Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
File:                     _ypds7oz42wW2_UmCy_idK5_siI.mft (raw, json)
Hash identifier:          jeGUzGp0FQl9Yui5fAWkLZl96nkxb+dgoA0IYykJXiE=
Subject key identifier:   1A:27:D9:B1:FA:83:7A:E1:CD:B7:26:3E:A9:19:68:73:BD:00:BA:56
Authority key identifier: FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22
Certificate issuer:       /CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222
Certificate serial:       019355E42F5181F93059401E4C4E2579EC91
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
Manifest number:          0A50
Signing time:             Fri 22 Nov 2024 22:00:37 +0000
Manifest this update:     Fri 22 Nov 2024 22:00:37 +0000
Manifest next update:     Sat 23 Nov 2024 22:00:37 +0000
Files and hashes:         1: _ypds7oz42wW2_UmCy_idK5_siI.crl (hash: Z7/w6ViSFa2EIwlVJE0WzGKoU8Xib2sdg4O3OtJGTTU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 23 Nov 2024 17:02:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:55:e4:2f:51:81:f9:30:59:40:1e:4c:4e:25:79:ec:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222
        Validity
            Not Before: Nov 22 22:00:37 2024 GMT
            Not After : Nov 23 22:00:37 2024 GMT
        Subject: CN=1a27d9b1fa837ae1cdb7263ea9196873bd00ba56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:13:da:9e:c8:8d:3d:09:ea:fb:52:fa:bf:fb:
                    4c:18:57:97:43:90:81:6d:8d:43:ba:ab:ab:90:db:
                    39:c4:89:24:c0:d3:03:87:5e:08:e8:88:f5:06:fe:
                    0e:41:7f:34:34:68:81:50:1a:31:4f:7a:35:a5:81:
                    9b:e6:8c:f0:df:9a:4e:cc:b6:2c:33:97:a0:ee:62:
                    e1:fe:23:5a:a4:60:7e:14:09:db:84:01:f4:4d:04:
                    13:52:c5:5d:31:b4:f1:a9:32:6a:18:df:ea:f1:7f:
                    f4:c3:53:66:93:4a:c3:2a:f9:6a:4a:0c:6d:68:e0:
                    e8:6d:ad:ed:64:67:58:02:ac:22:c9:ec:f9:e1:50:
                    30:bc:b2:49:80:1f:9c:d9:31:09:54:1e:7f:3c:cf:
                    08:49:8c:46:db:81:d5:ac:af:4e:1c:96:3e:54:a5:
                    3c:5a:96:bf:53:71:24:48:fb:80:a7:8a:6b:c8:f6:
                    8a:f3:99:6a:b7:2f:86:9a:43:8f:df:26:d5:7a:be:
                    4d:e7:59:e0:ef:8d:c9:bb:ce:d9:7a:66:59:0a:58:
                    c3:13:e8:31:64:4f:9a:e1:e4:4e:c8:89:24:89:e6:
                    f9:72:6e:db:bf:c4:bc:52:1b:c5:13:08:62:14:a5:
                    12:02:ff:14:ef:de:72:5e:5c:a8:f1:bb:e0:c7:69:
                    6c:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:27:D9:B1:FA:83:7A:E1:CD:B7:26:3E:A9:19:68:73:BD:00:BA:56
            X509v3 Authority Key Identifier:
                keyid:FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:1f:b6:3a:1a:64:65:73:ed:72:68:48:60:11:1c:fc:4c:ea:
         b6:b5:14:f6:bf:d2:25:a2:fa:c5:f2:93:72:30:6b:65:4b:2f:
         8d:c1:14:5c:48:01:7b:9b:ad:bb:80:72:32:05:51:9e:ff:a6:
         3a:3a:3c:3e:55:a5:d3:8d:97:27:2f:3f:37:fe:d3:eb:5b:82:
         6e:54:d0:d1:a4:50:43:c0:98:88:0c:38:55:f9:9d:f6:76:dd:
         bb:ab:3d:ff:e8:f2:0a:40:bd:ec:e1:e2:bf:d2:25:14:df:a0:
         90:4c:4b:f8:44:a5:2f:14:24:42:d1:4e:a3:90:b4:af:12:4f:
         63:60:de:b8:0c:95:d7:8c:e3:1a:bc:0d:7b:5c:9b:13:c6:4a:
         e2:94:5d:66:cd:c5:84:52:96:b8:d6:1a:e0:bd:06:59:f4:ed:
         e0:6a:9a:3b:49:43:bf:0b:73:38:d2:6b:ff:80:02:62:b7:b9:
         4d:94:50:76:75:39:40:4c:ec:eb:56:33:0e:e6:8d:00:72:a2:
         40:f7:85:8d:5f:98:90:8e:94:8d:b1:37:fb:a4:90:57:c6:fc:
         23:52:f4:01:78:49:86:7a:0b:40:c8:2e:29:2e:f2:e3:f7:9a:
         34:2e:c6:d4:36:88:3c:5b:a9:87:a7:f8:0e:49:9b:74:0f:d6:
         4e:e9:50:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----