Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          y1DSAw7okghNnUIEx3m73omaCAqpQ9ybDREdgVVeUxg=
Subject key identifier:   0B:18:C9:3B:BF:20:CA:C2:91:9F:77:AC:48:11:E1:87:DB:9D:3D:61
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       019369D93A3E3A07860C96A2A5CF10D04758
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          0E78
Signing time:             Tue 26 Nov 2024 19:01:04 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:04 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:04 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: ZXLWstQr4bCRlLOk/InfDD46h32BcmcqJJnHpYa+p4M=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d9:3a:3e:3a:07:86:0c:96:a2:a5:cf:10:d0:47:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Nov 26 19:01:04 2024 GMT
            Not After : Nov 27 19:01:04 2024 GMT
        Subject: CN=0b18c93bbf20cac2919f77ac4811e187db9d3d61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:28:53:00:98:ca:3e:d2:16:0c:ac:4b:59:22:
                    5f:99:b5:92:83:3a:94:a8:05:61:c8:6b:19:fe:1b:
                    ef:71:a3:1e:a4:0d:b0:c0:b3:2d:67:58:30:cc:76:
                    71:d9:d7:21:4c:dc:2b:1f:54:06:0b:c2:0d:28:16:
                    1d:89:a0:47:f9:1b:75:a4:23:fd:a8:9d:16:32:48:
                    c4:7a:15:04:20:ce:80:6e:39:14:9b:a0:bf:2e:7d:
                    e1:f4:d2:12:98:46:39:69:a9:8f:ea:6d:52:1d:e7:
                    77:9e:54:4d:37:d3:75:a0:cf:18:47:d8:12:e2:ba:
                    e0:a1:c0:ef:17:75:f7:9b:26:5a:d4:68:f5:9e:c8:
                    ef:3f:bd:b0:94:3e:24:80:cc:da:11:82:b1:d7:64:
                    20:8f:86:54:ed:c7:a6:8e:2b:8b:86:8d:cc:23:4d:
                    74:c7:a4:e1:ba:a7:c0:69:77:39:72:5a:b6:e9:64:
                    63:3a:6e:d4:eb:ac:38:d5:f9:d8:20:40:92:cf:41:
                    42:31:34:c9:48:46:44:91:37:1d:20:e3:49:34:aa:
                    51:71:e3:f3:fa:be:b9:fa:27:e4:aa:e3:d8:ed:2b:
                    e1:d7:3f:1a:a2:ff:3e:0f:76:75:29:ad:83:28:18:
                    bc:c2:01:fc:dc:e2:ee:f4:aa:ee:61:37:e6:f3:42:
                    7a:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:18:C9:3B:BF:20:CA:C2:91:9F:77:AC:48:11:E1:87:DB:9D:3D:61
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:97:b3:1f:af:05:53:ec:3c:82:c6:ff:e7:48:87:91:14:1a:
         c3:df:39:bb:1c:c7:ba:2f:70:e4:13:d3:d3:5a:dc:5c:75:a7:
         99:9e:f9:e7:43:7d:73:43:58:7d:30:8e:e9:ad:8d:a9:27:00:
         87:43:d7:1d:bc:cf:d5:56:c1:9c:aa:dc:25:dc:9c:73:cf:95:
         23:a4:41:77:53:88:a6:45:bf:4f:fb:40:68:93:32:a6:36:32:
         71:60:0a:23:12:8f:00:12:f3:bb:1e:35:f3:34:8e:be:98:b0:
         fe:8b:69:aa:cd:7b:0e:27:df:c4:b3:49:f1:11:12:c6:a4:71:
         21:2a:7b:44:6d:a3:d0:c9:b6:a9:64:e7:14:fd:5d:65:4d:21:
         5e:b7:b8:dd:fa:6a:c4:47:33:ab:7f:5a:8d:84:73:bb:c0:7c:
         08:60:02:d1:6b:29:76:85:6a:c7:bc:a7:c0:90:98:4e:a9:7f:
         0f:69:0b:31:4f:2e:ba:29:dc:aa:cc:ca:0e:6d:2e:3a:e9:4e:
         dd:dd:1e:e1:8b:9f:13:af:f9:cd:62:e5:44:e9:75:9a:e6:e8:
         ee:98:8e:11:c6:6c:fe:ad:f3:99:0f:65:25:f3:0d:73:f8:4d:
         24:37:53:69:75:f1:20:58:51:17:62:fd:93:7d:23:a3:6d:23:
         67:c0:bb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----