Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f08304-3f78-470c-b6e1-48f1e5109047/1/qafBolN_0DVAh1mXh8qoQv7WC38.mft
File:                     qafBolN_0DVAh1mXh8qoQv7WC38.mft (raw, json)
Hash identifier:          96r79y7NI3RMlw7o/sZdlNAvrmIT1aMtMU5mlMm6y7A=
Subject key identifier:   81:B8:33:A3:C7:5B:5E:9B:1E:D0:E7:E5:5F:9A:66:CB:98:D2:7A:BF
Authority key identifier: A9:A7:C1:A2:53:7F:D0:35:40:87:59:97:87:CA:A8:42:FE:D6:0B:7F
Certificate issuer:       /CN=a9a7c1a2537fd0354087599787caa842fed60b7f
Certificate serial:       01901DEC7691F56DD5F6D728E79F24F41EC8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qafBolN_0DVAh1mXh8qoQv7WC38.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6f/f08304-3f78-470c-b6e1-48f1e5109047/1/qafBolN_0DVAh1mXh8qoQv7WC38.mft
Manifest number:          0465
Signing time:             Sat 15 Jun 2024 22:02:34 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:34 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:34 +0000
Files and hashes:         1: qafBolN_0DVAh1mXh8qoQv7WC38.crl (hash: B3k5NidYsq572MXEZVZyyR+cQnp/ADjBtub0QfMnlWI=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6f/f08304-3f78-470c-b6e1-48f1e5109047/1/qafBolN_0DVAh1mXh8qoQv7WC38.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6f/f08304-3f78-470c-b6e1-48f1e5109047/1/qafBolN_0DVAh1mXh8qoQv7WC38.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qafBolN_0DVAh1mXh8qoQv7WC38.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:76:91:f5:6d:d5:f6:d7:28:e7:9f:24:f4:1e:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a9a7c1a2537fd0354087599787caa842fed60b7f
        Validity
            Not Before: Jun 15 22:02:34 2024 GMT
            Not After : Jun 16 22:02:34 2024 GMT
        Subject: CN=81b833a3c75b5e9b1ed0e7e55f9a66cb98d27abf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:3e:b9:d2:42:52:82:7b:be:b3:2c:5f:97:2f:
                    32:05:10:8a:d9:1f:af:67:8d:fd:ff:d3:85:ae:9a:
                    d8:8f:f5:ba:81:10:bb:77:a6:6f:9c:66:50:a8:8e:
                    c6:00:28:da:e9:d8:16:15:7d:14:e2:21:61:17:df:
                    ac:22:63:f3:ca:7d:39:64:d0:6c:24:36:a3:aa:a6:
                    db:de:45:dc:81:22:a3:b7:9a:4a:04:3f:68:e1:1d:
                    03:ed:fd:1b:16:d0:ea:62:c6:e3:4f:8c:92:af:c6:
                    63:dc:c5:a2:26:61:ef:f2:2c:d9:12:b0:6e:50:9e:
                    71:18:86:6a:29:7d:8b:2d:27:21:8b:2c:16:38:b0:
                    36:b4:9f:fc:91:49:83:53:2d:af:ea:82:19:91:89:
                    98:92:47:b8:5a:7e:25:63:34:a3:15:c0:70:fc:0d:
                    7c:09:a4:04:3c:0f:8b:2c:00:dd:35:05:b4:77:36:
                    24:e1:96:dc:6d:64:84:df:24:41:81:01:6b:53:dc:
                    ca:15:af:16:a9:24:8e:0e:b2:58:76:0b:c6:77:6e:
                    b9:95:56:2e:ef:c2:43:0b:27:48:2e:b1:c1:44:c7:
                    e2:db:eb:9c:02:71:34:7b:9d:31:2a:0c:9f:e4:a0:
                    0f:d9:24:96:48:2a:89:5b:af:70:aa:7b:ab:0e:0d:
                    ba:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:B8:33:A3:C7:5B:5E:9B:1E:D0:E7:E5:5F:9A:66:CB:98:D2:7A:BF
            X509v3 Authority Key Identifier:
                keyid:A9:A7:C1:A2:53:7F:D0:35:40:87:59:97:87:CA:A8:42:FE:D6:0B:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qafBolN_0DVAh1mXh8qoQv7WC38.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f08304-3f78-470c-b6e1-48f1e5109047/1/qafBolN_0DVAh1mXh8qoQv7WC38.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f08304-3f78-470c-b6e1-48f1e5109047/1/qafBolN_0DVAh1mXh8qoQv7WC38.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:07:db:4f:6b:19:42:56:58:55:1f:79:ff:44:52:b0:dc:16:
         03:28:2c:38:8a:62:56:6a:50:33:fc:d4:72:6c:2e:83:ac:88:
         69:97:0a:0a:80:86:d5:c4:78:b1:fb:b1:51:fc:d4:bb:a2:0c:
         49:0b:ef:ac:b8:ba:66:34:03:4c:a9:0c:8f:96:99:a3:b8:ec:
         c9:a1:5b:2f:85:d9:56:85:c6:dc:bd:4a:2a:64:4c:3b:73:d3:
         ae:c0:38:5e:1e:9f:25:69:86:04:4a:22:83:6a:28:4c:96:43:
         8c:2c:ba:68:d2:50:72:86:2c:94:2a:f5:0c:50:43:4e:d2:e6:
         2a:ac:c4:0d:2d:85:5c:e9:ea:3f:5f:80:6e:ee:9f:45:13:2b:
         63:b5:d5:d3:62:6f:54:b2:c4:56:4d:a0:1f:8a:a3:cb:5c:8c:
         a9:da:34:9e:99:cd:3a:b8:82:6f:da:20:1d:f2:0e:3a:2d:cc:
         3d:99:3f:41:9e:0f:23:14:f6:0a:71:68:15:9f:ec:5d:38:94:
         d5:6c:2e:56:c8:11:cf:c8:98:f8:30:d2:bf:47:1f:96:7c:09:
         72:2c:b6:85:16:6e:2a:ec:ad:24:97:0a:9b:ed:bc:39:ae:30:
         9f:ab:c1:32:7a:17:21:19:37:12:d9:72:8d:b2:84:9b:5a:f5:
         01:1e:ab:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----