Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft
File:                     dtAtj564761YOO-TGIVJb8-vHGE.mft (raw, json)
Hash identifier:          sAmyOC1mxOIbudcmCcuwjlAONqpnxv3piTo/HCJJga4=
Subject key identifier:   A5:41:73:54:D1:65:ED:A4:D5:AD:C9:AF:88:4F:ED:97:88:84:F7:D2
Authority key identifier: 76:D0:2D:8F:9E:B8:EF:AD:58:38:EF:93:18:85:49:6F:CF:AF:1C:61
Certificate issuer:       /CN=76d02d8f9eb8efad5838ef931885496fcfaf1c61
Certificate serial:       019358790B39F7BC8546CE240E35B2984D5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dtAtj564761YOO-TGIVJb8-vHGE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft
Manifest number:          1370
Signing time:             Sat 23 Nov 2024 10:02:27 +0000
Manifest this update:     Sat 23 Nov 2024 10:02:27 +0000
Manifest next update:     Sun 24 Nov 2024 10:02:27 +0000
Files and hashes:         1: dtAtj564761YOO-TGIVJb8-vHGE.crl (hash: jIkzv01jM11IM3yIzckkAh5kJ/KoJGCboR2ucIi6GPY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dtAtj564761YOO-TGIVJb8-vHGE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:79:0b:39:f7:bc:85:46:ce:24:0e:35:b2:98:4d:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76d02d8f9eb8efad5838ef931885496fcfaf1c61
        Validity
            Not Before: Nov 23 10:02:27 2024 GMT
            Not After : Nov 24 10:02:27 2024 GMT
        Subject: CN=a5417354d165eda4d5adc9af884fed978884f7d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:05:64:b3:7e:ec:f0:32:3e:e5:fc:fe:f5:43:
                    c3:50:88:4d:8a:bb:bf:25:77:98:74:b5:e5:36:02:
                    70:40:4d:e7:c8:a5:ce:b9:be:91:86:2f:52:23:69:
                    ef:10:6c:40:df:a2:0a:17:ed:37:a8:03:2d:ed:1e:
                    73:7b:81:31:81:ae:4a:1b:ae:4d:83:86:28:1b:ac:
                    db:51:b1:d7:9b:29:d3:a1:7b:f3:19:1d:1a:0f:e4:
                    ae:03:08:aa:9c:eb:6e:a5:98:51:65:88:2c:ac:7a:
                    34:aa:37:bd:68:17:53:d7:94:c0:d4:0f:ed:e3:a8:
                    39:96:83:c7:15:3d:7d:d5:70:44:51:d7:1d:26:3c:
                    80:63:2b:91:ba:da:a7:c8:f3:9a:ac:81:98:cb:84:
                    94:7e:8d:77:21:17:62:02:08:4c:40:38:1f:74:6c:
                    09:84:c1:c0:23:c4:8c:e2:66:a0:2a:70:31:31:ec:
                    0d:59:95:49:e3:1f:d3:61:80:b9:e4:dd:ad:9e:ab:
                    36:37:81:60:b3:de:f9:cd:68:07:c0:3e:fa:1b:d8:
                    28:98:41:fe:78:2f:78:bc:e8:07:ac:a5:98:a6:75:
                    5f:6d:f6:cd:3d:0a:91:0d:ba:1a:17:fb:23:1c:5b:
                    03:ce:63:90:c0:b4:0c:bd:11:1f:0f:32:1c:53:d4:
                    4a:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:41:73:54:D1:65:ED:A4:D5:AD:C9:AF:88:4F:ED:97:88:84:F7:D2
            X509v3 Authority Key Identifier:
                keyid:76:D0:2D:8F:9E:B8:EF:AD:58:38:EF:93:18:85:49:6F:CF:AF:1C:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dtAtj564761YOO-TGIVJb8-vHGE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/232763-26f8-441b-96b8-05161ff71d80/1/dtAtj564761YOO-TGIVJb8-vHGE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:9b:15:18:4c:26:53:6a:31:d2:8b:38:0a:8b:ab:f2:04:8f:
         ee:a8:bc:8a:f8:f6:6f:4c:1d:da:ec:a7:b5:38:42:58:8c:a7:
         46:ae:95:7d:4d:10:b9:41:37:e9:6b:3c:cb:80:f1:16:e9:6b:
         fb:cc:8d:95:bd:af:e5:da:d4:ed:d1:d6:93:f1:86:4d:4b:c3:
         74:28:cd:19:e5:77:96:8b:0d:a3:24:74:d1:e1:61:d2:b8:db:
         41:d3:43:74:f3:f7:e7:98:b3:b9:09:4c:8b:19:28:99:2b:bd:
         71:6b:67:c5:27:bf:a9:57:7f:03:11:64:f0:45:75:3f:17:46:
         f9:5c:8f:89:42:08:e4:a5:a9:dd:69:58:11:9f:90:4d:39:45:
         64:8b:6b:2d:37:2e:af:a7:1e:7a:63:ea:c8:88:0c:13:61:38:
         37:e4:fe:ad:4b:51:23:25:ad:d4:1f:45:b3:f0:dd:3b:8d:cf:
         a6:e9:bd:f0:ea:d1:44:d9:24:3d:68:c5:fa:e8:23:40:0e:a7:
         4e:31:51:ab:d1:56:c3:e9:12:e9:2c:d9:7e:c6:7b:07:ea:2e:
         f5:96:c8:42:f1:c7:75:ec:a5:25:3a:8b:4f:40:10:46:b7:3f:
         fd:14:f2:ab:b7:97:ad:47:82:9b:fd:c6:99:02:36:8a:87:dd:
         f4:06:5f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----