Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
File:                     jNtFdj7woZYpOzOAyIj4Oox803c.mft (raw, json)
Hash identifier:          16XjMiHvrLYUhAKDc9AWpfVFUWe1Zs/BXDSWsarYrtg=
Subject key identifier:   3C:87:98:9D:CF:70:27:B8:13:36:85:41:14:27:8B:DF:F9:FC:25:B4
Authority key identifier: 8C:DB:45:76:3E:F0:A1:96:29:3B:33:80:C8:88:F8:3A:8C:7C:D3:77
Certificate issuer:       /CN=8cdb45763ef0a196293b3380c888f83a8c7cd377
Certificate serial:       0190411C14814600F7EEAFDA823B222C0771
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
Manifest number:          AB
Signing time:             Sat 22 Jun 2024 18:01:17 +0000
Manifest this update:     Sat 22 Jun 2024 18:01:17 +0000
Manifest next update:     Sun 23 Jun 2024 18:01:17 +0000
Files and hashes:         1: jNtFdj7woZYpOzOAyIj4Oox803c.crl (hash: yWsyKWGIo48w5T5/vGpC3vyZQDmoaay9drevaPI0ZQk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 18:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:1c:14:81:46:00:f7:ee:af:da:82:3b:22:2c:07:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8cdb45763ef0a196293b3380c888f83a8c7cd377
        Validity
            Not Before: Jun 22 18:01:17 2024 GMT
            Not After : Jun 23 18:01:17 2024 GMT
        Subject: CN=3c87989dcf7027b81336854114278bdff9fc25b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:2b:89:45:fb:b1:7d:36:bf:e4:0f:8f:85:b6:
                    a0:55:77:23:4c:0a:8d:b3:e2:6f:82:a6:b4:0d:9a:
                    7d:6e:ff:5b:b4:bb:89:7f:f4:68:86:6e:de:ea:a1:
                    48:f8:76:b1:43:f1:2f:21:08:77:40:12:98:b8:e9:
                    47:b8:35:3d:c8:d6:14:7e:54:7f:e3:f5:6a:64:e9:
                    2d:ff:43:38:c0:88:48:18:0c:36:e6:2f:2f:d7:db:
                    75:81:55:d4:36:2d:73:cc:e4:80:d6:66:a2:a3:39:
                    ab:a4:53:f2:a2:2d:38:10:cd:ec:9a:8d:f1:b7:6a:
                    96:dc:3d:25:b4:ee:7b:24:30:37:06:dd:34:32:26:
                    39:31:76:5b:b0:f1:8a:93:08:92:84:6f:3e:71:08:
                    f6:b6:99:51:47:ea:b3:74:10:74:64:20:1c:10:c4:
                    21:71:3d:4f:d0:8b:17:ed:94:e0:30:ec:8c:8e:dd:
                    fc:79:81:b9:65:4f:48:5c:ab:3f:07:70:4a:28:1f:
                    8c:ed:89:98:89:d6:cc:ca:93:7d:17:f4:90:d0:8f:
                    21:03:37:c6:86:28:4d:28:15:01:f7:6e:4e:3d:de:
                    12:a9:a3:ce:5f:5b:fd:ab:f1:bd:49:3f:4a:04:10:
                    97:5e:7b:87:52:0f:aa:6c:7b:41:33:ae:47:ab:10:
                    a8:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:87:98:9D:CF:70:27:B8:13:36:85:41:14:27:8B:DF:F9:FC:25:B4
            X509v3 Authority Key Identifier:
                keyid:8C:DB:45:76:3E:F0:A1:96:29:3B:33:80:C8:88:F8:3A:8C:7C:D3:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:0c:2a:c2:87:6e:a4:9b:79:a9:e7:59:f2:b0:19:f7:f1:3c:
         6e:e8:3d:7c:d0:32:1e:23:70:f5:1b:ae:91:4d:ba:85:67:50:
         ec:cc:5c:67:be:06:d3:c0:a7:04:46:00:10:4d:c7:18:e0:14:
         28:65:6b:82:d7:58:20:73:89:b4:29:be:0c:55:ec:9e:c5:40:
         9e:60:44:b7:c5:07:a6:9c:06:8a:e7:e3:47:89:ab:61:2f:f3:
         f8:a6:f0:e6:ef:2d:3f:7a:3d:1c:de:c4:78:ef:93:c9:34:dd:
         9c:cb:85:c5:86:24:f6:98:44:54:4f:63:25:23:f5:12:a3:c5:
         93:73:d8:c4:82:54:2d:fd:50:dc:42:ea:95:a4:67:df:6f:ed:
         c1:bc:a7:c4:80:80:e2:13:1b:c3:a9:02:bc:6b:d4:8e:63:10:
         b6:d7:5b:a8:aa:48:a3:ed:d0:39:65:e2:dd:1c:86:07:fa:cd:
         a5:c9:95:11:67:19:2c:e9:e3:14:29:18:e3:70:49:1a:ae:eb:
         41:2b:f2:32:6e:4d:fa:75:fd:81:05:a7:aa:f0:3c:cc:85:86:
         ed:f6:dc:2b:ff:8a:0d:9c:2e:13:77:d3:1b:10:cc:e5:8d:c9:
         83:8b:e5:85:43:f5:96:af:79:4b:b1:c2:43:00:99:a7:0c:86:
         9e:9f:6f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:34:05 2024 by rpki-client on console-ams.rpki-client.org