Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/00b84b-b5d1-4c1d-8e70-09e8fafaf0cc/1/wA7St1AmRN0DbiOS-wMyz7FNuNI.mft
File:                     wA7St1AmRN0DbiOS-wMyz7FNuNI.mft (raw, json)
Hash identifier:          uMScMmY4+BewMz9FjwAxEfPk1GPSt8jmuFPkDZk7uUo=
Subject key identifier:   51:9B:B3:C8:F1:4E:D6:B5:DF:73:B8:A7:9E:90:E5:36:06:2F:A6:3C
Authority key identifier: C0:0E:D2:B7:50:26:44:DD:03:6E:23:92:FB:03:32:CF:B1:4D:B8:D2
Certificate issuer:       /CN=c00ed2b7502644dd036e2392fb0332cfb14db8d2
Certificate serial:       0193572DA1F8459128C48D441836130DE652
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wA7St1AmRN0DbiOS-wMyz7FNuNI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/00b84b-b5d1-4c1d-8e70-09e8fafaf0cc/1/wA7St1AmRN0DbiOS-wMyz7FNuNI.mft
Manifest number:          136F
Signing time:             Sat 23 Nov 2024 04:00:28 +0000
Manifest this update:     Sat 23 Nov 2024 04:00:28 +0000
Manifest next update:     Sun 24 Nov 2024 04:00:28 +0000
Files and hashes:         1: wA7St1AmRN0DbiOS-wMyz7FNuNI.crl (hash: SUmK35RV14hxnLpEC62ou8HpZPlH1AzM2vITvqQ0mgs=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/00b84b-b5d1-4c1d-8e70-09e8fafaf0cc/1/wA7St1AmRN0DbiOS-wMyz7FNuNI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/00b84b-b5d1-4c1d-8e70-09e8fafaf0cc/1/wA7St1AmRN0DbiOS-wMyz7FNuNI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wA7St1AmRN0DbiOS-wMyz7FNuNI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 23 Nov 2024 21:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:57:2d:a1:f8:45:91:28:c4:8d:44:18:36:13:0d:e6:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c00ed2b7502644dd036e2392fb0332cfb14db8d2
        Validity
            Not Before: Nov 23 04:00:28 2024 GMT
            Not After : Nov 24 04:00:28 2024 GMT
        Subject: CN=519bb3c8f14ed6b5df73b8a79e90e536062fa63c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:73:80:3b:5b:6c:6a:88:2a:67:34:eb:b3:78:
                    6d:f7:16:4c:dc:e8:8b:de:55:09:28:2c:7b:2a:46:
                    9a:27:9c:b5:93:06:36:e3:e1:30:ee:40:43:97:44:
                    bb:79:bf:f6:f4:8d:2b:c5:fe:00:ec:f7:f8:07:34:
                    9a:ca:c8:67:31:32:e9:09:e5:19:22:e8:32:5e:c5:
                    c1:43:99:f9:64:bc:03:7e:83:00:d7:00:1a:6e:3f:
                    5e:50:92:02:4d:90:89:4c:80:10:27:d2:40:1a:9a:
                    d3:3e:42:35:79:e4:24:83:b6:37:5f:1a:99:24:cd:
                    de:41:87:f3:66:06:ca:d4:30:b2:b6:a0:36:de:12:
                    1f:c2:e7:75:19:97:2d:3f:71:35:f0:db:ec:c0:bb:
                    c0:0f:68:e8:21:02:f3:54:c0:d5:f0:fb:88:3f:8d:
                    ad:ba:88:fe:02:3b:e5:03:12:ef:45:18:7d:0a:97:
                    48:bb:35:c5:c0:c6:08:8c:45:18:70:43:9b:aa:5a:
                    b6:36:18:43:8e:92:e1:28:ef:f5:e6:d4:b9:fc:07:
                    ad:2f:ee:b1:48:0e:87:e8:1b:3b:7e:56:e1:1c:af:
                    a9:42:6f:a3:e3:c9:c9:f1:af:a9:da:b4:b2:8b:70:
                    0c:a6:25:a7:fc:8c:94:33:5e:bb:f1:23:6d:1b:5f:
                    05:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:9B:B3:C8:F1:4E:D6:B5:DF:73:B8:A7:9E:90:E5:36:06:2F:A6:3C
            X509v3 Authority Key Identifier:
                keyid:C0:0E:D2:B7:50:26:44:DD:03:6E:23:92:FB:03:32:CF:B1:4D:B8:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wA7St1AmRN0DbiOS-wMyz7FNuNI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/00b84b-b5d1-4c1d-8e70-09e8fafaf0cc/1/wA7St1AmRN0DbiOS-wMyz7FNuNI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/00b84b-b5d1-4c1d-8e70-09e8fafaf0cc/1/wA7St1AmRN0DbiOS-wMyz7FNuNI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:95:ef:9e:fb:79:f9:e1:56:dd:68:22:ca:91:7d:5e:1c:7a:
         05:38:29:ee:8e:b1:8b:70:6a:ce:81:cf:e5:a0:85:b6:02:66:
         73:2a:a0:34:3d:02:c6:bf:34:b2:ec:a4:50:e4:ba:3d:3b:87:
         4c:7d:fc:f7:43:a9:ca:a3:0a:e3:c8:fb:12:10:65:68:6d:0b:
         a8:43:54:2d:4b:f7:f9:6f:82:9b:21:32:0c:16:a2:35:44:3a:
         6b:17:0d:59:8f:e9:1b:c3:09:5c:65:c5:0e:d2:04:35:e4:3f:
         d3:9d:a1:f5:31:9a:98:86:fd:06:dc:68:8b:a4:87:81:e6:ae:
         f4:6f:d0:63:eb:76:ed:d4:2f:d5:fe:66:d8:81:33:c9:fa:c1:
         51:a1:d9:1d:3f:f4:05:f6:9a:b7:3a:b4:ae:ce:e5:0e:92:0a:
         49:87:1f:98:de:2f:b9:fd:75:7c:8f:f4:96:4a:dc:0b:92:87:
         bd:8d:99:2b:47:fb:b1:d7:69:61:0e:4c:a2:77:d8:6c:48:29:
         3e:b3:a6:07:b8:9a:d8:36:7b:48:8c:ed:a2:aa:ad:7c:a8:e4:
         78:d1:11:77:b4:2d:ad:35:53:35:2f:71:be:05:81:f4:2c:32:
         ed:58:2f:28:b6:3c:1f:4b:a4:0a:e9:7a:b6:61:37:7b:c8:75:
         ad:57:4b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----