Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft
File:                     YDRE4ZlioZHv0vIWoSji9M_io94.mft (raw, json)
Hash identifier:          5CqB4MUfw47ZTJSBs5zg6ysO9YJx+ZXVkZ0j9BR2RIA=
Subject key identifier:   27:1C:96:59:BE:5A:D7:A2:6A:51:77:4C:D2:35:D6:FE:62:C2:FA:8F
Authority key identifier: 60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE
Certificate issuer:       /CN=603444e19962a191efd2f216a128e2f4cfe2a3de
Certificate serial:       018F89371D59825E1E52EF89181C78B641AF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft
Manifest number:          0193
Signing time:             Sat 18 May 2024 01:00:41 +0000
Manifest this update:     Sat 18 May 2024 01:00:41 +0000
Manifest next update:     Sun 19 May 2024 01:00:41 +0000
Files and hashes:         1: YDRE4ZlioZHv0vIWoSji9M_io94.crl (hash: ioagWeLNmKK57OjJdNNBR0T08pc5ASKj6ZB/po/49yg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:89:37:1d:59:82:5e:1e:52:ef:89:18:1c:78:b6:41:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=603444e19962a191efd2f216a128e2f4cfe2a3de
        Validity
            Not Before: May 18 01:00:41 2024 GMT
            Not After : May 19 01:00:41 2024 GMT
        Subject: CN=271c9659be5ad7a26a51774cd235d6fe62c2fa8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:63:1c:13:21:eb:c2:67:04:06:62:44:42:13:
                    c4:88:e4:8b:92:a4:f8:58:ed:96:2a:c9:f8:3f:7f:
                    c5:da:d5:2e:4c:54:1e:70:61:a7:fb:5f:79:d9:ef:
                    e5:70:19:04:b9:f8:45:39:e2:a9:30:eb:9b:97:50:
                    63:fc:0e:dd:d6:a6:e8:fa:a7:95:91:38:fd:8a:50:
                    9d:42:1a:97:24:b3:e3:c1:1e:6f:39:11:cc:b0:25:
                    01:bf:c2:bb:32:3e:87:57:20:64:83:35:93:50:8e:
                    14:24:80:cb:fa:92:d0:24:95:7e:2f:0c:af:d6:03:
                    bc:0f:cc:b4:6e:cb:4f:64:36:5e:2c:e0:70:ed:5b:
                    28:85:f9:18:a1:d5:a0:a7:64:be:c0:21:17:ce:c3:
                    b0:19:04:4b:6d:33:95:f0:e5:34:e6:56:76:53:83:
                    93:81:50:d0:9b:39:67:c8:48:35:7e:38:64:16:08:
                    ec:ee:cd:05:46:2f:77:c6:c9:fa:14:1c:c4:d6:89:
                    c6:0f:6d:ef:8c:99:79:07:dd:9b:d1:9b:4f:c8:e5:
                    72:83:c2:6a:b3:a4:11:31:49:81:69:31:03:8d:ae:
                    e1:98:e4:4d:72:e1:7d:4d:c1:31:34:3c:5f:4c:f5:
                    c5:00:24:4d:55:73:2c:09:67:ad:c4:85:1c:b1:44:
                    db:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:1C:96:59:BE:5A:D7:A2:6A:51:77:4C:D2:35:D6:FE:62:C2:FA:8F
            X509v3 Authority Key Identifier:
                keyid:60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:91:12:5d:5d:04:32:59:80:11:86:12:c5:77:97:26:11:38:
         64:01:d5:80:71:46:a5:32:a7:30:d4:48:7a:c6:87:d4:bc:5e:
         f9:8d:99:f0:4a:01:89:2a:a5:1b:5b:e4:5b:65:8c:0b:32:7c:
         ca:f9:0d:89:19:19:21:a6:e4:52:c1:53:92:37:c2:91:99:0c:
         1e:21:50:42:55:9d:58:a1:36:4b:35:39:23:90:a7:c8:7f:bd:
         f7:97:ad:be:9f:ce:ca:52:b9:94:86:1f:ee:5f:11:e7:a0:5b:
         4b:89:6e:aa:fd:19:44:2e:b3:dc:50:ee:d4:6a:10:d8:4f:8c:
         bc:97:d8:f1:76:1c:8d:3a:25:65:31:9d:08:fb:3b:7f:3f:2d:
         94:ed:bd:06:92:a7:8e:0b:cc:27:ec:f8:7e:d6:e9:0a:90:4f:
         80:de:71:8b:45:a5:ae:6d:2a:f2:7c:73:68:db:28:08:70:e0:
         05:04:f7:da:6a:20:68:3d:d5:05:d2:62:0b:4d:87:99:11:c3:
         b9:88:42:5f:7d:c1:d7:4f:fb:30:a5:8c:b3:47:53:25:6a:b7:
         d5:87:17:4f:9a:bc:54:df:b7:40:9f:49:5a:1e:31:8e:36:eb:
         6c:01:a6:cb:40:fe:6a:9f:b0:03:8e:15:c6:79:1e:54:75:82:
         8e:98:2a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----