Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft
File:                     UpJ4MtOYUOhR7staBRFpKZHdpdk.mft (raw, json)
Hash identifier:          xYy97p3L1QafhWSH6xSlN4zlymivwF+wAFKLBW37RP0=
Subject key identifier:   37:63:F4:DD:21:48:02:6F:7C:59:36:CA:AE:0F:EF:45:E9:CD:FA:14
Authority key identifier: 52:92:78:32:D3:98:50:E8:51:EE:CB:5A:05:11:69:29:91:DD:A5:D9
Certificate issuer:       /CN=52927832d39850e851eecb5a0511692991dda5d9
Certificate serial:       018F87484A2EC0A67A645A05124B653AE3B2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 16:00:12 +0000
Manifest this update:     Fri 17 May 2024 16:00:12 +0000
Manifest next update:     Sat 18 May 2024 16:00:12 +0000
Files and hashes:         1: UpJ4MtOYUOhR7staBRFpKZHdpdk.crl (hash: J2pYibCUy92r3LeVMlAqhuHILZfeytSxaOdpZRXAlH4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:4a:2e:c0:a6:7a:64:5a:05:12:4b:65:3a:e3:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=52927832d39850e851eecb5a0511692991dda5d9
        Validity
            Not Before: May 17 16:00:12 2024 GMT
            Not After : May 18 16:00:12 2024 GMT
        Subject: CN=3763f4dd2148026f7c5936caae0fef45e9cdfa14
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:c3:a9:d6:b5:b9:b8:69:1d:22:75:f5:1b:78:
                    2f:0d:3d:fb:1a:fd:95:7e:7a:a0:f6:c6:ca:a1:99:
                    4e:b2:3a:a5:2d:ac:64:1c:6a:57:df:cc:cb:f3:f6:
                    b1:85:e3:41:04:3c:56:84:01:fe:99:ff:34:e1:1d:
                    40:b1:c2:f1:62:7f:77:e0:14:87:73:1a:6d:fd:ff:
                    48:06:ec:9e:24:90:af:c2:19:45:da:9c:ac:71:64:
                    e7:97:68:a0:35:2a:51:61:9f:4f:cd:c2:4d:65:3d:
                    ac:97:21:7f:a2:ff:14:15:d6:9b:62:04:a9:6e:69:
                    87:af:9e:a3:96:55:69:b8:48:37:7b:eb:44:d8:22:
                    8d:3a:ac:19:79:57:6c:04:cd:85:92:c0:87:14:dc:
                    fd:36:c4:66:af:3d:aa:fa:cc:8c:68:4c:ee:6d:af:
                    71:76:06:17:3a:51:25:01:ab:c0:00:51:9f:44:52:
                    d3:94:86:2e:7a:ea:1a:66:95:d6:62:78:29:e6:3f:
                    93:ca:58:07:0d:ea:26:41:cb:d4:9c:84:ae:8c:11:
                    16:b7:10:a2:0b:32:8c:f8:d5:25:3c:47:a6:11:36:
                    e0:dc:fe:ce:95:79:f1:15:ba:be:74:9e:d6:b7:e5:
                    76:f9:9d:f8:f6:2f:60:1e:fb:2c:53:11:a3:2d:07:
                    04:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:63:F4:DD:21:48:02:6F:7C:59:36:CA:AE:0F:EF:45:E9:CD:FA:14
            X509v3 Authority Key Identifier:
                keyid:52:92:78:32:D3:98:50:E8:51:EE:CB:5A:05:11:69:29:91:DD:A5:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:df:8d:25:57:d3:e0:61:b4:da:6a:7f:e9:ac:da:f6:8d:9c:
         d5:06:86:68:82:cd:b9:72:54:f6:ec:b8:70:3f:d6:eb:56:dc:
         06:b4:3b:4a:a8:42:07:4e:aa:30:c4:63:bc:9e:ac:dd:7c:fd:
         e7:11:0a:3c:2b:7e:84:66:54:9d:a2:6c:3f:ac:7f:ad:43:e7:
         29:e1:19:ec:26:c6:ee:86:29:d3:ac:c0:d4:c4:60:65:b1:08:
         ad:18:1a:01:99:cd:08:fd:2c:fe:f3:cd:48:40:3c:c0:03:98:
         8a:61:23:a4:f6:b5:44:84:1a:09:96:68:ef:f4:1f:54:5a:09:
         14:75:58:b7:7a:ee:24:31:d1:d8:b1:4a:8f:60:b8:57:8f:bb:
         1d:f5:40:2a:2d:94:23:47:e3:4e:4d:8c:3d:1c:13:6a:02:28:
         86:9e:14:ae:51:65:fb:da:99:e6:c9:e2:01:82:45:2b:ff:18:
         7b:ab:fe:04:79:26:5c:10:38:8d:57:db:2b:1a:c8:90:24:4e:
         80:8b:a5:3a:fa:48:12:21:1c:a5:12:f1:cb:41:84:6f:7a:b1:
         5a:95:47:ea:31:73:2e:cf:77:65:a7:ce:8f:9c:2e:7b:7c:c3:
         e5:c8:fe:11:9f:da:ba:b9:88:5d:e6:75:e4:34:08:c5:02:6b:
         e9:ee:a4:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----