Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File:                     dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier:          KbbOrNUg46ReNymMJQZ1gnYtTNVbnnSTLbJH/EJTMYM=
Subject key identifier:   04:76:61:E0:0B:A2:B1:99:51:21:19:06:10:93:C5:C1:4C:88:63:1A
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer:       /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial:       01935877B4A40AB5CA7D50D9409F576CCCB7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number:          053D
Signing time:             Sat 23 Nov 2024 10:01:00 +0000
Manifest this update:     Sat 23 Nov 2024 10:01:00 +0000
Manifest next update:     Sun 24 Nov 2024 10:01:00 +0000
Files and hashes:         1: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: Lr2AQ7NWTWAwFztedTtnlA6wBGM9/xKJNzCbPv71bL4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:77:b4:a4:0a:b5:ca:7d:50:d9:40:9f:57:6c:cc:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
        Validity
            Not Before: Nov 23 10:01:00 2024 GMT
            Not After : Nov 24 10:01:00 2024 GMT
        Subject: CN=047661e00ba2b199512119061093c5c14c88631a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:48:a9:d9:67:6d:cf:a5:ab:e9:40:32:1c:52:
                    0a:e5:2b:b2:0c:55:a8:5c:0f:ef:78:9d:f1:0b:b0:
                    a4:4c:ad:5f:2d:d2:03:1a:02:a3:9f:63:2f:c0:97:
                    02:72:24:47:ef:56:86:5f:f0:cb:db:e1:72:be:e6:
                    3e:a4:2d:7a:9b:af:05:67:01:19:43:31:be:38:94:
                    e6:f3:c8:ce:ca:14:c7:f1:34:93:0e:6d:cd:53:6d:
                    8f:94:36:3f:5a:f4:c3:55:04:98:f7:81:22:47:81:
                    d3:bf:86:29:9b:d3:85:fc:70:87:ce:6e:24:f6:58:
                    a6:85:ba:2c:da:7c:2e:ef:48:6a:38:19:be:09:f2:
                    3f:51:40:fd:fb:ad:f5:8e:d6:b8:03:d7:30:60:0e:
                    6d:5d:ed:56:51:8a:e5:16:4c:1d:97:3d:72:85:02:
                    22:df:5b:69:96:07:e9:d4:b3:8b:b8:cc:67:77:69:
                    4f:0e:b3:11:4e:bd:61:da:b1:6e:71:5a:32:78:a4:
                    d4:8f:c1:d6:78:c4:4a:20:c1:bc:bd:1c:5a:2c:d0:
                    51:13:60:4c:6d:12:6f:20:59:96:ad:ab:7e:ff:a7:
                    86:5b:81:7c:e7:05:88:14:1f:c0:b0:b0:e8:4a:49:
                    4d:51:3c:16:f2:93:34:22:c8:86:ce:b1:77:10:c8:
                    ac:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:76:61:E0:0B:A2:B1:99:51:21:19:06:10:93:C5:C1:4C:88:63:1A
            X509v3 Authority Key Identifier:
                keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:09:25:70:34:b6:ea:86:29:ce:62:c2:43:3a:6c:8e:19:66:
         a0:53:5f:d1:eb:28:51:e9:ef:2a:50:4b:dd:3c:73:b5:e0:c8:
         26:fe:1d:22:e1:f4:c3:9c:74:c9:da:84:fa:20:6f:ba:4e:34:
         ad:40:df:03:e9:e4:61:10:96:f1:ee:15:7f:d3:61:db:dd:2c:
         0a:07:df:55:83:01:a1:fb:9a:91:9c:ce:bf:d3:80:ed:67:d6:
         ff:99:97:2f:bd:06:37:bb:ff:6b:6e:ec:11:da:ac:93:e3:80:
         24:1e:93:6d:e4:d3:45:8c:d5:d1:df:a0:3e:92:41:08:9e:37:
         d7:90:19:49:95:71:c1:a1:fd:61:a6:e1:06:f3:28:bd:2f:57:
         94:89:a5:db:3d:b2:35:0b:77:27:3b:74:6f:5f:48:58:e2:96:
         0d:40:b2:7a:44:b3:81:d9:f8:23:f6:9d:04:1e:b3:41:62:6f:
         bf:ff:e1:5f:8e:81:46:02:18:7c:82:14:b0:a7:5e:45:6b:7e:
         01:cb:c6:34:0a:c6:de:81:ea:0b:01:05:79:a8:02:e7:2f:0d:
         6b:66:32:d8:0c:ba:f4:2f:31:38:b2:73:3d:6d:3d:9f:f3:df:
         c0:dd:d1:56:08:d2:84:e7:47:c2:f6:16:df:3a:00:fd:89:a6:
         81:a3:93:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----