Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
File:                     PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json)
Hash identifier:          gasBy3aaQyxY5rpYkgog5XipCn/mgjRpW0NhbcyOhhw=
Subject key identifier:   C8:BE:D3:CD:EB:FB:28:C1:8F:94:F7:88:9A:45:91:CC:33:EF:AA:52
Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
Certificate issuer:       /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Certificate serial:       01901E58E9FCB832C93A85977B0119AFC89A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
Manifest number:          0FE7
Signing time:             Sun 16 Jun 2024 00:01:01 +0000
Manifest this update:     Sun 16 Jun 2024 00:01:01 +0000
Manifest next update:     Mon 17 Jun 2024 00:01:01 +0000
Files and hashes:         1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: 5sUrvsfO8Stp2w2TeqF9Lw8oo9fCGSEOmOuSxwtUMLE=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:58:e9:fc:b8:32:c9:3a:85:97:7b:01:19:af:c8:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
        Validity
            Not Before: Jun 16 00:01:01 2024 GMT
            Not After : Jun 17 00:01:01 2024 GMT
        Subject: CN=c8bed3cdebfb28c18f94f7889a4591cc33efaa52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:7c:4a:0a:79:8b:cd:35:1e:49:b2:d0:b3:24:
                    32:a8:cd:d1:84:d8:f3:1f:7c:9d:e1:59:29:d0:7e:
                    d4:75:f6:e1:07:03:09:7c:c9:45:ad:b7:09:ac:70:
                    a3:49:ed:cf:ed:58:1a:79:f9:b6:d5:0e:4b:e9:49:
                    73:b3:29:fe:a7:30:43:d7:18:0d:79:8d:a1:26:2d:
                    8b:33:33:9a:76:aa:83:37:3e:59:ae:2e:65:75:ef:
                    fb:5a:51:d0:96:44:1f:ab:3d:fa:3b:d3:e0:59:a2:
                    0c:48:59:a2:f6:f1:14:cb:36:a6:86:ab:5c:20:43:
                    30:05:81:17:1d:c2:4c:3a:e6:78:09:f9:8c:95:02:
                    91:8d:66:a2:a2:a9:c9:f4:2f:c8:69:85:f7:cf:8b:
                    bb:b8:e1:f6:c3:fd:ce:1e:46:ab:99:9e:67:bb:ea:
                    57:49:5b:94:9f:b1:65:f9:70:da:7d:59:6c:84:60:
                    10:f1:b6:3d:72:4e:cb:7e:7f:38:bf:0f:3b:97:fb:
                    f7:15:fb:64:76:00:4c:41:c2:92:30:8e:5d:2f:87:
                    20:8f:c4:43:26:0b:dc:3c:53:fb:a4:f2:40:d1:f8:
                    e5:d4:ff:af:1f:3d:1b:00:16:ad:5e:bb:cd:9c:d0:
                    4f:09:9f:97:c6:8b:fb:78:72:1b:8e:da:b2:37:4a:
                    ce:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:BE:D3:CD:EB:FB:28:C1:8F:94:F7:88:9A:45:91:CC:33:EF:AA:52
            X509v3 Authority Key Identifier:
                keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:87:55:ea:9e:a1:d4:b0:7e:6e:af:3e:34:e3:ca:98:0f:21:
         d4:2a:bb:ec:6a:3e:e4:a9:80:f1:33:5e:c6:d2:d6:44:90:97:
         76:d4:3b:2a:86:d6:42:1e:05:7e:de:4b:f1:c7:38:2b:91:f7:
         d4:91:95:35:99:c4:11:83:2b:46:46:0a:21:87:b6:f6:26:57:
         04:10:25:b5:2d:2b:c1:6c:28:d0:1a:c7:a5:32:f4:3f:40:ce:
         99:76:d6:9b:15:a2:0b:16:1a:cf:4a:61:64:5c:26:ba:59:d7:
         ed:ba:4f:3e:b5:06:80:62:59:e5:c8:21:ba:3c:21:21:64:6a:
         e8:c7:89:a1:e5:f7:8f:94:24:59:0b:19:d0:7d:07:c7:fe:0c:
         46:03:77:2b:0e:7e:4a:a5:d7:b5:54:58:dd:10:d7:e2:b4:ef:
         4b:bf:8e:45:38:0e:32:95:0b:eb:b2:af:e2:e7:0c:7b:ce:20:
         b4:98:1a:37:0b:0e:85:8d:19:5e:7c:51:65:b2:46:cb:05:6b:
         ae:f0:2d:0b:54:f7:bd:96:d5:73:5c:9b:cc:a6:7e:1f:f4:0a:
         d0:62:30:24:a3:b3:e9:4d:04:af:78:07:67:04:e7:f6:e8:5a:
         32:63:65:18:f1:fa:33:1e:07:eb:78:af:49:d3:55:f3:22:a6:
         e3:92:2e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----