Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft
File:                     yHfSSx1xwCFHafEZ33KY_wz4l7A.mft (raw, json)
Hash identifier:          pNIYVIU5Y0WhLI4i2CXwI6pdmU5d1XuVIwh96+it/1A=
Subject key identifier:   AA:32:58:F9:FF:1A:14:C6:BA:16:A6:E8:62:D8:F6:90:B4:85:24:2D
Authority key identifier: C8:77:D2:4B:1D:71:C0:21:47:69:F1:19:DF:72:98:FF:0C:F8:97:B0
Certificate issuer:       /CN=c877d24b1d71c0214769f119df7298ff0cf897b0
Certificate serial:       018F88246217EAA50F7A93FD601828DDFF84
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft
Manifest number:          05E2
Signing time:             Fri 17 May 2024 20:00:36 +0000
Manifest this update:     Fri 17 May 2024 20:00:36 +0000
Manifest next update:     Sat 18 May 2024 20:00:36 +0000
Files and hashes:         1: yHfSSx1xwCFHafEZ33KY_wz4l7A.crl (hash: qiFGdsPyOoa7zEJpmccqRxDjfaEm0ZNLXzLA8lWKpyA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:24:62:17:ea:a5:0f:7a:93:fd:60:18:28:dd:ff:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c877d24b1d71c0214769f119df7298ff0cf897b0
        Validity
            Not Before: May 17 20:00:36 2024 GMT
            Not After : May 18 20:00:36 2024 GMT
        Subject: CN=aa3258f9ff1a14c6ba16a6e862d8f690b485242d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:e4:28:c3:8a:28:2a:79:ff:cd:7b:a8:2a:d4:
                    96:3b:69:7c:34:9c:92:b0:cd:44:3f:10:18:bd:55:
                    f4:cc:c7:13:cf:ef:b8:29:38:ab:13:5e:fd:2c:34:
                    95:9b:c9:af:64:35:5d:6b:77:6d:f7:d4:2c:56:bc:
                    11:74:6c:19:7a:de:11:fc:4c:af:78:ad:23:c0:c4:
                    ec:48:cd:cb:1c:cc:8a:0e:e9:87:1b:53:0f:bb:b9:
                    a0:75:5c:9b:7c:0e:2e:28:56:92:40:18:d4:90:da:
                    97:80:f5:6e:e4:86:bd:cf:a2:6c:5d:ff:b8:fc:38:
                    d9:3e:24:c4:14:6f:89:9b:92:9d:1c:e8:95:81:f1:
                    ca:4f:89:a4:0d:78:6a:f6:9a:f9:02:49:93:1e:a6:
                    0a:65:ca:05:cf:53:f0:5b:d0:8b:94:a5:f0:7a:25:
                    39:48:96:d1:8c:d2:03:f1:64:f5:2c:bc:f7:63:ba:
                    03:1a:48:51:82:30:36:14:f5:a9:76:7e:0c:e9:a1:
                    64:a1:9a:b4:5c:20:3a:5a:90:78:39:d6:d7:12:50:
                    ac:7f:ab:1a:78:b7:55:64:c2:ae:dd:0b:8f:9e:d3:
                    ae:16:e6:8b:ef:3a:89:eb:b8:f3:00:3f:2d:d7:74:
                    a1:13:da:cb:a6:67:2f:d2:0f:46:8a:b0:42:d2:5c:
                    c8:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:32:58:F9:FF:1A:14:C6:BA:16:A6:E8:62:D8:F6:90:B4:85:24:2D
            X509v3 Authority Key Identifier:
                keyid:C8:77:D2:4B:1D:71:C0:21:47:69:F1:19:DF:72:98:FF:0C:F8:97:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:13:05:fb:8a:d2:8d:23:78:0b:d5:ba:12:c7:06:b5:6c:3d:
         2f:94:40:9d:5a:37:95:f1:9d:2e:96:67:b8:90:dc:53:37:07:
         1e:76:28:0d:9d:3c:42:ae:cb:bd:ca:1e:5b:09:20:fc:c4:98:
         6f:be:1f:4a:55:04:8a:07:1c:9e:69:32:0c:11:f7:87:de:77:
         be:39:4f:0a:cd:94:53:38:ad:f3:d9:f1:51:4e:0e:8b:71:54:
         54:9a:ec:13:41:d8:7d:81:d5:b8:bd:92:fc:c7:8b:ac:95:64:
         03:72:3c:b1:1b:c1:86:a8:1e:e2:1c:07:d5:a7:e0:be:fc:b2:
         bb:c0:60:5c:40:27:fe:0a:d6:e8:53:38:20:d4:18:5d:84:67:
         73:0d:92:3b:b5:8a:cb:20:4d:c8:fa:54:1d:b5:15:05:e6:74:
         20:79:68:60:8c:5d:ca:7f:d2:c6:5e:4a:53:b1:ec:6c:b2:34:
         ba:a6:f7:ae:25:36:3e:ef:1c:ce:27:72:c2:52:fe:a0:b0:5c:
         86:d5:17:ae:97:18:d5:1a:c8:98:84:ec:80:af:b0:48:16:e0:
         e3:74:e7:d0:75:98:14:92:79:02:79:48:b8:ce:95:b3:a3:60:
         15:7d:9f:69:01:18:03:b6:6e:e2:dc:3b:1f:5f:3d:3f:f5:38:
         40:45:5b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----