Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
File:                     owVfB71HqGR4w79HOSVzrNU9Y24.mft (raw, json)
Hash identifier:          aQar6mPMi9HTvZ6N6reS05/49xISYcg9wT5B17f9jnY=
Subject key identifier:   01:A8:4E:43:BF:8F:D3:73:EC:5B:2E:45:FE:8C:50:6C:94:F7:B1:8C
Authority key identifier: A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E
Certificate issuer:       /CN=a3055f07bd47a86478c3bf47392573acd53d636e
Certificate serial:       018F87B6CDA279CF03EDE50E06935A0D1F05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 18:00:55 +0000
Manifest this update:     Fri 17 May 2024 18:00:55 +0000
Manifest next update:     Sat 18 May 2024 18:00:55 +0000
Files and hashes:         1: owVfB71HqGR4w79HOSVzrNU9Y24.crl (hash: ertNG5R2uEgyn+Z+1NK9pN0+n0fMHB046bPUdRKk3fg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:b6:cd:a2:79:cf:03:ed:e5:0e:06:93:5a:0d:1f:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3055f07bd47a86478c3bf47392573acd53d636e
        Validity
            Not Before: May 17 18:00:55 2024 GMT
            Not After : May 18 18:00:55 2024 GMT
        Subject: CN=01a84e43bf8fd373ec5b2e45fe8c506c94f7b18c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:6e:77:80:18:41:cf:d7:56:9d:e3:a2:05:74:
                    c2:e4:96:03:4b:5a:f2:d6:3b:28:e5:55:46:49:d7:
                    87:a8:38:7a:82:40:ac:25:8c:a9:d3:92:7b:77:08:
                    24:02:49:9a:83:fb:30:68:ad:8b:5e:9d:3c:46:7e:
                    ae:04:1b:f9:da:e7:95:85:a6:1e:3d:84:15:cc:cc:
                    fd:b0:9f:14:c9:e5:25:d6:69:66:77:13:a5:74:1b:
                    41:39:87:27:e7:85:cb:31:27:8f:ce:f2:35:00:1c:
                    0c:4d:b6:90:ba:82:d4:89:43:2d:e8:1e:8e:05:a7:
                    57:5c:74:87:da:f9:c1:95:12:39:e2:10:12:1a:0f:
                    60:99:4a:ca:4c:7f:c8:2e:3b:65:0c:da:05:bc:53:
                    60:13:d0:06:66:ad:18:52:1b:e1:c3:7e:08:6a:6a:
                    23:c1:f2:0d:95:f6:1c:1e:c4:d3:82:c8:d5:f1:2d:
                    9c:f4:d4:17:2a:0e:ae:58:41:be:94:de:19:a6:77:
                    55:c0:70:fb:74:86:31:0c:b7:84:5f:8c:ba:e8:ec:
                    0a:df:c4:7d:43:08:9d:ee:02:6b:b4:8b:73:f7:e4:
                    f9:01:d5:04:26:eb:42:ae:ac:16:03:4e:27:a6:d2:
                    ce:c8:74:3d:62:15:3f:c2:87:03:19:a3:9b:46:06:
                    8b:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:A8:4E:43:BF:8F:D3:73:EC:5B:2E:45:FE:8C:50:6C:94:F7:B1:8C
            X509v3 Authority Key Identifier:
                keyid:A3:05:5F:07:BD:47:A8:64:78:C3:BF:47:39:25:73:AC:D5:3D:63:6E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owVfB71HqGR4w79HOSVzrNU9Y24.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d9d0bf-6d51-408f-b7ae-a3aad1178cd4/1/owVfB71HqGR4w79HOSVzrNU9Y24.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:1b:87:74:8e:71:30:65:10:2e:cf:58:f4:16:57:e2:9b:e5:
         97:77:8d:23:4c:06:63:4b:e0:bd:35:e9:9a:9a:4f:20:e4:00:
         ec:d7:1d:1b:47:4e:f1:d8:fb:bb:bc:95:c0:37:9c:c1:89:20:
         8f:18:21:71:83:7c:b4:1c:3d:38:c2:9b:72:1b:47:4e:50:b0:
         95:c5:01:b9:1f:74:28:ee:3f:ab:51:00:d0:d8:2d:5c:47:c4:
         cf:c6:d6:7c:25:8b:54:34:36:ff:10:a4:31:df:0e:ec:a2:e6:
         7b:b4:47:b5:65:e7:19:22:f6:a3:48:f5:7d:a2:d0:73:2a:c4:
         f2:ba:88:19:a3:15:bc:b9:30:a8:18:f5:9d:89:83:54:f3:0e:
         ac:33:30:c7:91:e1:9b:69:92:6e:aa:22:39:51:07:7f:42:89:
         f7:67:f8:c9:15:cb:99:62:d9:a5:c2:12:1c:9c:6b:cc:c5:ab:
         5f:97:06:6b:ef:cc:fe:df:f8:c8:5e:af:9c:09:9b:0f:03:5f:
         d0:ea:c0:35:ac:d2:91:9d:39:66:b6:29:98:e2:03:50:37:1b:
         d3:9a:00:16:c0:6f:10:37:6e:6c:39:cf:04:dc:3c:62:7c:d9:
         2d:11:f3:a7:f5:5a:de:c2:1f:41:1f:94:b5:62:b3:d5:81:21:
         e1:70:3d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----