Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
File:                     gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft (raw, json)
Hash identifier:          h5bV7tP1Tx0JdM+36Wl69IAopjcWluOgAqQ2lrjj0kg=
Subject key identifier:   01:FC:FB:B9:8F:7F:66:39:0B:80:93:E1:23:A0:26:35:68:69:E6:E1
Authority key identifier: 83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
Certificate issuer:       /CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Certificate serial:       018F874AA222C17A11FE131824348C182E7A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
Manifest number:          1177
Signing time:             Fri 17 May 2024 16:02:46 +0000
Manifest this update:     Fri 17 May 2024 16:02:46 +0000
Manifest next update:     Sat 18 May 2024 16:02:46 +0000
Files and hashes:         1: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl (hash: 23w+Pd6sLgqm3XEAag1qPvmh5hIQLuTiH1DVS59882Y=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:a2:22:c1:7a:11:fe:13:18:24:34:8c:18:2e:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
        Validity
            Not Before: May 17 16:02:46 2024 GMT
            Not After : May 18 16:02:46 2024 GMT
        Subject: CN=01fcfbb98f7f66390b8093e123a026356869e6e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:2c:5f:b9:03:e0:12:93:a8:f4:57:7d:1a:bd:
                    44:9b:9a:a1:98:fa:39:7b:58:a5:f3:ca:bb:f7:80:
                    8c:73:17:da:d4:57:3a:03:00:df:00:17:3c:dd:f5:
                    59:bd:de:dc:c1:3b:42:42:a6:b2:21:84:f6:8f:69:
                    94:db:a2:c3:e8:f9:59:30:fd:37:99:49:85:77:cf:
                    70:57:aa:d9:4b:b3:7e:b7:a9:e4:33:83:63:9a:d1:
                    0a:c5:a4:4a:0b:74:94:34:02:96:f1:ad:df:3b:dd:
                    4d:c2:2c:a8:ec:fd:09:7f:6a:a2:72:f3:4f:cf:21:
                    04:ab:96:db:cb:ec:14:ab:3c:29:24:68:60:70:56:
                    0e:77:ea:31:05:26:4a:61:98:7b:29:f0:be:52:44:
                    45:c6:1c:3c:32:58:7e:08:88:d1:6a:93:04:da:f5:
                    f9:ef:d6:a8:c6:27:0b:6c:f5:b0:10:91:0a:9d:9f:
                    06:f7:a3:47:12:90:43:ab:a5:40:fc:f9:ca:13:a5:
                    b4:d7:d2:a5:e3:7a:07:0a:81:7d:fc:14:bf:02:2f:
                    fd:b5:98:3b:3f:08:1f:93:1c:86:e2:a7:94:f7:fc:
                    c8:e9:44:7f:ca:d5:7d:58:39:20:18:8b:7d:02:b0:
                    76:94:05:49:13:9f:f8:96:02:ad:58:1a:91:63:42:
                    1f:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:FC:FB:B9:8F:7F:66:39:0B:80:93:E1:23:A0:26:35:68:69:E6:E1
            X509v3 Authority Key Identifier:
                keyid:83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:89:9c:d7:27:b3:0f:22:6e:bc:77:79:a5:49:b5:e0:d4:77:
         04:1f:55:78:cb:be:d0:df:66:57:87:a7:a8:89:38:d7:37:d0:
         e1:71:a2:5e:15:a6:7f:e5:2f:df:5b:e9:33:e2:23:cc:5c:3c:
         40:18:41:b3:9a:5f:9f:67:cb:c6:88:6b:b1:bd:86:44:e6:f5:
         57:b1:15:46:88:50:5d:d3:5e:95:0c:06:60:fe:82:d4:f4:fa:
         35:20:f2:87:37:99:0d:0e:68:36:31:85:d7:45:bc:e0:4a:cb:
         22:ff:b4:b9:da:a6:38:fe:d0:0c:75:64:e9:3e:db:dc:63:f1:
         ef:54:c4:30:ce:02:84:cc:01:f9:83:11:85:33:d1:a2:01:87:
         19:3e:33:ad:91:53:63:72:0b:08:42:3e:ae:2a:2e:01:bc:97:
         e0:bd:85:92:d1:f7:0e:c7:49:7c:4e:9f:6b:16:5b:17:8f:08:
         15:84:46:96:1d:01:5c:14:c0:68:e0:e4:fb:5e:43:e4:15:ed:
         9e:c8:50:f8:93:67:a5:5d:b1:87:59:31:36:b0:7a:5a:57:77:
         93:e7:47:1b:41:ea:a3:5c:5d:76:bf:58:8a:dc:f6:da:c8:43:
         1d:83:c0:46:1d:7c:1a:c3:6c:52:8c:4a:16:bc:37:49:c6:c8:
         f6:0d:a3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----