Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
File:                     UEwHY-3Lox64nwmD3djdGIkYwu4.mft (raw, json)
Hash identifier:          8yaxF4GGG5oFyFoWraiExYJo7t55umv+j3Gm4w6Zv98=
Subject key identifier:   FF:11:44:DE:3D:04:7F:37:FC:D5:35:A9:DC:0B:2B:D9:A8:CC:A1:ED
Authority key identifier: 50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE
Certificate issuer:       /CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
Certificate serial:       018F86361DD997054F527877E5930CA63B51
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
Manifest number:          04A0
Signing time:             Fri 17 May 2024 11:00:44 +0000
Manifest this update:     Fri 17 May 2024 11:00:44 +0000
Manifest next update:     Sat 18 May 2024 11:00:44 +0000
Files and hashes:         1: UEwHY-3Lox64nwmD3djdGIkYwu4.crl (hash: zm7xVhBvrqKiWTU1bokFmFSn0fV6F9w2kaHdX4WXh7I=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 11:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:86:36:1d:d9:97:05:4f:52:78:77:e5:93:0c:a6:3b:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
        Validity
            Not Before: May 17 11:00:44 2024 GMT
            Not After : May 18 11:00:44 2024 GMT
        Subject: CN=ff1144de3d047f37fcd535a9dc0b2bd9a8cca1ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:e8:25:04:85:e3:fb:f2:1b:94:48:3f:0a:49:
                    48:ee:12:02:fa:fa:8c:69:9b:89:47:ce:88:cd:03:
                    62:0b:88:ac:41:75:f2:0a:18:9a:87:0e:ee:46:8e:
                    6e:e0:45:31:af:52:10:87:48:0a:0d:f8:02:e1:b0:
                    7d:c0:f3:a9:64:e3:8c:d2:4c:2b:b8:d9:8f:76:b3:
                    84:4b:bc:73:a9:34:21:68:f8:c4:5a:53:0d:21:12:
                    aa:c9:4f:97:4e:bf:02:00:cc:c5:8f:80:5e:bc:e1:
                    5e:18:c0:1c:05:12:71:ad:8e:21:6a:37:2a:cc:b3:
                    a6:f7:d2:4b:a8:b6:32:9d:c3:7a:e7:7a:00:5a:aa:
                    ef:0b:08:3d:78:5e:2e:a2:19:90:ef:be:7b:8f:3d:
                    cb:7b:be:1f:2d:1f:d1:3d:74:21:fc:ec:05:93:3b:
                    5a:fd:cc:92:08:6b:43:3f:e4:f4:21:6b:20:a8:a7:
                    a2:85:3f:37:fd:8c:ed:72:66:ec:25:f4:e4:18:b9:
                    48:66:a7:28:45:83:98:ec:6f:59:cf:f9:45:76:8c:
                    65:dc:d6:6d:72:eb:94:d8:23:46:12:13:df:50:a1:
                    27:5c:41:a1:5f:63:7b:43:9c:7b:73:8f:d4:2f:fb:
                    29:97:ea:55:8e:55:18:71:f1:c0:bb:68:6f:65:34:
                    f2:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:11:44:DE:3D:04:7F:37:FC:D5:35:A9:DC:0B:2B:D9:A8:CC:A1:ED
            X509v3 Authority Key Identifier:
                keyid:50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:45:2f:97:c9:4f:bd:87:c0:4d:22:31:32:d5:f9:35:7d:64:
         cf:77:b3:49:fb:ea:10:2a:da:6a:46:e9:1f:2e:82:2a:1b:57:
         27:45:8c:73:31:fd:b9:f4:dc:84:60:59:1c:0f:55:49:c4:09:
         ed:9a:de:5f:24:f6:a8:cd:88:17:07:78:2c:de:d2:4e:e4:4a:
         38:f8:66:be:a0:83:ed:b8:40:c9:70:ad:12:d2:74:bc:43:1d:
         2c:3e:47:37:65:39:d7:37:84:ac:49:c2:01:d4:98:a4:9f:2b:
         1c:3e:ed:11:1e:88:41:e1:09:4b:82:fe:d7:fa:62:fa:0f:3e:
         1a:43:61:ac:c5:f8:6f:23:94:a3:bf:f6:6a:a4:42:aa:f9:15:
         91:8b:dd:03:8e:7f:2e:2a:83:b7:c4:df:33:5e:e0:0e:4f:c4:
         9a:2f:ee:23:e4:d0:e7:14:46:9b:46:4e:fa:09:07:42:54:f4:
         75:c9:25:fa:df:80:35:d1:b7:f5:3f:9f:fe:02:21:86:9e:bf:
         80:5e:d7:2a:7b:dc:f9:2d:fe:f3:31:d5:00:5d:d6:9c:68:44:
         fc:45:34:9b:49:2b:c8:00:67:97:ab:6e:7b:3d:32:e6:d1:18:
         01:bc:ab:27:c7:84:d8:75:d5:01:09:44:c9:90:d8:e6:11:78:
         97:e4:97:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----