Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
File:                     CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft (raw, json)
Hash identifier:          PLVP2SVAvRS8lna1R13MaHjtPVfsCpfQ+JO1XOP+/KU=
Subject key identifier:   FC:3B:26:D9:55:25:CC:B5:F9:B4:BD:45:81:78:0E:AC:07:92:B7:1B
Authority key identifier: 08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0
Certificate issuer:       /CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
Certificate serial:       018F34401ABB2E2375D854C2251385C744F7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
Manifest number:          05E6
Signing time:             Wed 01 May 2024 13:02:47 +0000
Manifest this update:     Wed 01 May 2024 13:02:47 +0000
Manifest next update:     Thu 02 May 2024 13:02:47 +0000
Files and hashes:         1: CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl (hash: XzdGYv2MBdBmhjIuOc++Pl09WpCz2pph3g+anZu9Xgo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 02 May 2024 13:02:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:34:40:1a:bb:2e:23:75:d8:54:c2:25:13:85:c7:44:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
        Validity
            Not Before: May  1 13:02:47 2024 GMT
            Not After : May  2 13:02:47 2024 GMT
        Subject: CN=fc3b26d95525ccb5f9b4bd4581780eac0792b71b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:53:8a:86:fb:ac:d2:c7:08:7b:b7:56:f7:f5:
                    b9:3f:2d:7f:04:f1:d2:3d:7d:d1:65:e6:2f:d3:31:
                    ba:da:e2:4b:6f:cf:48:0d:43:e5:81:1a:c1:55:fa:
                    4e:99:02:e4:18:07:e2:0b:ac:fd:ff:f0:07:d6:44:
                    7e:d7:d1:27:d9:e9:02:f8:68:66:8b:1c:10:c9:fd:
                    99:10:fb:46:89:4c:a1:ab:ad:68:a4:1b:d8:5a:4c:
                    46:56:29:a8:95:ab:86:1b:0d:52:c5:4c:2e:4c:c5:
                    bd:a5:77:8d:95:f3:9a:1d:3a:18:0b:5c:48:92:de:
                    37:c5:dc:14:1a:df:e0:e0:0f:77:7f:05:47:94:ff:
                    e6:0b:bb:4f:16:ea:5a:90:ea:29:5d:79:1c:24:3b:
                    34:94:55:8c:1d:6c:e7:f4:48:21:59:ea:95:c8:78:
                    a7:43:5d:fe:2c:c2:d5:e7:60:04:ef:4e:a7:14:75:
                    25:85:b9:2b:d3:92:f4:f5:e7:81:29:46:0e:b6:de:
                    f5:82:6a:cf:e4:be:d1:d5:b0:50:c2:81:6a:5a:9a:
                    1b:7d:cc:dc:77:9d:12:3e:d4:2c:f1:ca:f2:88:28:
                    78:48:40:26:9f:ca:9a:74:b1:35:4b:14:93:c8:7e:
                    15:8f:3f:46:a0:34:a1:fd:e7:e1:91:93:a7:5f:c6:
                    32:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:3B:26:D9:55:25:CC:B5:F9:B4:BD:45:81:78:0E:AC:07:92:B7:1B
            X509v3 Authority Key Identifier:
                keyid:08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:4c:07:fd:7b:09:17:a9:4e:2c:b2:00:cf:77:f3:45:7b:ce:
         b6:43:4b:63:b2:64:21:46:93:c0:e1:a5:f5:03:e5:e0:c5:e1:
         5f:94:6e:4d:8e:5a:30:e2:3c:ae:0e:9c:1b:0f:c2:31:0f:09:
         f0:c1:7d:bf:64:4e:86:99:bc:55:f9:0f:cf:90:8a:b6:9a:c2:
         b8:c9:b9:7c:86:81:fc:61:fa:85:aa:a0:04:02:23:74:b9:1d:
         e1:95:25:66:a3:e6:3e:6b:00:17:f8:57:8e:61:24:9e:12:4e:
         18:15:4f:61:f9:4a:59:7b:83:24:9e:d6:64:48:43:1f:a5:28:
         79:5c:e3:04:0c:b6:d3:b1:57:c5:9f:22:46:2c:6c:0a:c1:0f:
         d9:3b:ea:15:de:b3:00:d2:52:32:26:60:6e:cb:9f:58:41:6e:
         3a:aa:4d:8a:78:39:6c:52:83:19:88:1f:97:92:06:bc:a6:52:
         da:41:a5:c9:dc:85:f0:9e:fe:13:71:96:c5:6f:43:0a:c4:de:
         21:48:18:e4:1b:73:ab:77:60:87:b3:5f:39:1f:82:ad:f5:b6:
         c4:9c:0f:4b:11:46:70:60:96:37:1a:f0:a3:0f:aa:bb:12:8a:
         b2:b6:6e:6c:4d:80:59:c5:16:75:f0:4c:48:f3:64:91:d2:79:
         ed:9b:0d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----