Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
File:                     iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json)
Hash identifier:          +wW599jXo6Q0B2cAMGZJtKkycRdHJI9DWMow+cb9+80=
Subject key identifier:   CF:4B:1E:69:00:46:34:0E:A5:A8:30:8D:30:41:8A:0F:CC:B4:F4:90
Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
Certificate issuer:       /CN=8b050e42c918de3c27366def433a61f13c3b16b2
Certificate serial:       018F8749ACF26474A729DFB7679690B92C8D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 16:01:43 +0000
Manifest this update:     Fri 17 May 2024 16:01:43 +0000
Manifest next update:     Sat 18 May 2024 16:01:43 +0000
Files and hashes:         1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: 9ouDCFI3iV5Ek0ypn13sO4sUN49xpeHu/p2soAAqJEo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:ac:f2:64:74:a7:29:df:b7:67:96:90:b9:2c:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2
        Validity
            Not Before: May 17 16:01:43 2024 GMT
            Not After : May 18 16:01:43 2024 GMT
        Subject: CN=cf4b1e690046340ea5a8308d30418a0fccb4f490
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:c7:e0:dc:26:0f:1e:83:da:1b:00:86:26:bf:
                    c1:d5:33:4a:b2:88:aa:f7:dc:82:f9:b2:fe:11:4a:
                    e4:33:9c:f3:68:5f:fc:fa:d4:dc:de:7f:7d:14:c7:
                    2c:be:cf:4a:50:b2:d8:83:45:bf:ef:cb:91:6c:be:
                    b3:d3:62:67:c8:9d:25:72:f2:3f:8d:bd:34:84:38:
                    2a:74:ff:2c:de:7c:e3:89:84:95:e8:9b:2c:c9:bd:
                    1d:e7:5c:68:66:e0:da:59:3b:26:e5:6e:a0:11:3e:
                    ef:bc:4a:42:df:e4:4a:44:1a:2b:e9:60:e4:23:eb:
                    75:ec:f3:24:03:4e:7b:40:52:e0:20:34:79:fe:c0:
                    1d:11:61:aa:36:6a:f3:be:cd:41:fe:07:12:37:e0:
                    0d:eb:1c:1e:6f:97:5b:86:32:51:68:44:8a:55:66:
                    d5:cf:dd:45:c3:e9:f8:17:3a:d9:fe:e2:af:d9:0d:
                    38:c5:1c:4a:1f:39:ed:cb:f8:88:41:a1:2e:e0:58:
                    7f:7e:e2:8a:e8:03:a9:7e:42:f6:aa:55:6e:29:a0:
                    d6:69:83:e2:6e:a3:dd:ba:4b:e4:4d:ce:89:eb:b4:
                    32:37:78:fe:61:5c:c6:d1:f9:fe:99:a8:76:d9:a7:
                    f6:a6:4c:5b:f7:bc:72:45:cf:02:6f:5f:ac:07:b2:
                    ff:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:4B:1E:69:00:46:34:0E:A5:A8:30:8D:30:41:8A:0F:CC:B4:F4:90
            X509v3 Authority Key Identifier:
                keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:d5:3b:43:d6:45:2f:16:f8:d4:e3:15:c3:ea:2c:51:a0:5a:
         f6:c9:5a:76:4c:ef:41:7e:fe:6b:11:4e:09:2c:e1:31:23:50:
         1c:87:a2:d6:55:e8:87:b7:f0:66:dd:8f:e0:b2:4a:ac:33:72:
         53:00:3d:19:d1:80:b3:3a:d3:4b:3c:09:c7:d7:f7:20:7d:e6:
         9e:9a:e1:f8:1e:bc:75:b3:81:df:58:c0:b0:16:d6:b6:0f:27:
         ec:f8:a6:e7:b6:73:38:44:67:d0:89:06:d3:84:05:9d:3b:f8:
         6e:83:25:53:a2:03:24:00:f0:8b:3d:94:66:6b:74:8b:d0:ea:
         81:cd:fd:0d:6a:52:eb:5d:df:d8:66:16:42:83:b7:a6:51:a4:
         73:f5:f6:23:54:d3:e1:91:a5:16:ad:16:39:63:20:6b:68:c1:
         9d:26:04:e4:9c:7a:01:72:73:17:8f:9e:76:11:c5:d4:58:4b:
         7e:9d:53:e0:ec:9a:88:90:09:99:f7:cc:46:2b:7b:9c:d6:8a:
         00:5a:d2:1e:f3:a0:2d:a7:77:bb:79:5a:4e:dc:95:5c:36:8e:
         8a:4a:3d:e8:83:62:af:af:87:73:c7:26:0e:cd:e3:65:23:e9:
         23:1c:cd:c6:c0:09:74:08:c7:cf:dc:6d:48:bf:bf:3a:c5:8e:
         93:53:b7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----