Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft
File:                     bn-6EaMdOqkN48e7i1bTzQbmvnU.mft (raw, json)
Hash identifier:          KR8u2RIq7G4unbZyfIUz/8CI5kp5AwPvBe+EfqzM/8I=
Subject key identifier:   29:5D:6B:3A:99:D9:C3:FD:0C:99:73:D6:63:98:E2:04:F1:E3:B7:DE
Authority key identifier: 6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75
Certificate issuer:       /CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75
Certificate serial:       018F874A4239B8CDD4F81662119942BECCDD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft
Manifest number:          115E
Signing time:             Fri 17 May 2024 16:02:21 +0000
Manifest this update:     Fri 17 May 2024 16:02:21 +0000
Manifest next update:     Sat 18 May 2024 16:02:21 +0000
Files and hashes:         1: bn-6EaMdOqkN48e7i1bTzQbmvnU.crl (hash: 0nLXgYpERgW8uylB/lcc7PhkMgIeRwu8N8YZNIdPHpM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:42:39:b8:cd:d4:f8:16:62:11:99:42:be:cc:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75
        Validity
            Not Before: May 17 16:02:21 2024 GMT
            Not After : May 18 16:02:21 2024 GMT
        Subject: CN=295d6b3a99d9c3fd0c9973d66398e204f1e3b7de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:5c:21:f8:26:3e:d3:44:60:63:98:76:2f:49:
                    e7:63:20:ff:a3:25:b1:43:f8:d8:7f:e5:4c:f6:69:
                    1f:c3:8f:2f:d4:72:6e:c2:d3:0d:47:b5:4b:09:15:
                    7e:87:6d:7c:0d:3c:c9:e4:55:a4:fc:ad:0f:17:9b:
                    6a:f1:fe:47:66:c7:75:3a:68:6d:e6:4f:aa:e2:22:
                    b7:73:cf:8f:eb:63:b2:6b:f9:42:4f:41:f0:30:77:
                    cd:e8:dd:91:d3:2d:64:9a:7c:e7:b2:71:57:b4:d8:
                    5a:c6:fc:4c:e3:04:af:7d:67:be:b9:c5:47:4c:fc:
                    9c:55:d1:f3:18:6b:24:d8:6b:4c:0a:4f:55:e1:6a:
                    b5:a9:db:4e:6a:3c:f9:32:7b:78:bc:9f:76:13:69:
                    12:4a:16:4d:2c:7c:81:33:4e:3a:36:e8:9a:e7:38:
                    4e:c0:1a:9c:4d:34:11:fe:9d:d6:f0:f1:56:50:2d:
                    7f:25:68:8f:b6:9f:34:02:18:c7:8a:49:18:65:48:
                    63:3d:b7:38:f4:e3:a3:be:c0:b6:0c:ec:18:fd:52:
                    09:0b:37:a3:e8:81:99:6c:8e:57:62:57:cf:70:4e:
                    e8:65:53:8b:f6:d7:0a:d2:71:e9:b4:d1:84:d5:6a:
                    95:92:f2:5f:eb:43:83:ec:88:be:17:bd:31:98:9c:
                    91:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:5D:6B:3A:99:D9:C3:FD:0C:99:73:D6:63:98:E2:04:F1:E3:B7:DE
            X509v3 Authority Key Identifier:
                keyid:6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:7b:69:14:7f:24:86:87:53:4f:c0:a7:e1:71:4a:0f:5e:81:
         b2:79:51:ee:88:48:5e:e8:09:a9:b3:9d:06:99:98:37:23:98:
         a4:2e:c9:4e:d8:83:61:3c:46:3b:e2:ba:17:63:df:3c:02:bb:
         39:d7:c2:9b:16:7b:6d:f9:8a:66:e3:ea:16:ed:c6:20:45:3a:
         24:61:d2:b8:f2:8f:bb:fe:b9:d3:ec:a1:e5:d3:24:0e:7d:84:
         c0:9f:70:7b:9c:c9:f3:e1:f9:19:04:cc:1c:c6:18:2a:85:68:
         6e:9f:93:bb:ab:ba:e6:88:7e:ab:f7:a7:50:a2:e4:2a:b0:5e:
         4e:8c:f1:0c:d3:df:fe:a7:fd:4d:cd:b8:a6:a4:3f:78:94:d4:
         14:37:00:e3:e7:99:6d:45:ae:9a:e1:35:a1:43:43:96:ff:e2:
         2f:d1:92:e4:0c:21:21:0e:95:f7:93:8c:17:1c:a2:16:07:75:
         26:52:22:73:8e:6c:b9:35:b2:08:a6:8c:d8:64:38:30:ce:8f:
         89:58:ef:92:0b:d5:71:b4:8b:e2:2f:48:3f:bb:2c:9d:c3:53:
         44:3c:a0:d3:43:3a:22:84:bc:b7:d9:f4:c3:24:a4:96:de:30:
         f8:28:03:95:04:98:da:7d:4d:fd:a8:82:80:a3:2f:f1:ca:64:
         84:a7:2f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----