Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1834ac-2030-441f-82e2-681dbff8515e/1/jDzPk_fIB93gQgrVSGrinrXcdfk.mft
File:                     jDzPk_fIB93gQgrVSGrinrXcdfk.mft (raw, json)
Hash identifier:          KxDn/Ee3ysryg0A+VzjdAMB0xA23Bir8+PltKwmZzHs=
Subject key identifier:   9D:27:4F:3F:48:1B:DB:B7:B5:17:BA:88:EE:DB:7B:18:21:73:70:C7
Authority key identifier: 8C:3C:CF:93:F7:C8:07:DD:E0:42:0A:D5:48:6A:E2:9E:B5:DC:75:F9
Certificate issuer:       /CN=8c3ccf93f7c807dde0420ad5486ae29eb5dc75f9
Certificate serial:       01901E8F8050A4068AC05604AF99C07C960B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jDzPk_fIB93gQgrVSGrinrXcdfk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/1834ac-2030-441f-82e2-681dbff8515e/1/jDzPk_fIB93gQgrVSGrinrXcdfk.mft
Manifest number:          11C9
Signing time:             Sun 16 Jun 2024 01:00:39 +0000
Manifest this update:     Sun 16 Jun 2024 01:00:39 +0000
Manifest next update:     Mon 17 Jun 2024 01:00:39 +0000
Files and hashes:         1: jDzPk_fIB93gQgrVSGrinrXcdfk.crl (hash: AeOLSOsKl3Qxcj/pe2k/K8LJYVXkVonrWroZ1+8H598=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/1834ac-2030-441f-82e2-681dbff8515e/1/jDzPk_fIB93gQgrVSGrinrXcdfk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/1834ac-2030-441f-82e2-681dbff8515e/1/jDzPk_fIB93gQgrVSGrinrXcdfk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jDzPk_fIB93gQgrVSGrinrXcdfk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 19:09:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:8f:80:50:a4:06:8a:c0:56:04:af:99:c0:7c:96:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c3ccf93f7c807dde0420ad5486ae29eb5dc75f9
        Validity
            Not Before: Jun 16 01:00:39 2024 GMT
            Not After : Jun 17 01:00:39 2024 GMT
        Subject: CN=9d274f3f481bdbb7b517ba88eedb7b18217370c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:86:87:74:14:b7:7b:3e:81:c4:99:3b:a2:c1:
                    77:37:bc:92:90:60:3e:9e:ca:7b:1a:db:5e:1e:bb:
                    f1:d6:29:0a:92:8a:fa:37:c8:ee:b1:13:1d:dc:ff:
                    ba:1f:1e:70:ac:4b:a5:be:31:d1:ff:73:90:a1:57:
                    29:a8:f1:46:5e:99:e3:c1:7e:72:26:c4:75:b0:db:
                    4a:c4:8a:8d:82:8c:b8:7f:06:09:19:14:43:7a:0c:
                    1d:5b:e5:4e:dc:36:f7:6e:07:5c:db:cb:6c:b8:3b:
                    33:f0:33:14:5c:fb:10:47:cf:6c:38:5a:f6:26:1f:
                    32:1d:08:d9:c6:e2:e0:44:a5:93:14:a7:06:d0:dc:
                    92:27:a2:d0:e1:4f:4c:22:5a:2b:a3:dd:f2:13:62:
                    b8:89:ea:58:4b:d3:27:88:f2:30:fc:60:6f:ac:a0:
                    21:b2:ba:d4:85:69:19:8e:2e:a3:47:e4:da:2b:f7:
                    3b:01:cd:7a:be:64:48:4e:31:74:a0:a2:e5:1e:7e:
                    6f:ac:5c:4f:c1:75:27:bf:96:ba:27:17:5c:6e:25:
                    fc:e4:c1:50:8f:56:a2:b3:39:84:2f:91:b4:f3:52:
                    bd:ab:dc:77:04:3c:71:d6:52:67:d0:68:e5:80:91:
                    74:44:b4:71:c6:78:f2:91:6a:df:aa:26:69:25:45:
                    40:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:27:4F:3F:48:1B:DB:B7:B5:17:BA:88:EE:DB:7B:18:21:73:70:C7
            X509v3 Authority Key Identifier:
                keyid:8C:3C:CF:93:F7:C8:07:DD:E0:42:0A:D5:48:6A:E2:9E:B5:DC:75:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDzPk_fIB93gQgrVSGrinrXcdfk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1834ac-2030-441f-82e2-681dbff8515e/1/jDzPk_fIB93gQgrVSGrinrXcdfk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1834ac-2030-441f-82e2-681dbff8515e/1/jDzPk_fIB93gQgrVSGrinrXcdfk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:bb:80:7a:b5:ea:aa:7d:35:fd:3c:6d:e1:81:40:54:df:54:
         28:0b:b9:77:71:94:46:cc:6b:bb:0c:24:9d:08:8f:ea:36:70:
         56:63:4e:8c:26:dc:5e:da:36:a8:15:0b:a5:59:e8:f0:1b:f9:
         8d:63:a9:9d:06:10:a2:98:98:9e:7f:80:71:62:ac:12:c9:6d:
         e6:c6:12:4e:a1:3a:2d:5e:d5:c3:bb:74:f0:a8:c8:c4:43:72:
         44:b6:ff:8b:85:3a:8c:ce:72:14:c2:0e:81:33:95:3d:93:bf:
         07:50:7b:d3:3c:68:23:28:87:50:2a:52:56:d7:4d:bb:77:21:
         11:3d:83:61:67:64:3b:7c:49:ae:6a:5f:e8:e5:c6:d3:58:f0:
         f9:1a:86:e0:3f:c8:e7:93:19:9a:91:2d:69:59:26:ba:ce:93:
         87:1d:ac:44:e0:ac:f5:8e:74:51:d1:43:97:02:10:c4:15:49:
         11:60:d2:06:84:ba:06:46:2a:e9:40:7c:95:be:85:53:31:02:
         1a:52:30:cb:bf:fa:ae:8f:79:ac:75:aa:26:4b:0f:52:86:54:
         49:19:fa:1a:2a:60:88:f3:0c:3a:04:4d:f7:cd:b1:6d:6e:3d:
         d7:3a:ec:24:28:21:bf:a0:76:89:fc:b6:2d:21:af:68:43:3e:
         ff:a8:d1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----