Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
File:                     jNtFdj7woZYpOzOAyIj4Oox803c.mft (raw, json)
Hash identifier:          pdwPP6wKT+ftbC3E3yTttOfpfrQr18WBoAoCxsFu8kU=
Subject key identifier:   5E:56:B2:77:CE:1E:F4:53:D5:04:6F:C1:F6:A7:DE:D4:7C:19:E4:9A
Authority key identifier: 8C:DB:45:76:3E:F0:A1:96:29:3B:33:80:C8:88:F8:3A:8C:7C:D3:77
Certificate issuer:       /CN=8cdb45763ef0a196293b3380c888f83a8c7cd377
Certificate serial:       01901E58B022CB154925FF873D7C24A4CEDC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
Manifest number:          99
Signing time:             Sun 16 Jun 2024 00:00:46 +0000
Manifest this update:     Sun 16 Jun 2024 00:00:46 +0000
Manifest next update:     Mon 17 Jun 2024 00:00:46 +0000
Files and hashes:         1: jNtFdj7woZYpOzOAyIj4Oox803c.crl (hash: 5S8s2yzouLqCHZi/0S4e66njMTNLjXP+gLTE+ApMdKU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:58:b0:22:cb:15:49:25:ff:87:3d:7c:24:a4:ce:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8cdb45763ef0a196293b3380c888f83a8c7cd377
        Validity
            Not Before: Jun 16 00:00:46 2024 GMT
            Not After : Jun 17 00:00:46 2024 GMT
        Subject: CN=5e56b277ce1ef453d5046fc1f6a7ded47c19e49a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:75:2e:cd:cb:c9:c5:8e:54:01:32:03:7c:90:
                    9c:de:73:87:04:bc:35:f0:1f:e2:79:d4:30:b3:58:
                    c6:b2:c5:cb:22:1c:fe:f4:31:6f:70:7b:13:42:97:
                    d6:d0:48:ed:49:6c:bb:40:c7:cf:99:25:73:a8:9a:
                    9d:22:03:fb:17:f7:63:58:e8:89:a8:94:88:4d:75:
                    89:35:09:17:93:8a:60:41:30:09:23:15:bc:81:2c:
                    b7:2a:ff:64:b5:46:ec:de:f4:77:ea:dd:86:71:6b:
                    ac:cf:55:c2:fe:ba:9a:2e:f4:40:e0:90:9b:19:de:
                    c5:da:07:17:e4:d0:0a:03:63:ae:db:19:0d:21:66:
                    5b:1c:af:a4:3e:9d:e0:4f:13:40:10:00:57:95:73:
                    a5:1e:9c:0c:53:83:9a:d7:d8:2d:26:41:1a:dc:bc:
                    51:ae:1e:9d:aa:ce:f7:b9:fb:32:c1:9f:0d:26:25:
                    56:ad:fe:f8:ef:ea:b3:b8:11:a0:50:cd:30:1b:38:
                    db:e0:74:5c:2a:a8:76:c8:7b:66:ba:f5:86:7f:53:
                    1f:61:35:40:88:2d:86:1f:9c:6a:ab:bb:0d:31:31:
                    65:dd:49:04:13:b8:3c:9a:bb:8e:c3:6f:8d:93:e3:
                    f2:69:96:6b:2c:bd:aa:02:34:69:6e:15:a8:bf:13:
                    1d:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:56:B2:77:CE:1E:F4:53:D5:04:6F:C1:F6:A7:DE:D4:7C:19:E4:9A
            X509v3 Authority Key Identifier:
                keyid:8C:DB:45:76:3E:F0:A1:96:29:3B:33:80:C8:88:F8:3A:8C:7C:D3:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:c6:09:60:96:f2:d2:62:a6:0d:17:f7:f8:61:1e:e5:d6:87:
         7c:9c:f5:6c:13:77:c0:a8:c6:36:1e:55:f8:20:9c:22:b2:35:
         23:61:fc:cf:0e:64:12:81:e5:23:bc:56:39:f0:2d:7c:2c:0a:
         2b:62:6e:9c:f8:3b:fc:41:24:fe:83:cd:01:6f:9c:6b:be:12:
         03:bb:17:66:bd:b2:2f:f9:ef:71:ed:fc:80:9f:17:d8:e5:26:
         69:c8:b5:43:8b:84:65:f6:f6:36:cc:64:29:eb:fb:8a:eb:cb:
         2a:c5:9d:48:9f:ca:56:d0:ae:82:a6:35:a2:dd:5e:4c:5e:84:
         66:13:19:c3:71:03:d3:61:f9:bd:15:cc:8a:c5:0a:2e:15:a7:
         78:bc:a0:d5:9d:45:d9:c3:91:67:4f:d1:78:36:bc:c6:a8:4b:
         16:4a:33:ea:8c:02:7f:09:f4:fb:71:ab:f2:62:4c:bf:e7:62:
         c4:34:f0:da:b2:d0:e3:35:61:c5:3a:71:33:d4:61:3f:d2:73:
         5c:be:f0:9a:cf:e2:51:77:34:d6:1a:ee:78:44:ce:b1:f0:4d:
         64:69:93:50:d0:de:97:5f:fa:51:97:b3:60:99:69:ea:bc:a6:
         f3:36:9d:94:e8:72:32:5c:73:f5:ed:5f:0f:e2:30:24:7d:d5:
         5b:51:53:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----