Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft
File:                     y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft (raw, json)
Hash identifier:          rSCfo6f3F3r2QRRAZ7owpwm8d/dmI0JT3lxvEP0YHfI=
Subject key identifier:   01:5B:A3:E5:E7:49:ED:92:48:C5:4A:24:1F:FB:23:C4:AC:B0:73:01
Authority key identifier: CB:83:FB:FC:17:6C:D4:8E:BE:2F:2C:DE:9F:4C:01:ED:25:3B:BB:2D
Certificate issuer:       /CN=cb83fbfc176cd48ebe2f2cde9f4c01ed253bbb2d
Certificate serial:       018F874976BCF336252B41C20383070EF5F0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/y4P7_Bds1I6-Lyzen0wB7SU7uy0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft
Manifest number:          1177
Signing time:             Fri 17 May 2024 16:01:29 +0000
Manifest this update:     Fri 17 May 2024 16:01:29 +0000
Manifest next update:     Sat 18 May 2024 16:01:29 +0000
Files and hashes:         1: y4P7_Bds1I6-Lyzen0wB7SU7uy0.crl (hash: ds8WhQwxmlos0xc2AWvZzPBS2Ml0brnSp7F5BvcMDq0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/y4P7_Bds1I6-Lyzen0wB7SU7uy0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:76:bc:f3:36:25:2b:41:c2:03:83:07:0e:f5:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cb83fbfc176cd48ebe2f2cde9f4c01ed253bbb2d
        Validity
            Not Before: May 17 16:01:29 2024 GMT
            Not After : May 18 16:01:29 2024 GMT
        Subject: CN=015ba3e5e749ed9248c54a241ffb23c4acb07301
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:17:3f:e0:47:b0:75:75:c2:ab:60:24:eb:69:
                    dc:38:1f:35:ce:72:23:d2:bd:24:4f:6c:14:33:f3:
                    99:10:c4:34:fd:ff:af:ea:eb:81:ef:6f:3d:4c:82:
                    f5:ba:c6:29:0b:0f:83:29:69:39:90:55:11:bc:56:
                    0b:2e:45:78:71:60:41:97:8c:15:4a:53:63:1c:c3:
                    d8:53:42:fa:90:88:a0:4f:94:f8:ee:94:82:e0:4b:
                    ba:8f:c5:81:8f:49:11:1b:fb:54:bb:6a:99:e6:0c:
                    6e:64:38:1d:13:bf:ae:64:09:a8:9a:7e:70:03:3c:
                    70:71:3f:8d:1a:e2:43:0d:dc:01:d0:60:bc:ce:d7:
                    fa:8f:28:25:37:25:91:c4:6b:db:00:09:10:d0:4e:
                    70:9d:46:38:f6:01:9e:c3:ab:5c:db:74:56:b0:6f:
                    1d:73:fc:e5:2e:04:ba:78:32:00:58:c4:c5:7f:68:
                    4b:a9:e8:e6:c6:84:64:26:c3:a8:33:e4:57:2c:18:
                    36:b7:93:50:b2:40:2a:a7:bf:e8:1d:db:f2:6a:2d:
                    f2:c0:e9:53:9f:93:40:f1:a4:75:2d:7b:d6:81:70:
                    52:c6:a5:90:89:81:d4:dc:85:54:ca:d7:ad:d6:1b:
                    43:dc:96:72:5b:56:2c:fd:65:4b:2b:ba:ec:99:a7:
                    75:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:5B:A3:E5:E7:49:ED:92:48:C5:4A:24:1F:FB:23:C4:AC:B0:73:01
            X509v3 Authority Key Identifier:
                keyid:CB:83:FB:FC:17:6C:D4:8E:BE:2F:2C:DE:9F:4C:01:ED:25:3B:BB:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y4P7_Bds1I6-Lyzen0wB7SU7uy0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:78:7f:ad:cc:d7:80:46:36:d7:ab:a1:1e:f6:19:df:f1:dd:
         77:75:08:01:81:c9:4e:29:c7:03:bd:c8:b5:97:a2:71:2f:c8:
         97:ad:a3:29:8a:36:80:24:21:92:6a:e5:9b:b1:da:16:1d:d0:
         a0:8c:ec:b8:eb:7d:66:f2:4d:6a:c5:ab:59:d4:ee:a8:bf:3e:
         3d:39:98:71:18:19:7b:03:0b:56:fd:b5:46:a4:69:fd:f9:b2:
         c3:1d:14:87:98:c0:ac:0c:2a:32:14:fb:6f:39:b8:33:8a:c5:
         2a:85:83:c7:af:2e:20:e5:05:34:2c:ed:30:f2:44:e0:f6:b6:
         fe:c0:55:c7:72:ab:46:2c:12:1f:14:78:06:57:ee:80:0f:22:
         9e:30:89:64:93:96:60:be:1c:a3:01:1c:58:b5:c4:ab:84:33:
         e1:54:61:2d:d5:a7:b1:d0:b2:79:c0:7b:ce:62:01:ce:1f:4b:
         c6:ec:17:58:e6:59:5a:f4:08:1c:41:40:b7:a8:d4:5e:9f:b8:
         25:39:86:8b:23:34:fc:84:19:4e:09:ff:50:91:ae:05:d1:88:
         39:fe:45:de:33:52:1d:69:d1:a2:88:b3:39:0d:00:96:7f:17:
         e2:09:7b:bb:c8:c1:11:e3:f8:db:c8:91:95:c1:fb:a8:9b:3c:
         7f:9a:a8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----