Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
File:                     gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json)
Hash identifier:          zaXKbWo3RoQReXwL5L3AtlB4eqSfHW2+pa1UHg0+jDw=
Subject key identifier:   13:75:DC:0E:CF:3E:A0:97:09:BE:05:F3:3E:78:EA:F5:7B:69:5A:33
Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66
Certificate issuer:       /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
Certificate serial:       018F8D15EBD0BCFEAA0E24D30DD94ECD11B6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
Manifest number:          1178
Signing time:             Sat 18 May 2024 19:02:55 +0000
Manifest this update:     Sat 18 May 2024 19:02:55 +0000
Manifest next update:     Sun 19 May 2024 19:02:55 +0000
Files and hashes:         1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: hpCs6IOh+JF87xmeyBqo1zVTBQHKQDEi9gNSwGXIdt0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 19 May 2024 19:02:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:8d:15:eb:d0:bc:fe:aa:0e:24:d3:0d:d9:4e:cd:11:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
        Validity
            Not Before: May 18 19:02:55 2024 GMT
            Not After : May 19 19:02:55 2024 GMT
        Subject: CN=1375dc0ecf3ea09709be05f33e78eaf57b695a33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:12:eb:c5:62:de:1d:76:f9:60:c2:78:c0:c6:
                    eb:da:3f:ee:e8:bb:fc:6f:5b:3c:95:63:df:1f:af:
                    75:1c:0d:fd:6a:88:99:4b:57:0c:bc:dd:e7:1f:b6:
                    6d:ff:a9:29:74:c4:f8:e5:fe:78:c3:bd:d4:d4:39:
                    cc:67:24:9f:c1:93:3f:ed:ef:d2:aa:53:fe:58:16:
                    5b:eb:6a:fc:9d:60:59:f8:ef:f0:65:27:4a:24:b2:
                    4d:c0:30:6b:ed:e1:fd:d6:96:95:5e:23:23:ea:e3:
                    5e:69:3c:21:0d:c2:17:9f:a4:67:25:0a:bf:8c:58:
                    64:ea:29:32:75:eb:ac:61:46:a8:f8:a5:2e:c1:9b:
                    17:86:37:8a:5a:d7:8a:07:1c:c4:6f:88:76:18:34:
                    a1:2e:b0:36:4f:d5:ae:7e:02:ba:4e:70:48:81:c5:
                    14:e4:df:14:84:13:a7:77:0d:39:44:ed:4a:23:92:
                    89:20:a3:b9:35:6c:53:c7:5b:64:a0:e6:06:c0:e4:
                    50:0c:b6:ae:e6:8b:0f:53:8f:ab:c5:c9:fe:3e:5d:
                    b0:9a:70:92:e3:ae:f4:9c:14:af:27:9c:54:6f:de:
                    cc:48:49:ca:ed:89:a1:4e:b8:09:46:4f:99:3b:70:
                    43:1a:3f:65:fd:70:27:68:9d:0d:99:20:1e:40:c5:
                    25:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:75:DC:0E:CF:3E:A0:97:09:BE:05:F3:3E:78:EA:F5:7B:69:5A:33
            X509v3 Authority Key Identifier:
                keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:9b:19:1f:11:97:80:e2:15:e4:e9:b2:96:43:9f:4d:bb:50:
         61:9a:17:d3:ea:e5:bc:c1:28:1d:d2:79:4f:3b:49:8e:a4:a6:
         73:09:55:59:95:1d:dd:72:3a:72:7e:b9:52:1f:e2:a2:fc:d4:
         ec:3d:87:6d:93:5e:6c:45:ac:9d:8e:9d:6e:aa:2d:a6:cc:b8:
         91:fb:3b:76:a3:5c:98:8a:1c:08:c1:02:8c:39:36:24:4d:ba:
         dc:2c:53:16:67:d2:25:1e:0a:7d:08:92:64:8c:e3:5f:b2:00:
         51:b3:8a:df:12:cd:eb:75:1c:7f:33:8f:8c:5a:91:e4:0a:60:
         b5:dc:8d:91:a9:9f:f5:81:d6:13:46:39:5b:10:cb:20:35:e0:
         f7:ce:09:4c:7e:0f:84:e6:50:0b:a9:ae:fd:ee:29:13:7d:dd:
         76:db:a7:14:fa:72:b8:26:13:a8:91:06:9a:e5:3c:05:b4:c3:
         e0:3c:d8:55:aa:c2:5f:79:51:5e:c0:b2:71:1e:ff:86:2a:70:
         5b:52:83:ca:64:d7:68:e8:5d:a7:35:7e:d4:80:b4:5b:3c:17:
         f3:ed:b4:31:9d:77:9b:01:39:68:fa:36:20:3f:bb:e8:3d:f7:
         01:29:54:27:ab:83:a2:31:1f:be:30:19:ce:16:06:02:92:ba:
         4a:61:08:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----