Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
File:                     zy3L5YDpQvIQonhxtWUMjCkGOFE.mft (raw, json)
Hash identifier:          9XGUU/N1CWi0BNl3plSROdXGD5aB3t/U0TZEdLSKurY=
Subject key identifier:   D3:A9:70:52:80:42:C4:A2:FA:AF:EB:41:07:60:8D:BC:D2:8B:B5:BD
Authority key identifier: CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51
Certificate issuer:       /CN=cf2dcbe580e942f210a27871b5650c8c29063851
Certificate serial:       0190448C7A793B2CB31FF965A98CCC9D3A5E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
Manifest number:          11D6
Signing time:             Sun 23 Jun 2024 10:02:55 +0000
Manifest this update:     Sun 23 Jun 2024 10:02:55 +0000
Manifest next update:     Mon 24 Jun 2024 10:02:55 +0000
Files and hashes:         1: zy3L5YDpQvIQonhxtWUMjCkGOFE.crl (hash: e539+vjaYtKohDtRdfLe2WI7MiNFHuV7pKPSV82Lqbg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 10:02:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8c:7a:79:3b:2c:b3:1f:f9:65:a9:8c:cc:9d:3a:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cf2dcbe580e942f210a27871b5650c8c29063851
        Validity
            Not Before: Jun 23 10:02:55 2024 GMT
            Not After : Jun 24 10:02:55 2024 GMT
        Subject: CN=d3a970528042c4a2faafeb4107608dbcd28bb5bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:1b:f5:bb:23:16:84:80:8e:47:bc:07:82:a2:
                    9d:30:f0:0a:79:ef:5e:ef:96:57:dc:3b:1a:90:45:
                    8c:7c:63:79:8b:9c:8c:21:7b:3f:b3:47:40:93:d6:
                    22:98:20:3e:b9:42:39:ef:c5:28:32:74:ee:2a:96:
                    a8:af:c7:47:3e:57:82:47:11:5f:4d:99:1e:dd:bf:
                    31:e3:c6:9a:47:1b:03:ad:d9:5d:02:57:8f:2d:39:
                    32:51:cb:24:a2:8e:eb:b2:f6:2f:db:0c:e0:bb:07:
                    4a:ae:67:4b:f1:3c:c8:61:d1:6a:0a:64:8d:d8:12:
                    56:57:8d:6f:89:e7:dc:24:b1:23:25:07:33:64:fc:
                    8c:5f:9d:49:9f:c6:c1:77:e8:5d:20:dc:85:f3:a8:
                    f5:42:33:83:30:64:4d:7b:bc:49:24:a1:62:b0:b2:
                    f6:50:74:89:ad:be:52:10:f3:aa:60:b0:8d:a2:9f:
                    fe:42:24:2f:22:72:6a:7d:f1:34:72:5d:c4:93:b7:
                    61:ee:89:6d:db:c0:8f:1d:0f:5e:ba:f9:b7:d6:df:
                    e3:73:6f:72:d1:b5:c5:39:6a:c2:50:96:3c:f3:20:
                    dd:8c:15:a4:2f:3a:fd:01:f9:4a:ed:17:50:0a:1d:
                    fe:34:3c:55:55:99:c3:83:14:a6:df:9e:83:31:2b:
                    7b:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:A9:70:52:80:42:C4:A2:FA:AF:EB:41:07:60:8D:BC:D2:8B:B5:BD
            X509v3 Authority Key Identifier:
                keyid:CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:1c:d0:ae:94:fb:1c:a7:27:fd:9d:6f:34:4d:3d:30:53:c0:
         f7:c8:5d:64:0f:6a:f8:08:c6:62:a3:11:0e:c8:94:80:83:52:
         fe:8b:01:94:03:df:e5:cf:3e:5d:47:d0:c1:1e:fb:11:f9:d9:
         a2:bd:c0:1d:29:5d:1b:3a:5a:f7:6a:b3:98:a3:01:e1:1f:61:
         7c:14:ef:39:48:1c:de:b5:4e:fe:af:c4:46:6e:b3:bd:57:e7:
         a4:d8:2c:3a:c9:f3:7c:d9:90:01:17:96:1d:eb:e6:cd:63:a1:
         b1:3c:ac:61:7e:2b:cc:15:8a:39:de:fa:7a:32:ff:f5:28:5b:
         5a:a6:6a:36:cb:20:77:92:20:3a:c9:9b:86:3e:c2:3f:01:68:
         fa:a5:ac:42:6e:20:97:27:58:fe:4b:12:46:c3:e0:20:2e:01:
         63:43:e3:45:52:21:51:c2:d2:f0:19:7b:f4:c2:e1:8b:cb:38:
         9a:6f:fd:42:2b:9f:6f:ac:2f:3d:c4:60:ce:ba:eb:d4:ed:4c:
         58:9e:69:62:54:bb:b0:04:c2:79:f0:4a:08:14:84:c7:a3:43:
         5d:5f:1c:82:65:f6:9c:f5:e5:45:a7:30:ee:71:82:06:f0:ee:
         d8:e7:8d:70:ea:bd:68:e5:80:e8:88:78:0f:59:e8:8a:7f:58:
         d9:4a:66:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 19:06:27 2024 by rpki-client on console-fra.rpki-client.org