Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File:                     MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier:          ftHP8WD9OHpoSLab5BtEGwdqdWki9y/T6mdjlbDWSD0=
Subject key identifier:   3D:14:13:EE:31:5C:B2:D2:8F:06:BC:93:8C:12:E1:FF:B5:79:73:B1
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer:       /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial:       01901DED2C2762F8DB08D787C2147EB91CBE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number:          1116
Signing time:             Sat 15 Jun 2024 22:03:20 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:20 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:20 +0000
Files and hashes:         1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: yLgu7WyENhjVYmb3lF0qI2Jg4b2O21uhjWu1GMxbOso=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:2c:27:62:f8:db:08:d7:87:c2:14:7e:b9:1c:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
        Validity
            Not Before: Jun 15 22:03:20 2024 GMT
            Not After : Jun 16 22:03:20 2024 GMT
        Subject: CN=3d1413ee315cb2d28f06bc938c12e1ffb57973b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:c3:3c:89:92:05:39:f1:79:0b:50:6d:c8:14:
                    83:64:ba:10:e8:94:b3:db:df:01:23:2b:43:b2:dc:
                    1a:13:b4:bf:7b:5e:f0:7e:da:30:8a:cd:c0:69:dd:
                    6f:27:50:5a:c8:ed:3b:0a:86:19:f6:fd:be:a6:f8:
                    4c:46:e9:56:10:2b:cc:e3:3d:bc:c7:1d:10:59:57:
                    fb:9d:3b:1f:cc:b2:bd:1b:47:24:0d:94:de:9a:c3:
                    e7:e4:ab:23:d2:ae:37:b8:d6:07:1c:c7:b8:e5:23:
                    49:ae:33:8b:8e:04:ef:36:60:58:29:d6:5a:b2:5e:
                    a6:c2:ab:62:0a:4d:dc:ef:44:84:9a:84:58:cd:bd:
                    3a:e8:19:1e:5e:1d:31:58:e3:48:a3:8d:71:21:08:
                    e2:d7:25:10:40:37:99:dd:f8:a7:67:7e:5d:91:d0:
                    64:02:af:4a:ff:42:5b:46:1a:7e:07:c5:97:b3:9b:
                    80:1b:82:a2:d2:ac:38:72:b7:71:0b:fe:5c:f4:ca:
                    42:77:b4:cf:54:06:1f:3a:60:f7:40:14:83:9e:c9:
                    10:57:88:38:73:e7:e9:88:49:61:e6:87:79:ce:46:
                    7a:e2:b4:90:26:57:a3:46:76:5f:d5:51:4a:58:a2:
                    1b:cf:5e:48:ca:93:7e:89:ce:a1:c7:4b:59:ef:0d:
                    63:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:14:13:EE:31:5C:B2:D2:8F:06:BC:93:8C:12:E1:FF:B5:79:73:B1
            X509v3 Authority Key Identifier:
                keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:e1:b4:72:98:6a:2d:69:eb:aa:e5:7d:5d:e4:7a:27:e0:06:
         e3:cc:f0:ce:6a:21:97:78:b9:56:fd:f7:c8:af:b3:14:46:52:
         e6:7a:05:90:fa:8f:29:d8:92:ec:ab:03:34:a9:fb:a5:71:1a:
         ab:1a:f0:94:d0:42:12:0a:39:e5:0b:df:f1:f7:4a:be:39:9e:
         f7:aa:3e:9f:59:e7:42:f4:82:83:55:74:9f:bb:22:0c:da:d3:
         1f:34:64:b6:bc:84:8b:56:2f:70:cd:37:8f:1d:1b:11:42:f7:
         d6:e2:ae:be:6e:d0:5f:38:2a:e2:7e:5a:9b:6e:07:c8:a6:ae:
         c8:98:6e:95:a6:e0:ed:5a:f1:04:fe:0c:cf:f2:a8:c6:07:ae:
         b1:0e:e5:e1:e3:3b:d7:4c:9f:57:bd:7a:fd:b4:55:4d:98:8c:
         34:1c:ed:22:bc:f0:95:81:8c:ee:cf:c4:1a:65:9a:52:da:27:
         0f:58:0c:84:ae:a8:3b:5d:ad:58:e8:69:bf:92:a2:ec:ac:c0:
         e5:6d:e7:93:9d:5d:83:d3:2d:64:ca:25:5c:1e:75:8b:82:3a:
         a1:27:b8:90:5e:71:9e:bf:59:53:96:13:48:e5:f7:e4:1f:4b:
         4e:7d:15:73:83:00:bb:12:36:fc:a1:d3:2f:6c:72:fb:91:29:
         f5:b6:30:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----