Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
File:                     o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft (raw, json)
Hash identifier:          5b9HG5zMGTmJrTTLNXl8JLcItz42e0oCZosT3b4GPDQ=
Subject key identifier:   FE:AA:F9:99:70:0C:6E:02:21:31:06:AD:AF:36:F6:47:7E:5E:68:D8
Authority key identifier: A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64
Certificate issuer:       /CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864
Certificate serial:       019369D8E4D7DA1EB443463E751D5D74648B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
Manifest number:          1378
Signing time:             Tue 26 Nov 2024 19:00:42 +0000
Manifest this update:     Tue 26 Nov 2024 19:00:42 +0000
Manifest next update:     Wed 27 Nov 2024 19:00:42 +0000
Files and hashes:         1: o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl (hash: mlarZDjLszMofti584gPT9OswJhMB3rXWm0AYi/IJtk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d8:e4:d7:da:1e:b4:43:46:3e:75:1d:5d:74:64:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3a8caf6217ceb10dd8c146f96b9d773edd88864
        Validity
            Not Before: Nov 26 19:00:42 2024 GMT
            Not After : Nov 27 19:00:42 2024 GMT
        Subject: CN=feaaf999700c6e02213106adaf36f6477e5e68d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:87:7c:c3:fc:48:38:4b:38:32:05:09:f6:13:
                    54:2e:40:7f:96:bf:e7:a8:2c:7d:a6:23:12:f7:d0:
                    ec:ad:e1:fd:28:d1:c6:c7:4f:8b:61:01:ce:cb:bc:
                    b0:43:78:4b:f0:b9:62:ce:57:37:e7:38:0b:37:0e:
                    3d:41:f2:43:d7:a8:f7:28:f1:ff:66:3b:ba:9a:04:
                    cd:5f:a5:5b:dd:80:7e:94:69:54:d3:7e:bf:46:b4:
                    48:b8:3b:34:b5:fe:ed:70:78:db:97:3f:8e:a9:96:
                    4b:dc:05:43:d7:09:ed:bf:21:68:1a:19:8b:c4:12:
                    3e:f2:4b:9d:c5:48:a1:4e:7b:1b:4a:c9:e3:ea:99:
                    d4:02:75:af:3f:e3:1b:25:00:fe:45:88:ac:34:67:
                    f0:63:af:0b:9a:3c:02:94:63:0c:35:b4:51:0c:07:
                    ae:a6:39:ec:4a:a7:96:ac:a6:87:69:f3:fd:b0:0a:
                    d5:88:ba:84:c8:63:b4:63:d9:2a:d7:e4:05:e7:a8:
                    f4:67:ad:f7:f7:f2:54:e8:27:35:0b:ed:a0:46:1c:
                    79:da:7e:b1:28:ab:f1:16:00:5a:68:89:c1:ed:e0:
                    b9:e6:f7:50:30:fc:01:31:41:0e:49:8f:14:62:16:
                    35:d8:5f:0b:f4:56:9a:e3:fb:ef:65:d6:e6:d8:33:
                    8b:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:AA:F9:99:70:0C:6E:02:21:31:06:AD:AF:36:F6:47:7E:5E:68:D8
            X509v3 Authority Key Identifier:
                keyid:A3:A8:CA:F6:21:7C:EB:10:DD:8C:14:6F:96:B9:D7:73:ED:D8:88:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6jK9iF86xDdjBRvlrnXc-3YiGQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5fd023-92ea-4a63-b7d0-e5cba2137308/1/o6jK9iF86xDdjBRvlrnXc-3YiGQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:b9:34:2f:12:46:6c:64:91:88:9d:7c:d7:7a:8a:44:a5:1c:
         c3:a0:c4:e1:5d:39:fd:e2:d4:dd:61:bf:02:60:d2:cd:e6:a0:
         36:8f:ac:37:e3:d6:69:d1:8d:d2:6c:a7:a3:49:f6:41:da:42:
         94:ea:4f:b8:e0:46:8b:a9:b8:63:44:31:35:61:e0:51:49:84:
         01:4e:c7:58:eb:c9:a7:63:65:9d:0f:ba:d8:2a:1b:7e:c9:91:
         58:be:e6:96:b7:0c:c3:8e:f6:3c:77:66:bf:6c:30:76:0e:1e:
         0d:20:5f:72:2b:d4:77:11:7d:67:33:d7:72:b3:38:fb:20:8f:
         ff:1e:0a:2d:de:97:6a:e3:83:d8:f6:c1:09:4d:e7:92:57:8e:
         70:28:68:44:bd:e8:4e:59:43:46:b0:0d:60:08:1e:a5:a9:17:
         f4:29:bf:4e:f1:0c:d8:df:60:6f:6b:10:bd:26:7e:65:3d:89:
         8a:4c:e2:78:f1:d3:cf:7f:61:17:1f:24:62:4e:e6:bc:77:b8:
         df:dc:4e:0f:c6:c6:28:27:8d:52:97:7c:62:af:41:38:7e:53:
         5a:48:2c:f3:4b:43:54:52:7a:9b:a9:18:6f:fd:bc:7e:d1:b6:
         31:0a:eb:ef:69:f8:f9:de:b6:e2:4e:66:8c:1f:76:63:93:64:
         d4:d2:49:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----