Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
File:                     OJwDADZ1arjNrJIrGvI3vOE2fOA.mft (raw, json)
Hash identifier:          ZuiKDd48Jyr0FejNMLQ3WYdwPql68CdhNwYrWxtIfoA=
Subject key identifier:   CA:C8:9F:AB:2F:00:3A:00:12:05:2C:CE:5A:0B:61:C9:7B:F1:9B:01
Authority key identifier: 38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0
Certificate issuer:       /CN=389c030036756ab8cdac922b1af237bce1367ce0
Certificate serial:       018F8749561FDA01A2B308961919BE16552D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
Manifest number:          1175
Signing time:             Fri 17 May 2024 16:01:21 +0000
Manifest this update:     Fri 17 May 2024 16:01:21 +0000
Manifest next update:     Sat 18 May 2024 16:01:21 +0000
Files and hashes:         1: OJwDADZ1arjNrJIrGvI3vOE2fOA.crl (hash: jHPX0mBaD1P+Hdcmdl5m0vko/DHWYkGB8OMjGq3F/I4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:56:1f:da:01:a2:b3:08:96:19:19:be:16:55:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=389c030036756ab8cdac922b1af237bce1367ce0
        Validity
            Not Before: May 17 16:01:21 2024 GMT
            Not After : May 18 16:01:21 2024 GMT
        Subject: CN=cac89fab2f003a0012052cce5a0b61c97bf19b01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:1a:16:6b:60:9e:73:8a:ce:4d:d7:f3:1a:37:
                    66:44:a0:4c:c1:a0:46:23:9c:93:64:48:0a:fb:37:
                    60:a1:44:a4:7c:cb:54:c3:07:8a:fe:4e:8a:75:05:
                    bd:31:ca:08:f5:b0:1b:da:b1:90:56:77:03:45:3f:
                    cb:4c:3c:e8:62:20:cc:8b:6b:68:69:f1:61:2d:59:
                    1f:80:82:10:0d:60:57:8c:0f:8d:8b:01:a4:43:61:
                    b1:88:7e:5e:b3:90:fc:10:19:bd:dd:e8:82:89:e1:
                    42:06:0f:a5:50:d4:3c:dc:c7:ea:8e:85:72:93:bf:
                    98:ac:d9:f4:68:47:f3:4e:f6:72:af:f8:6b:20:41:
                    8a:c1:92:3a:50:3e:86:25:ac:5a:71:bc:c5:6a:d7:
                    6c:0f:18:05:96:14:e9:53:68:de:97:d9:16:32:15:
                    2d:89:78:82:33:3e:61:0b:26:3d:e9:8b:ad:e2:6d:
                    70:cf:0b:c3:e8:8f:9c:e6:96:86:71:83:e7:cb:43:
                    1d:b1:36:9c:68:d8:d9:4b:81:34:8a:f7:fa:40:c2:
                    eb:77:48:d3:a9:32:b7:78:f4:a3:4b:76:b9:af:6b:
                    f9:b6:f6:41:52:68:f7:39:8c:53:e6:22:16:a1:f6:
                    0c:bc:ca:07:2f:ac:b4:b9:5b:95:28:68:fa:61:96:
                    f4:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:C8:9F:AB:2F:00:3A:00:12:05:2C:CE:5A:0B:61:C9:7B:F1:9B:01
            X509v3 Authority Key Identifier:
                keyid:38:9C:03:00:36:75:6A:B8:CD:AC:92:2B:1A:F2:37:BC:E1:36:7C:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJwDADZ1arjNrJIrGvI3vOE2fOA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/20fca0-04b2-43b0-bd2c-6717b9babb34/1/OJwDADZ1arjNrJIrGvI3vOE2fOA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:67:a5:5e:de:5a:f2:57:13:30:09:ca:c2:41:04:70:ff:f7:
         a0:aa:53:36:cd:46:de:bf:46:98:fc:fa:06:f3:71:01:d4:6d:
         16:b2:e0:8b:e5:e5:77:83:4f:44:d6:8e:60:00:af:82:34:70:
         b4:95:72:96:2f:4d:37:e1:5e:83:28:5e:9e:83:5d:f8:dc:4b:
         ed:f7:80:4e:e5:55:8a:80:bd:b4:48:5f:9e:de:f2:df:dd:ea:
         7f:75:b0:3a:d0:14:17:ed:b7:fe:a8:c0:a6:ab:3d:88:67:59:
         0e:b5:96:e9:d4:7a:00:c8:e1:35:0c:eb:d6:38:64:ae:a4:54:
         5a:a1:ac:d2:63:a2:a9:19:65:b2:57:70:f4:b3:90:07:7f:d3:
         41:d0:80:3a:eb:44:b4:32:81:56:cb:80:82:61:db:64:6c:e0:
         c7:d4:a9:a6:cc:07:7a:24:08:9f:7e:38:e7:55:0a:d3:fa:7b:
         4b:34:fa:2d:83:bf:67:27:c7:d4:fb:8a:cf:29:f9:dd:01:9d:
         3c:36:b5:b5:03:14:4d:3f:ef:27:fe:77:3a:51:5e:07:ee:27:
         93:ea:05:95:9a:55:1b:a7:4d:85:ad:29:46:a2:f6:6b:f2:d4:
         b6:7f:c8:fb:82:4d:ae:7d:af:9f:e2:8a:4e:6c:f7:4b:c2:55:
         21:1c:6f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----