Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
File:                     tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft (raw, json)
Hash identifier:          Mzjl7UY8xYG+DlAJVHcAItiP+6EY7vBhHXJ6w+REKlI=
Subject key identifier:   E9:9C:FA:3B:14:6B:12:ED:D7:A1:C7:F6:E6:4A:F1:9B:E5:B8:DF:81
Authority key identifier: B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C
Certificate issuer:       /CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
Certificate serial:       018F87485DED7A55012C017B407AA6FBBA1F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
Manifest number:          1175
Signing time:             Fri 17 May 2024 16:00:17 +0000
Manifest this update:     Fri 17 May 2024 16:00:17 +0000
Manifest next update:     Sat 18 May 2024 16:00:17 +0000
Files and hashes:         1: tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl (hash: 7awqwn//qB82BonkuJk9KAuyYiUpF1Nlrqrt+mT/W0w=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:5d:ed:7a:55:01:2c:01:7b:40:7a:a6:fb:ba:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
        Validity
            Not Before: May 17 16:00:17 2024 GMT
            Not After : May 18 16:00:17 2024 GMT
        Subject: CN=e99cfa3b146b12edd7a1c7f6e64af19be5b8df81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:25:5e:39:4f:21:73:2f:2e:1b:d5:b0:e3:cf:
                    cc:c5:cc:1a:36:5e:c1:1b:5d:1d:ab:e2:c3:03:96:
                    37:85:2f:6d:0c:ac:91:6f:68:8c:2a:4c:49:d9:a4:
                    70:d0:88:9b:fc:45:8e:52:7e:b3:87:56:28:62:3b:
                    03:f2:42:c3:f6:5f:4d:c9:8b:8e:e5:10:83:86:5e:
                    2c:12:31:49:d3:12:74:e5:35:83:48:ff:97:3d:e7:
                    ce:fa:3d:a2:50:c0:bd:b4:ae:12:10:89:50:e7:0a:
                    c0:e5:07:6b:a2:b6:31:43:7d:5e:9b:e8:0f:1e:e0:
                    16:a6:6b:be:f6:18:0e:fc:95:02:72:d5:8f:4b:b0:
                    7b:a2:eb:79:ac:0e:56:fd:b8:49:bd:e4:9f:14:8f:
                    a0:74:d4:a2:d6:1c:92:28:57:83:0d:ee:80:6f:b1:
                    db:a3:41:19:30:21:22:95:f8:d4:54:53:7e:c3:ac:
                    f2:12:12:94:73:4f:7a:19:c8:2e:2d:b8:2b:01:15:
                    33:cf:8e:ab:b6:b8:4d:ee:1f:c6:65:d3:2e:99:c4:
                    1a:8e:46:19:1a:58:9a:0f:7b:af:b5:ca:02:20:63:
                    1c:d5:6f:09:3f:40:75:d0:da:03:c1:8f:dd:61:04:
                    0c:eb:c4:3a:14:30:a1:57:f5:6a:a3:ec:4d:1a:d8:
                    92:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:9C:FA:3B:14:6B:12:ED:D7:A1:C7:F6:E6:4A:F1:9B:E5:B8:DF:81
            X509v3 Authority Key Identifier:
                keyid:B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:4f:6b:0d:0e:d0:a3:4e:c4:18:61:60:2c:42:30:b0:10:60:
         ce:53:69:e2:e7:16:b9:d5:bf:9b:82:0d:c0:8d:12:16:0d:ba:
         f2:11:92:a6:f8:3c:ca:02:79:ee:fa:9f:20:02:d1:65:26:fa:
         23:a5:b2:e0:a5:d3:00:b4:40:09:5b:74:16:b2:54:b7:b1:4d:
         2a:05:bc:b7:dc:a3:ac:1e:d6:e4:ef:55:1a:f6:90:31:72:bb:
         23:1b:ef:a4:71:15:0b:bb:dd:e3:17:2b:4f:8d:2a:05:0e:c4:
         a2:26:93:e6:28:bf:72:f7:af:ec:b0:29:d5:90:ac:2c:66:ff:
         7b:76:85:ff:bc:88:b3:1a:7b:9d:d0:43:ce:16:48:12:bf:00:
         df:25:d9:0b:95:ff:78:36:a8:8c:97:6f:93:fc:73:71:0e:d1:
         af:ce:08:7a:cd:ef:83:9d:e1:db:30:b8:89:74:01:bf:c7:50:
         07:46:e3:bd:c8:1b:d3:a9:50:5f:92:96:3c:65:3f:80:3a:c0:
         95:b9:99:10:6e:52:60:c0:ff:29:0e:63:d3:bc:9d:f1:18:96:
         c7:5a:bd:7f:55:18:c3:4c:69:9d:f1:4f:72:79:43:3a:83:fe:
         6b:e8:ab:8c:b2:6d:85:b5:72:85:f1:f4:55:55:51:47:e5:4d:
         58:75:a9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----