Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
File:                     zy3L5YDpQvIQonhxtWUMjCkGOFE.mft (raw, json)
Hash identifier:          OZ5wcKyr7or7n31yix5BKR6q5yG0hQeVz9WKGyeArpI=
Subject key identifier:   6D:20:F8:8F:53:42:BB:58:B6:BC:20:D1:68:F5:57:AD:9F:25:DB:C6
Authority key identifier: CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51
Certificate issuer:       /CN=cf2dcbe580e942f210a27871b5650c8c29063851
Certificate serial:       01901DEB132E328021B0251DFC05F31E019F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
Manifest number:          11C2
Signing time:             Sat 15 Jun 2024 22:01:03 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:03 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:03 +0000
Files and hashes:         1: zy3L5YDpQvIQonhxtWUMjCkGOFE.crl (hash: w+ITdy2L2j1IfsNh8cbYg2d0AIFR9g/IoojJUxmtS+E=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:13:2e:32:80:21:b0:25:1d:fc:05:f3:1e:01:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cf2dcbe580e942f210a27871b5650c8c29063851
        Validity
            Not Before: Jun 15 22:01:03 2024 GMT
            Not After : Jun 16 22:01:03 2024 GMT
        Subject: CN=6d20f88f5342bb58b6bc20d168f557ad9f25dbc6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:25:b2:6f:ae:a7:b7:0c:39:60:06:46:78:b6:
                    84:7e:be:8d:0d:12:1a:a1:0f:fb:6a:89:9f:f4:46:
                    cc:22:2d:af:f0:56:c7:59:11:7f:8d:7d:5b:b5:ac:
                    e9:33:c0:91:7b:7b:96:74:a5:5d:bd:29:e8:42:8f:
                    59:16:e3:88:cd:55:2d:20:41:73:51:e3:20:e2:ba:
                    d9:5d:3d:a1:41:56:22:3a:a1:ee:69:02:45:0a:dd:
                    b5:55:83:27:10:ad:ac:22:01:ba:bb:1a:00:f9:c0:
                    82:2c:9f:46:80:d6:40:99:72:90:c1:03:74:25:f2:
                    a5:e2:c1:6e:5f:96:0e:89:68:59:a1:79:a6:14:2b:
                    ca:b5:7d:91:cc:d3:b6:10:a3:c3:f7:a8:c3:2e:90:
                    ec:14:f4:23:45:53:1d:f1:98:91:37:d3:6a:af:c0:
                    f1:14:61:97:a0:45:99:af:f1:99:e4:5c:1a:6a:94:
                    83:55:69:c7:a7:9c:da:10:8a:80:9e:54:4e:33:46:
                    e4:a9:51:71:dd:ea:03:95:91:3e:40:55:60:ae:3e:
                    55:a9:40:fc:e3:70:e8:a7:8f:a6:25:0c:53:a4:aa:
                    53:56:9d:2e:53:3b:6f:d0:98:6a:6e:19:0c:dc:c5:
                    b8:5a:9a:93:11:61:83:f5:98:ef:e4:f3:73:ee:d6:
                    d9:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:20:F8:8F:53:42:BB:58:B6:BC:20:D1:68:F5:57:AD:9F:25:DB:C6
            X509v3 Authority Key Identifier:
                keyid:CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:7a:30:ff:92:dd:0f:d4:8b:a8:82:c8:6d:44:8d:b6:94:30:
         0f:9f:84:10:d0:05:73:9c:6b:05:ad:53:de:e0:5b:60:9b:82:
         1a:ab:b8:d1:09:7e:c2:9a:c6:06:94:1f:43:c7:7f:94:b2:13:
         ab:4a:a7:36:5d:22:ac:df:b4:f7:46:25:ae:80:53:37:df:f0:
         7c:91:54:49:bb:59:63:34:c2:d3:27:c0:49:1d:1e:a7:8f:70:
         55:bd:85:49:0e:e5:07:83:d6:ea:e3:07:32:ca:53:38:93:af:
         e3:f0:4a:db:1d:e8:55:97:15:29:04:8b:5a:ba:88:40:53:b0:
         e6:8c:72:d2:df:fe:c7:2e:88:cc:9a:8d:a3:ac:93:8e:89:95:
         fa:f3:5c:db:9c:ca:4c:65:18:ae:83:55:8b:a1:8e:12:23:ff:
         11:50:6e:a1:24:99:31:ba:1f:38:62:86:e0:17:ac:07:e9:0e:
         30:35:01:3a:04:a4:36:f4:79:ae:86:02:85:db:58:ee:9d:6d:
         74:6b:9b:7a:c5:e8:0b:81:4f:c4:95:17:9f:47:ae:d8:56:99:
         92:20:57:9b:64:0d:01:4e:c2:f8:af:db:eb:1d:1c:a1:d2:c1:
         86:07:59:9d:21:c2:14:ab:2a:a7:7d:a8:1d:19:8e:33:89:3b:
         9f:38:cc:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:51:30 2024 by rpki-client on console-ams.rpki-client.org