Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
File:                     uah5UDfdQPAYNz9HxZ4EohL1oFU.mft (raw, json)
Hash identifier:          YgwN7lW675qSpc04cRSuktq4PzPkKnc2SvZ1GNaABf8=
Subject key identifier:   0F:12:A8:ED:A8:65:89:C7:FB:5C:B0:5F:BB:0F:FB:23:00:09:0D:79
Authority key identifier: B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
Certificate issuer:       /CN=b9a8795037dd40f018373f47c59e04a212f5a055
Certificate serial:       019369D9E9E0539B6DBF1244C84F1D6C5535
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
Manifest number:          0E6D
Signing time:             Tue 26 Nov 2024 19:01:49 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:49 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:49 +0000
Files and hashes:         1: uah5UDfdQPAYNz9HxZ4EohL1oFU.crl (hash: tOmJiUxhgrmLkGbjftcjg4Z56b2I/iR05KnaBFfOj0c=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d9:e9:e0:53:9b:6d:bf:12:44:c8:4f:1d:6c:55:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b9a8795037dd40f018373f47c59e04a212f5a055
        Validity
            Not Before: Nov 26 19:01:49 2024 GMT
            Not After : Nov 27 19:01:49 2024 GMT
        Subject: CN=0f12a8eda86589c7fb5cb05fbb0ffb2300090d79
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:2b:58:b7:09:76:e1:2b:87:5a:00:0b:62:98:
                    68:d8:5a:fb:6c:8d:01:55:af:b2:71:c9:08:0e:50:
                    ce:03:cc:5f:d0:40:f0:44:f3:cb:6e:ea:e5:33:2b:
                    68:b3:34:15:a9:b1:e5:e3:40:bc:31:bc:60:94:15:
                    b8:8b:3c:e9:31:34:fd:fb:5f:e1:61:0a:ac:da:d1:
                    b7:a6:34:e8:50:ff:5e:bd:a4:6b:06:4a:14:d9:39:
                    3c:26:87:e2:2f:88:e3:42:c0:b0:be:2e:ff:08:0e:
                    f5:9e:62:e9:04:cd:50:a3:8b:e7:48:0a:61:6d:a6:
                    44:2a:88:c4:ab:0c:b7:5e:b4:81:06:eb:20:78:01:
                    9a:17:5c:4f:2f:0f:85:80:74:01:1a:54:61:c1:c5:
                    11:35:fa:3d:83:73:8c:d2:97:2d:0d:3a:7c:30:54:
                    cd:f2:91:ff:48:c2:52:ff:1e:d0:92:0d:df:b0:ee:
                    60:39:76:52:b1:e4:7f:85:3d:6c:ca:8f:14:8e:d7:
                    a4:2b:b4:77:ce:80:37:9d:29:91:ff:b2:b5:5a:7f:
                    43:4b:de:90:ba:79:5c:4d:21:42:d5:8a:06:94:d1:
                    00:1b:a3:35:20:de:62:c9:a2:ff:2b:8b:1d:71:4a:
                    92:0f:de:08:66:c7:f1:33:cc:2d:20:b0:de:01:f2:
                    91:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:12:A8:ED:A8:65:89:C7:FB:5C:B0:5F:BB:0F:FB:23:00:09:0D:79
            X509v3 Authority Key Identifier:
                keyid:B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:90:df:0b:17:a9:aa:19:73:7b:95:4f:d7:68:98:c3:1e:02:
         4c:68:09:cd:7a:73:5b:6f:d4:2a:2e:10:48:74:69:98:04:62:
         0e:02:66:f9:1d:05:e2:87:b6:8d:2f:61:26:bb:4e:51:c3:8a:
         85:80:da:c5:2d:12:69:8b:28:0e:86:c9:62:1d:90:c6:41:a3:
         26:bb:89:26:d6:73:0c:70:3d:f4:59:6c:a5:78:74:53:a7:ab:
         2c:e6:3c:45:e4:ed:10:01:06:a7:25:fd:f2:fd:fa:e1:90:a9:
         9b:8e:66:86:7e:95:59:b2:70:15:ab:c8:59:88:60:69:cd:72:
         57:bc:3f:d4:20:24:45:ab:02:95:84:2c:f4:f3:00:6c:1a:d1:
         92:d2:1e:0f:9c:7e:5f:b3:38:e4:76:2d:af:8e:41:d5:61:ce:
         a7:4b:05:e1:a2:3a:e7:fb:48:62:6c:f9:f7:0b:f0:4a:9b:be:
         42:7d:cd:b9:06:39:4e:4c:a0:00:f3:59:2d:00:68:e0:08:1c:
         ab:39:2b:ff:5d:a1:b7:03:16:9e:67:36:2a:01:d6:08:17:29:
         76:d0:68:4a:33:a4:3d:7c:6c:48:56:f7:13:a8:75:a7:21:61:
         e6:a6:53:a9:60:8c:35:bb:42:b0:47:45:27:c3:5e:b7:b3:af:
         9d:b5:2f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----