Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
File:                     UEwHY-3Lox64nwmD3djdGIkYwu4.mft (raw, json)
Hash identifier:          D1i+CPRtEtFzJPlCdjmmi8x54HTrXzAerse3OtIRe3w=
Subject key identifier:   BA:A1:94:07:B6:3B:96:40:20:54:02:C2:D7:48:FE:39:C0:7A:F3:E3
Authority key identifier: 50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE
Certificate issuer:       /CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
Certificate serial:       01936AB499E701FEC2F3777B28311ECAADF2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
Manifest number:          06A4
Signing time:             Tue 26 Nov 2024 23:00:40 +0000
Manifest this update:     Tue 26 Nov 2024 23:00:40 +0000
Manifest next update:     Wed 27 Nov 2024 23:00:40 +0000
Files and hashes:         1: UEwHY-3Lox64nwmD3djdGIkYwu4.crl (hash: GeRDnq5Jg9nsd/4sx7gVNvf6qgCrGZ8matWejcmL3mo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:6a:b4:99:e7:01:fe:c2:f3:77:7b:28:31:1e:ca:ad:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
        Validity
            Not Before: Nov 26 23:00:40 2024 GMT
            Not After : Nov 27 23:00:40 2024 GMT
        Subject: CN=baa19407b63b9640205402c2d748fe39c07af3e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:44:6f:47:f6:4d:a0:5f:49:4d:eb:6a:50:fd:
                    32:a8:45:a8:f1:09:7e:d0:a6:69:d9:86:72:91:cd:
                    84:3b:7c:c0:9b:9d:10:5a:4b:27:29:9a:f6:11:3f:
                    08:ca:31:ea:16:bf:f8:31:52:79:af:0b:4f:aa:0a:
                    d7:15:62:9e:82:74:25:81:53:1f:4a:cd:48:86:07:
                    6c:08:e2:dc:27:45:11:bb:6f:a5:75:23:f5:ba:8c:
                    92:0f:be:4a:f6:2e:10:01:fa:2e:02:33:76:0e:83:
                    4d:78:42:d0:8e:9e:da:0b:a3:66:e4:ea:8f:e9:4c:
                    2d:c7:dd:20:66:56:8d:2d:1a:01:ed:79:14:c8:eb:
                    1e:b9:78:85:1e:ca:e1:d8:85:4b:4c:02:31:96:20:
                    a4:46:09:8f:c8:8f:a3:c8:cb:17:f7:ae:f0:bd:64:
                    cb:ac:75:a6:13:9c:89:08:25:d6:a6:6b:7b:0f:b5:
                    bf:02:94:d0:a8:33:b7:df:6c:80:d6:8b:84:14:07:
                    ee:93:10:47:67:ec:0e:17:5c:bc:32:56:46:94:f6:
                    9b:b0:c1:76:52:20:f3:a7:e9:59:36:13:2e:04:a2:
                    f3:03:3a:7d:9a:2d:c4:e0:aa:83:c1:f5:92:cb:f4:
                    6f:4c:0f:b3:ed:ba:bd:78:a0:03:a6:f5:78:51:22:
                    3b:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:A1:94:07:B6:3B:96:40:20:54:02:C2:D7:48:FE:39:C0:7A:F3:E3
            X509v3 Authority Key Identifier:
                keyid:50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:c8:e0:99:87:ac:40:db:7c:be:65:db:18:26:ae:0c:35:98:
         7e:86:ec:91:fb:34:da:9a:ea:29:52:61:b0:36:de:1f:9b:66:
         dd:59:08:72:02:46:5c:78:8b:d0:99:d0:0d:52:0c:88:ec:f2:
         47:dd:57:6c:34:26:71:31:da:c9:64:00:d7:47:17:c6:12:0d:
         01:36:3e:5f:f2:1d:c2:ca:57:07:7b:ab:5f:20:f0:60:eb:c8:
         63:d4:ac:6f:aa:b0:c1:0d:9d:1d:6a:81:c3:22:0a:f1:e4:02:
         ef:26:19:14:4b:7b:9b:ef:e7:fc:ae:de:fd:33:16:54:6a:d7:
         04:01:40:35:86:04:48:1a:69:9f:04:f9:f9:41:cd:e3:0b:30:
         7d:13:b4:b3:df:d8:1a:6b:2d:2a:ca:d9:0d:dc:de:8d:1c:6f:
         90:3c:32:8c:22:d0:0c:b0:1f:1a:c2:b4:d0:c4:46:f4:3b:19:
         16:b4:99:54:dd:6a:cf:01:23:8b:a0:40:7b:a0:5a:c3:de:98:
         37:59:ff:94:45:9d:3c:de:96:ee:d9:7d:68:ed:b0:fd:4c:92:
         c6:81:75:71:cd:a6:c0:4f:1d:44:c1:24:41:8c:21:b3:6b:42:
         5d:cb:cc:bf:23:a1:ad:19:e0:80:6c:11:71:35:12:f5:cc:e3:
         31:d9:61:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----