Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
File:                     eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json)
Hash identifier:          ZtCWCbU6mCFUkYzmFMtzVF3COjpx1OY0sXP0H3cy8hs=
Subject key identifier:   CB:6B:50:F0:A9:D9:E8:5E:BA:87:05:DB:57:D4:55:5C:57:33:AD:64
Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
Certificate issuer:       /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Certificate serial:       0193576499C4E8A6E6357E90C87376DEC622
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
Manifest number:          04F4
Signing time:             Sat 23 Nov 2024 05:00:30 +0000
Manifest this update:     Sat 23 Nov 2024 05:00:30 +0000
Manifest next update:     Sun 24 Nov 2024 05:00:30 +0000
Files and hashes:         1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: Ao4NEAQhlcTY3C0qdwUEIgHjAlW+ajIm6Q2WmAysVHk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 05:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:57:64:99:c4:e8:a6:e6:35:7e:90:c8:73:76:de:c6:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
        Validity
            Not Before: Nov 23 05:00:30 2024 GMT
            Not After : Nov 24 05:00:30 2024 GMT
        Subject: CN=cb6b50f0a9d9e85eba8705db57d4555c5733ad64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:52:84:8e:d1:9d:e2:41:b6:c5:10:f4:fa:c3:
                    68:20:c9:8d:ae:86:a5:55:71:e8:61:58:4f:6a:fa:
                    a4:94:03:04:26:07:23:91:62:e3:1c:1e:ab:ed:12:
                    b5:1b:1d:0f:4e:62:37:2f:b5:6e:76:54:3a:fd:20:
                    61:73:c2:23:36:da:4d:33:b5:70:9b:b9:99:57:ca:
                    a9:b3:cc:9d:2b:7f:e5:c7:1e:d9:23:f3:42:4d:d3:
                    eb:e5:3a:cf:c6:df:56:a7:6e:a7:2f:6b:73:65:2a:
                    9a:57:b1:f5:39:34:8d:15:41:51:8e:6a:2f:32:5c:
                    f8:64:63:ae:72:7c:a4:55:81:ee:a8:ba:0e:6b:bf:
                    79:bc:9a:6e:8e:86:82:da:13:16:71:ae:04:22:29:
                    5f:df:b6:05:9d:b0:89:c3:64:ea:b3:d1:74:68:b1:
                    1f:4b:bf:2b:28:d2:98:07:67:ca:83:ef:e8:ef:5c:
                    b1:7c:61:d9:a0:56:e8:2a:d4:41:06:6c:1e:52:02:
                    7f:0d:2e:54:ec:28:74:e5:bb:cb:cc:0c:e7:36:34:
                    fb:94:62:62:94:85:b4:1a:5c:19:4c:b8:20:4b:61:
                    32:47:00:8e:10:cd:60:66:b8:c9:78:e8:73:e5:b9:
                    57:bc:34:c2:ce:8f:cc:6a:f3:d5:a9:b8:ae:2a:66:
                    aa:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:6B:50:F0:A9:D9:E8:5E:BA:87:05:DB:57:D4:55:5C:57:33:AD:64
            X509v3 Authority Key Identifier:
                keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:c4:5f:44:b0:fb:5a:b8:6b:21:e1:51:77:d6:c6:e5:38:8d:
         6e:77:6d:a2:0b:88:ec:72:25:c9:ee:a9:f5:b5:8e:ce:82:db:
         db:fc:8f:2c:e0:4b:ac:35:48:00:c3:29:55:ec:81:73:3a:df:
         cf:40:b5:78:0f:9a:c4:14:2b:8d:41:6c:bb:38:b4:f7:5b:94:
         25:52:1d:56:df:df:8c:87:9c:39:60:fa:17:8b:54:06:5a:76:
         0a:a9:cb:82:12:3a:a7:fd:6e:2a:e9:24:9b:92:ee:19:53:80:
         57:c7:b1:25:37:27:55:0d:54:f0:39:a4:f1:f2:b9:9a:5e:07:
         18:88:d1:44:9f:77:95:9c:fa:c0:73:70:b0:02:67:98:b6:2b:
         42:e9:79:6e:37:d5:63:66:90:0b:1a:d6:c4:ac:19:70:c0:af:
         b3:8a:d5:b7:fb:b8:06:9f:bc:12:f5:90:23:4c:aa:2a:15:78:
         51:f6:07:3d:8d:77:eb:b0:89:57:b6:50:80:03:5c:0b:5a:8d:
         a3:69:c9:da:77:4c:d5:fe:7a:d3:a3:5f:a9:8f:66:0b:25:dd:
         6a:3a:ee:2e:69:95:02:81:c3:06:ed:6d:8d:8f:11:17:60:55:
         60:8c:72:20:48:eb:89:24:c3:3c:8f:b3:06:fc:38:a7:89:4b:
         79:7c:e8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----