Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
File:                     jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft (raw, json)
Hash identifier:          a8m1e8asPFskb13eK/6sFe9nQqgdTmuxJSLdu2x5cA0=
Subject key identifier:   7C:D8:BA:57:35:14:DD:78:8D:09:FC:DF:DB:ED:66:7A:CD:A3:58:17
Authority key identifier: 8C:57:DC:C7:E5:2F:58:B3:42:B7:0C:83:DA:A2:1A:10:6A:C5:92:91
Certificate issuer:       /CN=8c57dcc7e52f58b342b70c83daa21a106ac59291
Certificate serial:       01901DEC999F638CA1667478C38CBA74FB51
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
Manifest number:          03E0
Signing time:             Sat 15 Jun 2024 22:02:43 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:43 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:43 +0000
Files and hashes:         1: jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl (hash: O8AgNoMFgR4VaWKxEKm/v7dwhMwN8+ByylWaH2eE8OQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:99:9f:63:8c:a1:66:74:78:c3:8c:ba:74:fb:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c57dcc7e52f58b342b70c83daa21a106ac59291
        Validity
            Not Before: Jun 15 22:02:43 2024 GMT
            Not After : Jun 16 22:02:43 2024 GMT
        Subject: CN=7cd8ba573514dd788d09fcdfdbed667acda35817
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:e0:2e:48:fd:cf:f2:07:29:d7:3e:f0:58:ad:
                    64:da:89:51:57:94:ec:eb:0d:62:e9:59:9a:72:62:
                    12:73:0b:df:e2:c6:78:8a:c8:7c:9c:84:62:49:ea:
                    06:e6:92:02:96:a3:68:b9:ad:8e:3b:84:76:5a:c8:
                    27:dc:f7:3d:15:6d:8a:5e:3c:76:6b:92:04:a1:8a:
                    d3:cc:74:27:ae:32:1b:d2:18:71:31:6e:55:13:72:
                    a6:f3:f3:7c:dc:59:40:e2:80:80:ab:85:40:1e:ef:
                    7a:e4:dc:71:9e:10:bf:19:d7:1b:3d:2e:a5:69:84:
                    66:a8:7f:b1:c3:2b:72:d5:63:17:04:8c:f9:75:c8:
                    ca:c7:b6:fe:55:07:fa:5e:1a:f4:94:eb:52:a9:6b:
                    31:53:6b:28:72:43:12:96:01:53:79:25:fe:84:41:
                    72:57:ae:bd:65:b8:3f:be:0b:32:00:fe:fa:d3:4a:
                    36:7b:7e:24:dd:13:12:9f:e7:26:26:10:09:b1:87:
                    f1:0b:98:f2:1e:75:39:9f:02:50:44:ec:d2:d6:24:
                    aa:16:fd:30:51:ec:45:f9:34:0a:da:4f:4c:67:16:
                    56:c3:3c:3a:f7:e4:15:ca:38:6e:1f:ea:4b:91:f3:
                    40:42:4c:ef:5c:40:79:df:d8:c5:7f:c7:90:de:65:
                    3d:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:D8:BA:57:35:14:DD:78:8D:09:FC:DF:DB:ED:66:7A:CD:A3:58:17
            X509v3 Authority Key Identifier:
                keyid:8C:57:DC:C7:E5:2F:58:B3:42:B7:0C:83:DA:A2:1A:10:6A:C5:92:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:a5:19:83:9e:62:71:eb:a1:b2:f9:12:ee:e8:c3:dd:86:c4:
         6d:7a:43:f5:b7:b2:94:b4:36:db:bb:38:cc:0c:70:00:a5:14:
         9f:56:e6:6c:2a:51:b6:8a:48:90:9a:f2:22:53:db:6c:c8:bf:
         c2:cc:27:a2:e5:f1:a4:f9:fe:83:1c:c9:c6:1e:c1:12:98:b2:
         47:20:2b:cc:a4:67:8b:1a:33:f6:c0:3c:71:2e:5e:d6:c5:13:
         8b:4c:e4:23:1b:7f:9f:1b:4d:81:90:bc:cf:53:b7:85:55:60:
         c8:b7:ef:34:b7:81:36:57:48:ad:99:db:8c:56:1b:06:b2:cf:
         02:ac:a5:c5:d1:7f:f6:4e:be:da:e5:35:5d:f1:34:9d:3b:4e:
         93:4a:55:5f:cb:92:f6:e7:0f:4d:d1:e8:f9:6a:7c:d3:c5:ec:
         6c:23:26:a9:65:18:b0:e8:b1:04:8d:2e:09:33:22:b1:c9:f4:
         ab:9c:05:6e:36:a8:86:1e:61:54:40:18:9e:9d:a9:a6:6a:92:
         84:dd:ac:95:a0:42:75:13:9b:84:be:0f:66:d8:f3:17:3f:ca:
         6f:4d:18:12:75:e6:e3:92:d7:e0:46:a0:9f:a7:80:fd:a0:77:
         d8:93:5a:d0:a9:4a:1e:05:e0:da:e4:81:18:16:35:ff:db:da:
         fa:f0:a0:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7JmfY4yhZnR4w4y6dPtRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNTdkY2M3ZTUyZjU4YjM0MmI3MGM4M2RhYTIxYTEwNmFj
NTkyOTEwHhcNMjQwNjE1MjIwMjQzWhcNMjQwNjE2MjIwMjQzWjAzMTEwLwYDVQQD
Eyg3Y2Q4YmE1NzM1MTRkZDc4OGQwOWZjZGZkYmVkNjY3YWNkYTM1ODE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+AuSP3P8gcp1z7wWK1k2olRV5Ts
6w1i6VmacmIScwvf4sZ4ish8nIRiSeoG5pIClqNoua2OO4R2Wsgn3Pc9FW2KXjx2
a5IEoYrTzHQnrjIb0hhxMW5VE3Km8/N83FlA4oCAq4VAHu965NxxnhC/GdcbPS6l
aYRmqH+xwyty1WMXBIz5dcjKx7b+VQf6Xhr0lOtSqWsxU2sockMSlgFTeSX+hEFy
V669Zbg/vgsyAP7600o2e34k3RMSn+cmJhAJsYfxC5jyHnU5nwJQROzS1iSqFv0w
UexF+TQK2k9MZxZWwzw69+QVyjhuH+pLkfNAQkzvXEB539jFf8eQ3mU9AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHzYulc1FN14jQn839vtZnrNo1gXMB8GA1UdIwQY
MBaAFIxX3MflL1izQrcMg9qiGhBqxZKRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakZmY3gtVXZXTE5DdHd5RDJxSWFFR3JGa3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lODMzOTktMGExNC00MmFjLTlmZDYt
NDEzMDZjMjdkNmYwLzEvakZmY3gtVXZXTE5DdHd5RDJxSWFFR3JGa3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lODMzOTktMGExNC00MmFjLTlmZDYtNDEzMDZjMjdkNmYw
LzEvakZmY3gtVXZXTE5DdHd5RDJxSWFFR3JGa3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiqUZg55i
ceuhsvkS7ujD3YbEbXpD9beylLQ227s4zAxwAKUUn1bmbCpRtopIkJryIlPbbMi/
wswnouXxpPn+gxzJxh7BEpiyRyArzKRnixoz9sA8cS5e1sUTi0zkIxt/nxtNgZC8
z1O3hVVgyLfvNLeBNldIrZnbjFYbBrLPAqylxdF/9k6+2uU1XfE0nTtOk0pVX8uS
9ucPTdHo+Wp808XsbCMmqWUYsOixBI0uCTMiscn0q5wFbjaohh5hVEAYnp2ppmqS
hN2slaBCdRObhL4PZtjzFz/Kb00YEnXm45LX4Eagn6eA/aB32JNa0KlKHgXg2uSB
GBY1/9va+vCgEA==
-----END CERTIFICATE-----