Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
File:                     31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft (raw, json)
Hash identifier:          rTrroENwujvnP/gUVYEjk6EhCi4j9+yrhou/9uGyG5o=
Subject key identifier:   07:FD:54:F1:08:08:D0:19:0D:BC:92:C1:24:29:24:25:4B:78:25:63
Authority key identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E
Certificate issuer:       /CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
Certificate serial:       019406EAF7995174B29D15484E3D0BCA57A8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
Manifest number:          0B34
Signing time:             Fri 27 Dec 2024 07:00:49 +0000
Manifest this update:     Fri 27 Dec 2024 07:00:49 +0000
Manifest next update:     Sat 28 Dec 2024 07:00:49 +0000
Files and hashes:         1: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl (hash: lRVT3a2c7nB/OSDY+0/Xd/dmV0i4jIVuED1w7nUWFfM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 28 Dec 2024 00:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:06:ea:f7:99:51:74:b2:9d:15:48:4e:3d:0b:ca:57:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
        Validity
            Not Before: Dec 27 07:00:49 2024 GMT
            Not After : Dec 28 07:00:49 2024 GMT
        Subject: CN=07fd54f10808d0190dbc92c1242924254b782563
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:73:c0:0e:9b:39:b3:cf:67:99:be:36:18:50:
                    5e:af:b4:9e:34:e0:79:7c:50:2b:07:ce:21:e6:08:
                    87:f5:49:15:b8:e0:c6:a6:a6:1c:ce:14:ff:4a:df:
                    c9:ff:09:1d:fa:c5:8c:55:a3:a2:8e:a0:79:5c:53:
                    f1:38:35:1e:88:dc:bf:86:03:6d:29:b9:f5:dc:43:
                    b6:83:39:24:73:83:73:8b:83:d2:6e:d5:ef:9c:1e:
                    71:57:55:4d:82:5c:29:e6:f7:c7:a3:af:6a:e8:ca:
                    b3:21:81:75:d3:80:1a:b6:65:d4:bf:bd:e9:7c:df:
                    53:dc:a2:0c:f7:c7:c8:1c:37:5f:65:34:f4:fc:c7:
                    73:13:29:f9:49:92:6b:95:a6:10:25:53:2c:56:dd:
                    d9:42:7d:e0:d0:5c:c3:ff:4f:87:c5:4a:dc:9d:e3:
                    2d:83:9e:18:1e:1f:ca:07:73:41:fe:d2:d1:d5:6c:
                    1e:74:25:25:f7:3d:9f:10:81:b3:58:aa:36:a4:12:
                    dd:c0:7a:83:84:b3:db:aa:68:f6:86:a7:75:07:fd:
                    24:54:c8:d5:68:96:1b:53:97:e5:db:17:64:ca:de:
                    89:70:82:cf:7b:8e:25:38:34:00:06:89:21:c9:a5:
                    16:69:2b:b2:45:03:5f:52:90:dc:e1:80:8f:3a:e7:
                    aa:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:FD:54:F1:08:08:D0:19:0D:BC:92:C1:24:29:24:25:4B:78:25:63
            X509v3 Authority Key Identifier:
                keyid:DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:aa:cd:fb:f5:d7:e1:b2:55:e2:ba:40:7d:ef:1e:18:6f:e2:
         07:78:d3:b6:34:e0:15:7b:a7:bf:8c:dd:2a:05:bb:4f:fd:06:
         d5:46:db:5c:0c:d7:29:86:17:a3:f1:19:8b:0f:5e:76:c8:38:
         60:14:dc:6a:54:7f:1f:14:46:61:67:9a:f5:25:8f:40:83:58:
         1d:11:8b:35:b5:61:e6:2a:ed:83:48:3c:fb:54:8d:a9:68:95:
         b1:95:35:31:1d:58:c8:57:16:7c:68:bc:5b:3e:a7:2f:ef:c7:
         87:ea:2c:34:83:d0:e8:30:65:7b:68:54:d0:5b:1c:82:65:c4:
         fc:d1:0a:96:92:a7:2d:f8:ba:92:ac:34:52:f9:3e:07:87:c7:
         ee:d5:56:78:9c:48:a1:64:72:ce:fc:d1:c3:d5:b9:05:f0:1e:
         b6:40:d0:8e:ac:01:a0:a6:71:2c:d8:15:bc:52:14:95:f3:d9:
         1e:80:c2:8e:5e:7f:e1:9c:29:bc:12:9c:95:53:ef:1d:ed:53:
         d3:4d:55:8d:43:d2:4f:2f:78:ab:a0:3b:51:6b:1d:32:6d:e6:
         75:e0:10:90:b8:14:94:26:aa:79:5c:24:f1:a6:f6:17:a0:69:
         21:52:a4:fc:ed:9f:37:6b:fa:c2:c9:d8:8b:f8:52:99:d1:ce:
         db:c9:c9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----