Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
File:                     A2loTGfKqZ_8AYS-rMrw6oipISk.mft (raw, json)
Hash identifier:          zaZ48kaLOdCHqHEvJPX8r6SQ9zaaG2drTLrnYeb4rw0=
Subject key identifier:   9E:A7:89:93:82:F7:8F:E2:E5:87:D8:16:E0:02:6F:7D:73:D0:F7:FB
Authority key identifier: 03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29
Certificate issuer:       /CN=0369684c67caa99ffc0184beaccaf0ea88a92129
Certificate serial:       019406B4310C5B3B301A4300C53A978B4D92
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
Manifest number:          06A3
Signing time:             Fri 27 Dec 2024 06:00:59 +0000
Manifest this update:     Fri 27 Dec 2024 06:00:59 +0000
Manifest next update:     Sat 28 Dec 2024 06:00:59 +0000
Files and hashes:         1: A2loTGfKqZ_8AYS-rMrw6oipISk.crl (hash: am6ng/8yma/aO9EMBb9/Gtwd4SuUoQXJlLPP1Mf/sbY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 28 Dec 2024 06:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:06:b4:31:0c:5b:3b:30:1a:43:00:c5:3a:97:8b:4d:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0369684c67caa99ffc0184beaccaf0ea88a92129
        Validity
            Not Before: Dec 27 06:00:59 2024 GMT
            Not After : Dec 28 06:00:59 2024 GMT
        Subject: CN=9ea7899382f78fe2e587d816e0026f7d73d0f7fb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:62:a4:15:dd:c8:56:3e:43:17:04:eb:ea:a1:
                    ec:7a:37:a0:32:b1:c4:5e:fc:60:aa:ad:8e:6c:0e:
                    66:40:08:84:30:8f:c2:29:7c:34:47:30:98:bd:c4:
                    cf:e8:9e:33:0d:f0:b9:8d:9a:bb:e8:81:58:93:f3:
                    69:af:f2:ed:3b:26:15:82:3e:e8:17:bd:42:af:bc:
                    3c:9a:1a:bc:9d:5d:15:cc:11:13:19:7e:b1:38:7c:
                    ec:f1:7c:89:5a:ac:a8:ec:23:37:ed:df:f0:ee:a1:
                    cd:e6:6c:7d:10:38:70:4c:3f:6e:f0:d1:15:bb:06:
                    5f:49:f6:7e:d3:bd:2d:56:ca:fb:f6:8a:82:4a:a0:
                    b5:e2:07:86:c9:be:c0:f8:89:d3:da:0e:ec:03:8b:
                    49:87:ad:8e:61:49:9b:3e:fe:86:0f:f4:21:9d:41:
                    ba:a4:c0:5a:ad:ca:fc:dc:d6:2a:81:14:48:e1:38:
                    c7:7b:90:28:a9:3b:ef:d4:f8:80:22:76:c1:f9:76:
                    dc:0a:51:fb:81:dc:d9:02:c4:a1:9c:17:c1:2a:6d:
                    4d:86:d8:54:65:ee:ae:d4:20:df:ee:10:d7:c2:b7:
                    bc:dd:26:51:6f:bf:24:47:57:c2:1c:5d:9b:94:6c:
                    2c:e0:b8:ac:d1:c0:7b:66:e6:9b:0d:8d:a1:1b:ea:
                    b7:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:A7:89:93:82:F7:8F:E2:E5:87:D8:16:E0:02:6F:7D:73:D0:F7:FB
            X509v3 Authority Key Identifier:
                keyid:03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:8b:5d:ed:78:1a:b4:27:94:df:ad:c9:25:61:ac:09:ec:bc:
         df:91:32:62:ad:b7:39:4c:98:5a:d7:80:07:06:ae:b5:c2:0c:
         f7:16:a9:c2:9a:65:f2:90:89:e3:b0:26:a6:5c:a8:f6:be:68:
         77:a0:b9:26:ad:d9:d9:6f:5f:f5:38:3f:ab:c8:64:ee:f9:ba:
         3e:e1:83:6f:1e:34:27:3d:10:44:5c:de:20:97:08:6a:27:7b:
         5d:e0:94:9d:36:4b:fa:0a:1e:1e:f7:d9:37:34:39:73:9b:8a:
         68:44:cb:63:cd:88:17:5c:15:dd:04:29:60:dc:5f:50:4e:5d:
         5c:05:2c:eb:2f:56:a2:e8:49:63:ec:c5:65:3e:6f:f3:ce:69:
         f9:37:b8:1f:0d:6a:d5:dd:98:99:95:76:9f:18:75:10:bb:45:
         dc:83:9e:2f:2b:ea:97:f0:ab:6e:98:62:97:0d:bd:6b:5d:76:
         2d:00:8d:26:f1:48:73:8d:94:db:02:c2:11:54:29:3c:e3:b6:
         ed:31:54:32:52:ed:0c:ec:17:d7:0e:52:c0:d8:07:c4:77:01:
         4a:cc:12:22:0c:2c:31:38:57:41:b5:5c:b4:7e:28:39:7d:ad:
         91:c2:9c:89:d5:10:fb:e9:fd:b5:10:32:56:44:ba:fd:10:bf:
         80:8e:f2:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----