Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
File:                     Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft (raw, json)
Hash identifier:          /86QXuV1RdgPV+36cTyUgIsuS6lh8tVP0z627gmcW9A=
Subject key identifier:   63:98:DE:01:C1:33:6C:B9:EB:C4:DB:4E:3F:2F:F4:DE:13:61:92:9E
Authority key identifier: 63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0
Certificate issuer:       /CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0
Certificate serial:       01901E900107C826B61126CE55FD2E5A51E4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
Manifest number:          0351
Signing time:             Sun 16 Jun 2024 01:01:12 +0000
Manifest this update:     Sun 16 Jun 2024 01:01:12 +0000
Manifest next update:     Mon 17 Jun 2024 01:01:12 +0000
Files and hashes:         1: Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl (hash: tW3oxjNQtCNv/dT45y4niE3wrLFJpBV21oao7P2fG0k=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:90:01:07:c8:26:b6:11:26:ce:55:fd:2e:5a:51:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0
        Validity
            Not Before: Jun 16 01:01:12 2024 GMT
            Not After : Jun 17 01:01:12 2024 GMT
        Subject: CN=6398de01c1336cb9ebc4db4e3f2ff4de1361929e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:24:63:96:f5:1c:92:ed:96:02:7f:0d:0c:61:
                    b0:d9:2a:fb:aa:84:49:da:41:4c:9a:d0:d3:87:49:
                    4b:6a:82:02:9d:b8:e6:50:a6:ea:22:3c:a2:1c:db:
                    c9:5f:92:0a:99:ec:fd:2b:46:bf:01:7a:8a:21:95:
                    6a:b2:5e:c4:69:bd:ba:76:78:e9:26:78:68:ff:b2:
                    56:7d:e6:57:e1:ce:4b:24:6c:93:2c:96:56:40:b5:
                    81:d6:c7:b6:de:bd:1e:09:5c:c5:3b:c8:5d:24:47:
                    98:28:39:4f:85:8f:6e:7d:0c:42:47:19:ae:b2:23:
                    4a:52:4d:5c:d2:2d:75:0c:11:04:65:d0:ab:de:89:
                    7d:62:68:e5:e7:c4:c1:ab:3c:fc:b6:6e:c6:ec:e3:
                    17:63:98:75:b9:92:21:3c:c0:87:e7:2e:95:a5:4f:
                    93:80:dd:37:9d:31:5c:a2:47:73:63:02:08:2a:6f:
                    f9:d3:30:e0:79:83:10:34:81:dd:01:42:2c:48:db:
                    cc:f0:1a:c3:0b:bb:1e:69:28:da:73:05:a2:fb:db:
                    c1:b4:98:d6:0f:15:53:63:48:e6:13:48:d7:d0:b8:
                    a8:c9:0c:ed:0a:a8:cc:6d:4d:eb:a1:21:e4:ac:45:
                    00:3c:4c:d7:23:42:d0:e4:e4:1e:c6:a4:07:d9:67:
                    a0:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:98:DE:01:C1:33:6C:B9:EB:C4:DB:4E:3F:2F:F4:DE:13:61:92:9E
            X509v3 Authority Key Identifier:
                keyid:63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:da:91:f7:0d:5c:e0:7f:50:48:c3:f3:e3:20:ad:d8:85:47:
         ac:e7:91:64:58:e0:67:8b:d4:de:17:dd:45:df:ef:13:27:3e:
         0f:66:59:ca:41:a4:77:bc:69:ad:05:46:fe:66:f3:f6:9e:f3:
         5c:87:87:80:df:a8:5e:12:bf:0f:53:68:2d:a4:bb:79:10:0c:
         c7:c0:ea:a8:37:c4:b3:6f:e5:6a:4f:12:4e:3c:16:01:f2:03:
         e1:eb:39:70:15:01:4e:ef:17:d9:94:00:23:56:f5:da:8f:ae:
         e5:c3:8c:16:b6:80:8a:39:d7:fb:0e:10:aa:46:1f:dd:5d:4a:
         1b:75:c0:3e:e0:2a:af:a4:0e:20:50:af:a8:9b:d0:82:12:65:
         6d:b9:8f:69:bf:32:f5:65:b6:a2:0b:89:c8:a4:49:3d:5c:a3:
         da:fb:fc:27:16:ec:39:c8:68:69:8b:a1:93:6f:bb:e9:f8:be:
         77:e1:5e:f5:86:24:0b:f1:db:66:67:1c:14:4e:c4:d8:cc:59:
         00:c5:ad:71:d4:ea:c4:91:f1:9d:6b:85:5e:99:fd:55:50:09:
         6a:c9:b0:f6:eb:7c:21:61:28:85:46:9f:4f:48:ac:32:ab:55:
         d9:eb:79:14:9b:fd:69:9e:5c:dd:90:f5:41:8c:86:83:ed:aa:
         0b:5b:3a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:53:47 2024 by rpki-client on console-fra.rpki-client.org