Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft
File:                     XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft (raw, json)
Hash identifier:          DQqBgOup5LNyA7z2uJa7+sAwEUg1/vl91sHT9K/nrbs=
Subject key identifier:   EE:38:26:C4:FE:F4:E5:D3:6C:1A:37:08:5F:E6:A4:CB:EE:32:18:38
Authority key identifier: 5E:A8:5F:1D:D4:D0:34:64:80:F0:09:87:4A:8F:56:70:E3:10:85:C2
Certificate issuer:       /CN=5ea85f1dd4d0346480f009874a8f5670e31085c2
Certificate serial:       018F86A3A1AC8C09B9C39CFA4886A1324D82
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XqhfHdTQNGSA8AmHSo9WcOMQhcI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft
Manifest number:          1176
Signing time:             Fri 17 May 2024 13:00:21 +0000
Manifest this update:     Fri 17 May 2024 13:00:21 +0000
Manifest next update:     Sat 18 May 2024 13:00:21 +0000
Files and hashes:         1: XqhfHdTQNGSA8AmHSo9WcOMQhcI.crl (hash: 0/6zgkOvTFsZJBkQ1kgcopT9bc3KlUD/OzkpXF3okjM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XqhfHdTQNGSA8AmHSo9WcOMQhcI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 13:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:86:a3:a1:ac:8c:09:b9:c3:9c:fa:48:86:a1:32:4d:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5ea85f1dd4d0346480f009874a8f5670e31085c2
        Validity
            Not Before: May 17 13:00:21 2024 GMT
            Not After : May 18 13:00:21 2024 GMT
        Subject: CN=ee3826c4fef4e5d36c1a37085fe6a4cbee321838
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:81:bb:48:28:fc:44:98:9f:7d:db:fc:cc:7d:
                    ea:e7:df:47:bc:5b:03:0f:f4:f4:fd:d0:15:2c:be:
                    6d:25:7e:1e:e5:df:c4:be:7e:81:de:f5:b4:0c:de:
                    63:0e:b5:7f:73:9c:bd:26:37:76:e6:f9:87:f8:ee:
                    10:60:fa:58:03:ed:0a:e9:17:de:45:f7:f3:42:0c:
                    d4:40:84:9d:70:3e:54:3f:04:87:33:e7:0e:10:b2:
                    7b:65:93:40:3a:8a:b7:74:8c:b7:d7:03:93:fa:8f:
                    a7:7b:13:08:60:b6:3a:6a:e7:1b:57:a6:dd:f7:80:
                    51:57:a4:48:4f:57:29:71:77:79:a0:6a:83:cb:a6:
                    b8:9a:09:a5:a0:51:82:62:68:cc:3e:6d:49:28:f2:
                    2f:4f:28:9e:f2:c0:16:b1:15:ca:99:bf:ec:11:07:
                    61:76:c5:36:86:a5:01:b8:b3:1f:f3:48:95:ce:25:
                    ca:b6:28:be:0b:5e:4a:fc:22:ff:9b:08:5f:14:f3:
                    2d:b4:64:e0:64:ae:5a:6e:fb:8e:32:08:6c:61:59:
                    d7:59:b2:59:fe:e5:7f:98:54:5a:c2:d8:0a:f1:6a:
                    d0:9c:59:d9:00:cd:38:4e:b2:38:8e:16:58:96:2b:
                    81:68:0d:d7:d6:2b:08:dd:01:71:89:08:a1:b1:ea:
                    27:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:38:26:C4:FE:F4:E5:D3:6C:1A:37:08:5F:E6:A4:CB:EE:32:18:38
            X509v3 Authority Key Identifier:
                keyid:5E:A8:5F:1D:D4:D0:34:64:80:F0:09:87:4A:8F:56:70:E3:10:85:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqhfHdTQNGSA8AmHSo9WcOMQhcI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ef7808-122b-4b89-9358-590c5f1b01b3/1/XqhfHdTQNGSA8AmHSo9WcOMQhcI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:c4:33:11:93:2e:8e:4d:b7:48:59:61:3b:f0:af:8b:3b:7a:
         52:4b:d2:a9:e8:71:e6:b9:f5:86:6c:1e:7c:50:d8:da:14:30:
         09:0c:11:f1:89:b4:78:72:bf:23:7c:e5:33:3d:17:8b:5e:e4:
         9b:a5:31:83:68:d5:65:c5:e7:31:77:08:1d:64:14:a1:ed:d5:
         a0:ad:0a:2e:00:e4:17:61:36:4e:fe:8b:75:c0:59:8b:c6:18:
         c5:92:3f:d8:b3:68:69:59:e5:9e:7c:8a:bf:50:f0:e9:54:6a:
         f5:48:e2:69:49:b2:1a:b5:a2:20:87:58:21:eb:a5:62:a5:56:
         7d:3f:21:b5:41:3d:74:1c:be:13:25:62:1a:03:27:ee:d6:70:
         7c:87:ec:ae:26:16:0e:06:9b:8d:7a:84:66:16:69:31:75:d8:
         9d:86:84:a0:53:75:79:68:0e:33:d6:26:97:da:76:0c:a8:09:
         15:52:2d:88:9b:10:c9:97:6f:43:7f:10:33:02:8d:6d:d8:b3:
         0f:5a:7c:37:92:14:92:d1:d7:5b:19:2f:e8:cc:66:3e:6d:49:
         c4:c9:18:26:5a:01:2b:b6:f5:05:c0:87:77:41:ca:3e:dc:4b:
         62:04:d1:17:40:e7:a8:4a:fd:54:bb:18:5e:18:3a:b1:18:38:
         44:5e:5a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----