Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
File:                     vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft (raw, json)
Hash identifier:          +C8n6x/KLaBLQ2Vkl8S1jGyhpnWpk/eEkymWNfGFWK8=
Subject key identifier:   32:DB:06:A5:8D:A7:71:C4:96:F8:F1:AA:41:BA:B3:29:1B:7A:D8:F8
Authority key identifier: BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4
Certificate issuer:       /CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
Certificate serial:       01901DED019DE6AC45436D06B8D8BB2065A0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
Manifest number:          11C6
Signing time:             Sat 15 Jun 2024 22:03:09 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:09 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:09 +0000
Files and hashes:         1: vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl (hash: gcLVbIq3n39CXi8iR6lM3RJEy4BJkES89+bo7bNwwoo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:01:9d:e6:ac:45:43:6d:06:b8:d8:bb:20:65:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
        Validity
            Not Before: Jun 15 22:03:09 2024 GMT
            Not After : Jun 16 22:03:09 2024 GMT
        Subject: CN=32db06a58da771c496f8f1aa41bab3291b7ad8f8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:39:bc:d7:db:66:25:8e:bb:6f:40:14:23:36:
                    1d:4b:59:12:dc:b3:09:d6:5b:68:46:c1:a8:c7:be:
                    21:32:bc:20:11:31:73:60:3f:0c:20:b7:18:34:59:
                    45:c1:40:bb:8a:05:be:dd:63:e8:a4:0b:8c:80:9a:
                    62:b8:e1:0f:1c:1b:76:91:e6:c7:ea:9a:5a:ab:a2:
                    40:ab:d5:bf:0c:c4:3a:9b:33:a7:38:be:c6:28:f2:
                    db:5b:e8:1a:1d:07:ec:b8:57:c0:00:3c:be:53:47:
                    c2:1f:02:b7:7b:ff:41:b9:d7:d6:5e:27:70:5e:02:
                    4b:3a:73:2a:af:a6:23:9a:d9:2f:06:6e:e2:02:ea:
                    06:9a:8a:af:8d:d4:09:3a:f0:cf:f2:1e:aa:77:8c:
                    62:eb:a3:c4:11:dc:57:e5:6a:ac:ac:fa:64:82:3a:
                    75:9a:71:90:d3:63:6e:66:bb:58:79:4a:ab:41:86:
                    31:6f:ef:05:59:42:ba:90:29:3d:ec:0b:85:4a:fe:
                    c9:12:84:f4:38:63:34:2e:25:0b:f1:12:cb:dc:8d:
                    05:61:bc:0d:e5:1b:14:6c:5f:c1:82:50:14:d9:9a:
                    3a:3d:bd:75:3f:06:81:eb:69:c0:13:f2:34:e5:50:
                    49:96:2c:66:f0:33:59:7d:44:6b:0d:f3:83:b1:d0:
                    10:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:DB:06:A5:8D:A7:71:C4:96:F8:F1:AA:41:BA:B3:29:1B:7A:D8:F8
            X509v3 Authority Key Identifier:
                keyid:BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:1f:5c:97:87:19:75:61:ef:67:02:f6:be:6b:19:be:d4:4f:
         4e:12:18:97:39:be:25:f3:22:d7:8d:55:a6:a9:9c:2b:a9:5d:
         e2:a7:00:dd:c3:35:54:6b:f7:e1:08:2d:d5:1d:b7:38:a6:78:
         49:0e:0b:84:10:0e:b9:4e:78:1a:6b:f0:1b:ca:4a:c4:65:dc:
         7e:62:36:11:d4:c1:b9:3e:85:15:b8:15:03:b0:1b:e4:22:d6:
         e9:7f:e1:f7:0b:20:9e:ae:4f:f1:60:8f:14:61:1b:ee:c4:93:
         ca:5a:b7:8c:c5:49:4e:5b:a4:63:4b:58:5e:2b:b0:1e:d8:f4:
         31:4d:13:77:57:7b:eb:81:60:92:d9:cf:79:9e:d3:6b:88:27:
         8e:99:56:26:e3:8e:a5:8c:f4:5c:9f:90:64:34:f5:50:84:ac:
         fe:ad:20:5b:12:6d:16:22:1b:8b:d8:76:71:50:b7:0c:9c:4b:
         f8:ea:49:c7:e6:52:85:09:fc:c7:32:9d:db:ea:1e:c1:4e:87:
         1b:da:5b:ac:e4:14:3e:de:b2:54:bb:12:dd:a7:9d:e3:a6:22:
         26:f2:d8:9e:a7:b2:62:63:fb:82:1f:bf:a7:3b:39:ba:51:14:
         7a:61:a5:45:fc:21:57:e8:c9:8c:9f:35:5c:ec:a3:85:02:a7:
         29:29:06:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----