Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File:                     dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier:          8HPpgU/zwdccHtCh+Ergv3PqbdxzYfBrZX0OrRnxh4w=
Subject key identifier:   E2:25:2E:6B:E8:98:4C:D5:B7:1B:94:0A:5F:32:1E:39:1E:25:A4:59
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer:       /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial:       01901E901762B464017B2BACB542BF4A40E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number:          0566
Signing time:             Sun 16 Jun 2024 01:01:17 +0000
Manifest this update:     Sun 16 Jun 2024 01:01:17 +0000
Manifest next update:     Mon 17 Jun 2024 01:01:17 +0000
Files and hashes:         1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: JTw3ItlJT0RMEXszooZmJeNfP2Tk9Gb25GOwWr2cbbU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:90:17:62:b4:64:01:7b:2b:ac:b5:42:bf:4a:40:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
        Validity
            Not Before: Jun 16 01:01:17 2024 GMT
            Not After : Jun 17 01:01:17 2024 GMT
        Subject: CN=e2252e6be8984cd5b71b940a5f321e391e25a459
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:43:9c:ec:6d:33:9e:87:88:69:b3:8c:ba:6e:
                    da:18:8e:4a:3a:f5:b5:c5:8d:30:34:03:99:4b:f2:
                    4b:2f:21:ff:58:c0:4e:32:c7:80:5a:65:67:12:d9:
                    e2:45:c4:b7:9f:39:6a:39:cf:05:e8:6d:8b:08:3e:
                    4d:a6:a9:26:ab:11:8f:bb:9d:4c:7f:5e:2d:9d:5b:
                    6c:5f:54:7c:21:b2:fe:e4:20:a9:29:65:92:ad:c3:
                    05:5e:ab:a3:fd:c9:7d:e4:f9:7c:85:60:95:61:be:
                    66:71:1e:e1:e5:dd:f6:11:15:e6:6b:d6:6e:a5:94:
                    f0:f0:ab:68:68:23:a3:39:37:47:fc:4d:47:7a:b4:
                    5f:4a:a2:85:12:c0:d0:fc:9f:82:58:e5:98:85:01:
                    0f:f9:73:e2:6c:7f:c6:d4:e0:58:e8:3e:37:fd:d7:
                    96:fc:5e:89:68:70:fd:52:e1:0e:5d:bc:ba:4a:a5:
                    13:49:f3:f9:a7:7a:05:4e:dd:68:1a:59:e5:df:08:
                    63:3f:7a:73:12:f3:26:45:d3:de:73:d5:3b:79:00:
                    46:57:b2:25:c3:28:b5:b0:20:2b:53:78:b0:fe:ca:
                    ca:db:09:9b:e2:cc:32:df:bf:11:24:98:03:5d:d8:
                    9f:af:d7:f5:a5:6e:57:b8:d2:b2:18:57:89:1d:f8:
                    38:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:25:2E:6B:E8:98:4C:D5:B7:1B:94:0A:5F:32:1E:39:1E:25:A4:59
            X509v3 Authority Key Identifier:
                keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:87:68:6a:da:b5:25:62:99:f0:67:20:97:60:8b:90:31:41:
         78:09:aa:b6:d1:0b:3e:2c:f7:d5:86:c8:06:ab:ad:1f:8b:1d:
         19:e1:51:cd:4b:53:db:22:39:3a:0e:04:a9:76:6a:20:67:0a:
         03:8d:ec:08:94:02:9e:4b:4b:b7:80:93:00:bb:db:85:27:6a:
         4e:78:b4:5f:5e:fa:23:68:a9:29:74:d7:b8:25:02:1c:45:03:
         fe:5d:ce:e0:31:92:e6:c0:ac:d8:d0:45:64:c4:3b:95:e2:a9:
         0e:7c:a3:3a:79:09:f2:0c:df:22:6f:b8:8a:f1:21:b0:5e:b9:
         2f:23:8f:05:a7:03:f2:25:db:d0:a3:7c:89:28:fc:5b:75:0e:
         59:7d:52:21:00:b3:16:72:9c:7d:4a:67:0a:a7:92:f5:5b:57:
         17:84:f7:12:74:3d:54:22:cc:46:43:3d:22:88:8d:7c:e2:b1:
         0a:32:8f:68:c6:d7:17:ba:10:50:66:cc:66:8b:ec:ba:37:c0:
         79:41:cb:14:9f:98:32:5d:40:bd:f1:18:a1:f6:ba:c2:de:47:
         0b:8e:e4:27:10:cd:11:18:f0:08:21:3d:94:d2:36:01:a6:e5:
         e9:07:89:18:84:a7:c2:06:7c:f8:76:b8:05:7c:35:45:7c:f7:
         25:25:41:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----