Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File:                     OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier:          IwklaVTQVyN+nfVXqrJeXZhQ0Hpn4eXic4wOMVEWDg8=
Subject key identifier:   83:04:97:C3:A7:E2:E8:32:8B:40:17:17:C2:A4:CA:58:27:5E:11:BA
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer:       /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial:       01901E8FC0DB805789E01F0F23B1AD18C8E9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number:          11C3
Signing time:             Sun 16 Jun 2024 01:00:55 +0000
Manifest this update:     Sun 16 Jun 2024 01:00:55 +0000
Manifest next update:     Mon 17 Jun 2024 01:00:55 +0000
Files and hashes:         1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: kRUGyaDMS4ER3jMAC0oqDoiPD9O0bn7oNKEYRQm7u8c=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:8f:c0:db:80:57:89:e0:1f:0f:23:b1:ad:18:c8:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
        Validity
            Not Before: Jun 16 01:00:55 2024 GMT
            Not After : Jun 17 01:00:55 2024 GMT
        Subject: CN=830497c3a7e2e8328b401717c2a4ca58275e11ba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:88:bb:5e:e9:bf:57:3f:15:41:83:7c:38:58:
                    f0:c8:78:4d:d3:2b:c0:42:a6:ce:0d:1a:bf:ac:d5:
                    43:ca:7e:73:ad:40:89:39:83:f4:79:1a:39:e2:94:
                    44:88:ce:2f:b7:88:ba:22:77:11:fb:da:df:bc:29:
                    cd:3e:df:c0:e2:84:ed:3e:0a:a8:1c:4b:ac:3b:9c:
                    21:4c:be:cd:4a:9b:45:ed:f3:56:ad:d7:ea:c5:d0:
                    a1:d7:d2:d4:a2:e1:98:a4:39:a8:61:cd:59:79:2b:
                    ae:37:43:25:b1:18:13:98:c0:a8:6b:66:30:fb:e6:
                    f9:d3:ed:0e:00:85:55:3b:70:1c:58:50:15:95:cc:
                    c2:4a:09:cf:e0:13:96:d2:b1:97:9b:bf:84:94:c2:
                    99:0d:ab:02:62:26:0b:26:6d:56:eb:dd:c2:71:25:
                    aa:72:89:6b:a1:fa:f3:b2:a4:68:35:f0:36:e5:1f:
                    02:0b:6b:3c:39:b9:5b:fc:54:a7:fb:bf:d3:1e:66:
                    31:ff:79:e2:9b:5f:f7:aa:d3:53:d8:54:5d:36:fb:
                    12:d6:80:97:92:42:7b:e5:fa:1c:f2:3a:9d:87:1a:
                    a6:ec:31:2c:a9:16:7e:56:0b:66:12:47:2a:36:e5:
                    d2:6d:fd:cc:6b:69:d3:2f:e7:06:56:2c:b1:80:14:
                    1c:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:04:97:C3:A7:E2:E8:32:8B:40:17:17:C2:A4:CA:58:27:5E:11:BA
            X509v3 Authority Key Identifier:
                keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:27:a8:6e:c6:08:aa:b1:3f:c3:36:f1:37:a4:e8:2f:31:94:
         c7:40:e8:74:0c:1b:a0:a7:35:6f:fc:23:68:ed:f2:8c:c8:28:
         a6:e3:92:bd:97:17:4a:f0:c1:64:57:41:d7:f0:25:2d:95:09:
         ee:a4:fe:7a:78:25:d6:87:46:3a:1b:9b:d2:7b:87:ad:ea:fa:
         a8:a8:63:ca:70:b2:a8:3e:bc:29:58:16:34:5d:9e:c9:94:70:
         8b:60:8b:89:f6:42:b4:4e:6a:af:58:ca:3c:a4:fe:31:de:fd:
         67:d8:d0:50:f0:9d:f1:23:7c:e7:ca:d9:52:0f:f3:66:88:cf:
         8d:f3:ea:9a:ae:ef:a1:ad:d0:ad:a6:6c:6c:0e:ab:98:f0:07:
         eb:cf:6f:86:a5:07:06:b9:4e:fd:0c:d1:4d:f4:89:f2:4f:4c:
         d7:7c:a3:d4:8b:6d:1b:16:9a:bf:f4:c4:a2:2f:f8:5a:3a:35:
         88:36:b9:11:7e:8f:8f:0a:27:b7:19:f8:39:ba:28:33:10:99:
         15:c9:2b:8b:84:21:a8:7c:27:14:e1:50:f0:aa:2d:0f:39:f9:
         a4:51:69:e2:c7:f2:fd:83:03:5c:df:81:b2:97:80:78:7a:fd:
         ab:9f:1c:57:f6:50:5e:38:65:97:c2:84:92:5d:14:6d:27:d3:
         52:1d:75:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:41:54 2024 by rpki-client on console-fra.rpki-client.org