Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
File:                     ySqWHIeskFGOp1LxhbtlEoq6KGY.mft (raw, json)
Hash identifier:          C2MD7jHBWsiNsi9mVka/FnFlS9UoUdItuEJX6qrqJEs=
Subject key identifier:   59:C4:03:AD:D2:31:E6:75:78:3C:07:F0:53:37:62:88:C8:81:69:A8
Authority key identifier: C9:2A:96:1C:87:AC:90:51:8E:A7:52:F1:85:BB:65:12:8A:BA:28:66
Certificate issuer:       /CN=c92a961c87ac90518ea752f185bb65128aba2866
Certificate serial:       0193568966110272BCD5F5A84BB35EE30C02
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
Manifest number:          15
Signing time:             Sat 23 Nov 2024 01:01:05 +0000
Manifest this update:     Sat 23 Nov 2024 01:01:05 +0000
Manifest next update:     Sun 24 Nov 2024 01:01:05 +0000
Files and hashes:         1: ySqWHIeskFGOp1LxhbtlEoq6KGY.crl (hash: O0yJXtOu6PPqheEnooCcXScJFbRtocqFZBpoJQZULr4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 01:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:56:89:66:11:02:72:bc:d5:f5:a8:4b:b3:5e:e3:0c:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c92a961c87ac90518ea752f185bb65128aba2866
        Validity
            Not Before: Nov 23 01:01:05 2024 GMT
            Not After : Nov 24 01:01:05 2024 GMT
        Subject: CN=59c403add231e675783c07f053376288c88169a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:f9:0f:f2:16:20:32:30:66:a1:31:a6:81:a8:
                    21:73:be:89:7e:0c:94:c6:bc:2b:fe:20:75:01:d1:
                    3c:83:43:bb:74:fd:db:b6:33:e2:99:db:44:05:cf:
                    78:8f:86:45:ed:10:d2:b9:05:3e:5f:9c:07:5b:eb:
                    36:be:b3:35:85:5e:09:69:93:d8:8d:55:58:bd:2a:
                    10:5f:de:8d:0e:df:e1:fd:b5:ff:bb:8b:ea:64:fc:
                    0a:33:74:5b:ac:fd:94:80:83:d3:7e:6e:34:70:b7:
                    82:d5:02:fb:0b:2b:b3:ea:e4:3c:22:4d:99:27:20:
                    ec:4c:5e:2e:85:a9:21:8f:6c:07:05:fd:3e:0a:26:
                    d8:d5:bb:bb:78:02:41:a9:d5:cb:be:8b:83:26:bc:
                    b6:bd:22:9a:fa:ff:44:c8:fd:2a:4f:b7:e3:13:e9:
                    2f:5b:a5:95:4b:4e:23:07:8f:32:fe:34:d9:6b:ba:
                    cd:7d:da:02:93:f7:fd:ad:a8:01:b7:9e:09:44:ee:
                    90:da:10:33:b2:c7:a2:bb:67:6b:30:2c:dd:1b:8a:
                    c0:c4:89:85:db:fd:a7:f0:ed:c4:43:c0:ad:8f:2b:
                    52:50:5a:e8:aa:2e:c6:87:e7:2d:13:4e:c9:c8:6a:
                    12:a8:49:f7:7c:0e:4a:0d:e4:cb:e2:34:ed:56:3f:
                    89:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:C4:03:AD:D2:31:E6:75:78:3C:07:F0:53:37:62:88:C8:81:69:A8
            X509v3 Authority Key Identifier:
                keyid:C9:2A:96:1C:87:AC:90:51:8E:A7:52:F1:85:BB:65:12:8A:BA:28:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:a2:4a:49:7d:0f:43:a5:bb:65:da:54:0e:2e:98:a0:5a:3f:
         68:b1:17:54:4c:65:64:5a:01:fd:52:56:f2:b3:ed:91:65:2f:
         44:43:02:bd:53:31:6d:44:95:b8:b8:a1:fa:a0:74:00:b7:a9:
         43:33:63:f1:76:04:9f:93:90:ca:e1:28:74:e7:7b:86:70:0c:
         f9:19:62:17:60:91:65:34:d8:60:0d:54:b6:29:b1:70:57:2b:
         e6:eb:c9:a5:d4:0e:b5:a7:f5:16:44:e8:a2:aa:09:29:5e:c5:
         ec:47:23:c2:e0:9d:7d:64:68:12:b5:08:31:19:86:43:a6:c7:
         59:23:ee:54:8a:db:50:cb:06:be:ee:45:a3:c6:3a:0d:6f:3a:
         e6:ce:fe:2a:ee:a3:fa:02:53:48:c8:b8:68:8a:f5:e9:04:6c:
         67:bc:e7:3a:16:3e:e2:03:f1:11:ad:1f:86:91:a9:cb:d0:9c:
         cd:74:a8:51:76:3d:42:e7:2e:75:7d:c2:ac:94:be:61:2b:b6:
         2b:95:e6:4c:3f:54:c9:0b:55:a4:1d:ec:aa:06:9a:83:12:ac:
         bc:c2:00:f9:f3:03:2e:1f:e4:e4:36:9c:96:2e:7f:48:cd:6e:
         b2:f5:05:87:00:bc:6f:51:56:dc:5a:b4:e0:39:4f:06:9c:f2:
         c6:7a:90:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----