:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:B6:C3:1F:F4:F6:DE:8B:11:EA:B8:DB:A8:1C:B3:B1:6F:43:0D:BD
            X509v3 Authority Key Identifier:
                keyid:4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:10:bf:f0:21:c4:69:7b:8e:43:a3:e7:8a:d1:a2:00:e6:20:
         39:89:f3:a1:09:99:f7:d3:01:c4:0f:ef:9c:50:a4:ba:37:be:
         1a:70:8a:af:ff:89:eb:d7:8a:71:b1:dc:ee:41:1e:53:ee:0f:
         15:95:26:ce:6c:38:f0:77:ba:33:7b:c6:41:9b:b7:42:43:34:
         21:88:47:8c:2c:bc:7d:a0:2d:e6:b0:98:41:e1:f3:84:c4:d5:
         77:df:68:be:6e:01:ef:99:97:12:26:ca:79:9e:56:91:79:50:
         c0:d7:fa:18:97:9d:ad:37:22:6e:83:ef:86:dc:8f:13:a9:eb:
         43:c0:b0:7c:f8:ab:c3:2f:22:26:f0:cf:9d:b7:31:44:3e:5d:
         dc:68:59:53:17:de:25:1c:a2:53:b0:74:4f:b5:7d:d9:75:3c:
         af:76:56:d0:e6:01:14:15:c4:39:54:34:3e:45:e6:b5:5f:58:
         c6:60:6b:91:2a:90:e1:ef:20:4a:5d:fa:50:b7:6e:c7:51:92:
         46:57:4b:12:ec:46:42:4a:1f:e6:ad:c8:4f:b5:12:f5:9f:1b:
         79:07:fa:b8:00:47:fb:2f:71:1f:6f:0e:e3:ec:9d:c2:b6:ec:
         ae:17:08:1d:8e:73:ec:ba:60:5b:14:41:ff:82:9b:d0:4f:6e:
         08:44:9a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----