Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File:                     lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier:          hz1XvSHTr2/VpSCe8DXMXmzhBuIFCJ9fg/nE+IH5Rvs=
Subject key identifier:   F4:1D:AB:55:50:16:9A:B2:D6:B0:4C:4C:D2:07:FE:3E:D4:07:8F:61
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer:       /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial:       0190448A8CB7E98ABC4AB2F06FB17828C9D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number:          0D9A
Signing time:             Sun 23 Jun 2024 10:00:48 +0000
Manifest this update:     Sun 23 Jun 2024 10:00:48 +0000
Manifest next update:     Mon 24 Jun 2024 10:00:48 +0000
Files and hashes:         1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: 6tSje/r4Er/y47FPTO1L1r/QxlU4D137ye2ip6/uX64=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 10:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8a:8c:b7:e9:8a:bc:4a:b2:f0:6f:b1:78:28:c9:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
        Validity
            Not Before: Jun 23 10:00:48 2024 GMT
            Not After : Jun 24 10:00:48 2024 GMT
        Subject: CN=f41dab5550169ab2d6b04c4cd207fe3ed4078f61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:e4:ef:21:cd:10:a3:54:65:68:2c:96:b7:ae:
                    8f:ae:bd:d4:23:16:c5:cd:7c:37:04:75:c2:a7:e5:
                    30:fb:51:3d:3d:23:b0:e2:f1:ee:3b:d3:36:1a:7d:
                    04:2f:e3:f4:30:36:48:15:35:69:6e:6f:38:33:67:
                    86:a3:ba:3b:dc:1e:f1:03:ce:9b:bc:7c:29:c9:cf:
                    8e:4f:60:7f:73:1e:6e:05:06:a4:7c:42:2f:cc:74:
                    c5:c7:3c:8b:b0:ca:ac:29:ff:89:35:06:7a:bd:87:
                    4d:8d:53:40:44:71:8b:a8:da:65:a7:d1:bd:32:9f:
                    b1:6d:67:15:01:4f:f0:ea:cd:9a:fe:e1:c6:28:48:
                    d3:43:f3:17:fb:2a:4a:ac:37:28:56:40:2a:e4:8f:
                    b2:21:3a:6c:90:40:43:19:7c:eb:66:f0:7d:a8:a2:
                    62:35:af:35:66:0c:2e:0e:19:df:03:d1:00:63:5a:
                    2f:a3:fc:d8:da:06:bb:0f:dc:59:a5:3c:a3:4e:14:
                    10:c6:fb:0e:03:e9:81:69:c1:9c:1f:9c:96:42:81:
                    19:34:6b:33:92:52:07:02:29:1e:1f:76:26:6f:c1:
                    87:24:2d:fd:12:a2:5a:ea:66:16:24:b2:c0:06:e5:
                    12:53:38:5a:5b:9d:3b:56:10:bb:ba:60:d9:96:08:
                    e8:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:1D:AB:55:50:16:9A:B2:D6:B0:4C:4C:D2:07:FE:3E:D4:07:8F:61
            X509v3 Authority Key Identifier:
                keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:0f:42:b6:8b:93:44:c2:ab:16:ed:ab:41:76:aa:fd:dd:b9:
         24:0e:96:f7:e1:3b:98:d9:ce:84:81:a3:d5:28:fa:e2:3c:96:
         57:58:00:07:83:9e:87:02:fb:da:50:ea:23:2c:9c:08:02:85:
         aa:a5:50:ec:af:57:06:f3:9c:11:00:96:09:61:88:c3:f8:1d:
         54:5d:a2:ba:21:01:9e:be:ef:c7:31:4f:8b:9e:ef:4e:cb:6b:
         5b:8e:bc:3a:98:a1:70:fe:66:42:7f:e2:d7:ff:8c:4b:e2:7f:
         a0:3b:5a:0b:0f:1f:02:78:88:bb:54:b4:b8:0e:a5:1f:d1:14:
         30:d4:8b:f6:2f:ab:2f:70:58:1b:31:59:5b:dc:eb:4e:cc:66:
         64:41:e1:48:e6:fb:99:e7:09:ed:64:9e:29:53:2e:4b:b0:3e:
         63:02:7a:88:06:8a:1c:4a:f7:95:f2:5b:24:8e:80:ad:be:8b:
         fd:fe:bb:e0:c8:2d:6f:17:88:6a:7d:d8:ce:98:61:da:26:0e:
         3c:72:8f:60:e8:9e:73:be:db:4f:12:8c:37:3d:77:78:ec:56:
         f9:ad:dc:1f:3e:d3:45:79:fa:a9:b9:c2:f4:9f:5d:84:49:e9:
         25:7f:4e:a3:5d:84:ce:86:14:2f:eb:7c:d1:6e:81:46:6c:0a:
         c3:ba:97:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:40:40 2024 by rpki-client on console-ams.rpki-client.org