Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft
File:                     oUYsqczoyP_R-dfefH6QXG6JPPw.mft (raw, json)
Hash identifier:          p3skkOMDs4h0nfEQwtdw8p7BrVsp1Ts07uqmHfIrjMs=
Subject key identifier:   2B:31:8B:5C:BD:F2:D6:30:29:19:92:EC:E9:D8:1A:7C:54:0E:FF:09
Authority key identifier: A1:46:2C:A9:CC:E8:C8:FF:D1:F9:D7:DE:7C:7E:90:5C:6E:89:3C:FC
Certificate issuer:       /CN=a1462ca9cce8c8ffd1f9d7de7c7e905c6e893cfc
Certificate serial:       018F874902D7D8FBE68E3C0658E839CD6FB3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oUYsqczoyP_R-dfefH6QXG6JPPw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 16:00:59 +0000
Manifest this update:     Fri 17 May 2024 16:00:59 +0000
Manifest next update:     Sat 18 May 2024 16:00:59 +0000
Files and hashes:         1: oUYsqczoyP_R-dfefH6QXG6JPPw.crl (hash: znDL1jTcP9pzqg+dxgTFQYx+gQHakI6vniv0393AN/8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oUYsqczoyP_R-dfefH6QXG6JPPw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:02:d7:d8:fb:e6:8e:3c:06:58:e8:39:cd:6f:b3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1462ca9cce8c8ffd1f9d7de7c7e905c6e893cfc
        Validity
            Not Before: May 17 16:00:59 2024 GMT
            Not After : May 18 16:00:59 2024 GMT
        Subject: CN=2b318b5cbdf2d630291992ece9d81a7c540eff09
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:03:d7:f6:a0:9e:66:1b:24:37:9c:ec:97:09:
                    9e:a8:b2:8c:38:18:b8:44:de:db:1a:78:8b:43:a2:
                    c9:c0:d6:4f:c7:bd:7f:d6:78:16:b8:39:da:84:8d:
                    c1:a7:46:cc:c9:02:ab:27:7b:54:56:62:86:dc:f1:
                    0b:42:51:f5:64:97:0f:f8:92:22:d6:1a:ba:9f:40:
                    27:ea:7b:b9:21:a5:89:58:e8:4e:dd:dc:62:30:cd:
                    e6:36:db:52:d3:93:18:81:f5:b0:bc:02:38:8e:8f:
                    31:f6:38:2d:31:fd:9f:e4:b1:3d:8b:8a:1d:8d:cc:
                    05:81:13:cc:bd:5a:d0:0a:a4:42:fa:53:18:b8:11:
                    2f:97:7c:7b:ba:32:82:88:24:2b:70:e0:bf:43:bd:
                    98:ce:ba:64:e3:e7:c5:21:e3:45:56:df:6d:b2:c9:
                    2f:e8:71:85:6a:94:0c:28:89:1d:27:9c:34:e5:1d:
                    fe:46:36:81:33:ce:db:dd:42:e7:c5:00:37:ba:19:
                    98:62:f2:c5:65:d0:04:2d:6e:20:75:ab:e8:00:64:
                    c1:3b:d3:23:bc:c4:23:20:79:64:5c:24:72:d5:86:
                    f2:15:a1:37:1a:78:a9:bc:d2:ed:2d:ce:fe:3a:2c:
                    bf:93:7f:61:ee:f8:44:29:54:d9:d1:b2:5b:17:f5:
                    4a:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:31:8B:5C:BD:F2:D6:30:29:19:92:EC:E9:D8:1A:7C:54:0E:FF:09
            X509v3 Authority Key Identifier:
                keyid:A1:46:2C:A9:CC:E8:C8:FF:D1:F9:D7:DE:7C:7E:90:5C:6E:89:3C:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUYsqczoyP_R-dfefH6QXG6JPPw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7971ed-5842-4e5b-b828-272cc92cc60b/1/oUYsqczoyP_R-dfefH6QXG6JPPw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:c4:42:ba:26:26:4a:ed:73:30:ac:70:27:6f:7e:3a:57:84:
         08:e7:10:55:b2:c9:4e:e5:2a:b4:d6:85:6c:ad:33:51:91:73:
         db:81:f3:b4:3b:b7:39:f2:99:b8:6f:bc:e4:c9:ec:b9:0e:37:
         a9:df:d6:37:c8:e6:3a:15:9e:9c:05:ec:02:45:eb:c4:fb:3a:
         08:3c:b0:8c:01:eb:be:6c:de:47:94:09:3e:2d:30:93:9f:37:
         ed:00:a2:53:56:6f:8e:4f:cf:52:e5:4f:aa:d3:7b:cd:6b:14:
         fa:8b:3a:bb:4e:fa:8e:bf:b0:fe:90:37:fd:a2:c5:8e:9c:98:
         3c:37:e0:ed:e5:92:79:c1:be:5a:03:e3:45:db:fa:25:3c:6b:
         7c:9d:f5:68:fd:b1:7a:62:e5:8a:52:20:65:76:b3:c5:49:67:
         85:f1:f6:68:aa:36:a8:22:40:94:09:2c:dd:16:1b:a0:bd:eb:
         5c:8e:2c:9f:37:a3:3b:a8:85:81:3a:52:50:08:6f:cd:59:17:
         43:20:4a:5e:45:5a:76:56:21:9b:fd:e9:f5:f8:b3:37:6c:f2:
         1b:69:6f:29:f9:d1:e5:f7:88:43:15:8a:ae:eb:86:d4:21:24:
         04:0b:41:1c:71:56:87:a7:48:9e:5c:f5:a6:d4:57:c8:97:b5:
         cf:1e:3d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----