Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
File:                     KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft (raw, json)
Hash identifier:          Ifk28Ld2yUxPs7bAGA991wtSi6uf/8OdqfxuF7TI3Ws=
Subject key identifier:   E7:23:E6:91:57:71:31:C4:72:62:DD:C4:2B:DE:E0:E7:77:DC:88:C9
Authority key identifier: 28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84
Certificate issuer:       /CN=28fa456d1c23678621954ffbf493a323de2c4484
Certificate serial:       018F874B4A0A0E3491096DC1C745D414D7DC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
Manifest number:          06B3
Signing time:             Fri 17 May 2024 16:03:29 +0000
Manifest this update:     Fri 17 May 2024 16:03:29 +0000
Manifest next update:     Sat 18 May 2024 16:03:29 +0000
Files and hashes:         1: KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl (hash: p02qiIHql3pt0TfQ1i8YAuHDVs4CGYeB3Fc4k7OI0qs=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:03:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4b:4a:0a:0e:34:91:09:6d:c1:c7:45:d4:14:d7:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28fa456d1c23678621954ffbf493a323de2c4484
        Validity
            Not Before: May 17 16:03:29 2024 GMT
            Not After : May 18 16:03:29 2024 GMT
        Subject: CN=e723e691577131c47262ddc42bdee0e777dc88c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:d0:a5:1c:1a:e2:a5:9f:bd:d4:7c:df:8a:4f:
                    b6:49:9f:25:b1:e9:4b:1b:d3:b0:b0:a1:e2:d1:f0:
                    da:71:19:e1:3d:9a:62:b0:eb:b0:55:9e:c2:11:69:
                    19:ec:fb:8f:dd:66:05:09:20:ba:9d:00:e5:f4:dd:
                    f1:4a:35:36:53:64:b9:90:2a:81:2e:77:86:eb:dd:
                    27:11:16:f5:ed:9f:9c:63:0a:50:1d:80:d8:9b:df:
                    8e:76:a6:86:4f:f6:a0:8c:6a:c4:11:81:45:b7:5c:
                    d4:79:4e:13:e3:bd:a4:42:a0:4d:75:18:e6:2e:3b:
                    1c:91:0f:7b:6c:15:25:ab:86:51:fa:02:c0:c2:32:
                    20:ed:ac:78:9a:86:7d:65:3e:37:5c:b4:27:37:97:
                    08:be:61:6c:15:21:12:2c:2f:97:0e:5b:38:f4:8f:
                    a4:40:ed:b9:9f:68:e6:2d:ef:13:0b:24:05:37:01:
                    8a:d6:5b:c4:0e:a5:f3:0b:6b:5a:ce:ad:62:60:dd:
                    e5:82:6f:21:e2:5f:b8:09:c3:85:1e:fe:b6:6d:52:
                    4f:38:a8:c6:77:58:5f:52:6b:0b:b0:d6:3b:07:2e:
                    3a:e9:10:b6:b2:3a:8d:fe:1b:5a:87:b5:dd:47:f1:
                    8f:4c:3c:d2:b3:20:c5:db:4f:24:39:4e:f8:aa:88:
                    be:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:23:E6:91:57:71:31:C4:72:62:DD:C4:2B:DE:E0:E7:77:DC:88:C9
            X509v3 Authority Key Identifier:
                keyid:28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:53:c5:f8:f6:7f:1b:af:d1:bf:3a:37:ed:36:26:ba:5c:e1:
         7d:44:f9:ec:b0:a0:25:3b:76:c9:a6:64:b4:9c:83:8a:e1:a8:
         fc:dc:cb:41:48:14:ec:b1:de:ea:c4:81:ff:15:c7:05:cf:23:
         08:70:c0:1a:91:dc:69:d6:1f:f0:28:42:88:d3:81:55:9a:7d:
         0f:cb:7c:fb:4e:2c:47:93:40:3f:65:3e:1a:a9:16:80:d4:17:
         50:08:8b:a8:4e:d8:30:92:58:89:d9:e2:6f:32:dc:25:1f:7f:
         2a:39:17:0a:6d:b1:f3:eb:e0:02:30:6b:9c:c7:b4:8f:09:83:
         0f:b9:79:6c:1d:c8:a6:cb:75:58:47:a8:5c:e0:a5:4b:21:9c:
         8b:64:b0:b8:3b:63:18:ad:32:4d:e2:be:0e:29:20:ea:75:87:
         6d:89:5e:93:b1:e9:f4:a1:d3:b5:e4:5f:c5:20:c4:fb:c7:4b:
         cf:19:ef:e7:5f:8c:89:20:11:b8:7b:b3:ec:89:20:e2:ee:52:
         83:ee:89:44:54:a3:21:42:ab:3f:48:b3:46:3f:95:61:f4:6e:
         ea:88:e1:69:52:43:8d:d8:33:24:cb:e7:38:df:34:60:da:ed:
         35:d3:f7:1a:14:48:2b:2a:36:be:fd:ec:5b:af:5f:50:a3:3e:
         6a:3c:3c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----