Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
File:                     IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json)
Hash identifier:          5SmoSZfAE6rmF6CwpAt0VomO7aX4iSzxdQfmnkjPYC8=
Subject key identifier:   62:5B:91:E8:62:B7:C2:C9:3D:89:0F:3D:EA:5E:EB:3E:E3:83:C1:6A
Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
Certificate issuer:       /CN=2204f15cf30d73848b074dfcac26138006156ad4
Certificate serial:       018F5702E608ACEC44B1B29A8BB88AC62752
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
Manifest number:          086C
Signing time:             Wed 08 May 2024 07:02:38 +0000
Manifest this update:     Wed 08 May 2024 07:02:38 +0000
Manifest next update:     Thu 09 May 2024 07:02:38 +0000
Files and hashes:         1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: sHw95imnSxecvJtZlZIpLheXu9SnHG2eoTSh1mdlQ/I=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 May 2024 07:02:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:57:02:e6:08:ac:ec:44:b1:b2:9a:8b:b8:8a:c6:27:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4
        Validity
            Not Before: May  8 07:02:38 2024 GMT
            Not After : May  9 07:02:38 2024 GMT
        Subject: CN=625b91e862b7c2c93d890f3dea5eeb3ee383c16a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:5a:5d:25:ee:c1:b8:36:6f:1c:87:fa:36:95:
                    91:9f:30:b5:79:4a:a6:7c:09:9e:81:fb:d4:75:e8:
                    ff:e4:b5:05:8e:88:23:cc:6e:e7:b9:83:14:e2:cb:
                    83:42:13:5b:99:d2:12:6d:84:d3:a3:5c:03:cc:71:
                    4b:60:8e:f7:2a:5f:c8:f3:3f:74:83:19:c0:22:0e:
                    66:07:59:75:11:60:b1:4d:ad:6e:8d:37:13:cc:f5:
                    ed:1a:d9:31:82:04:a5:13:30:87:f2:a9:28:e2:20:
                    16:37:05:ab:61:80:0b:ad:aa:be:03:8a:2d:34:77:
                    b1:c1:c5:e3:41:38:5a:94:7e:5c:48:18:08:8c:a1:
                    2a:03:aa:0b:9f:fc:52:4a:4a:0a:39:8e:9f:73:a8:
                    6a:5e:13:df:19:5c:50:1e:86:5b:11:8b:1c:92:ad:
                    f8:6a:87:ef:62:cd:0d:0f:53:67:7c:6f:96:d4:5d:
                    dd:25:81:8d:92:5a:68:a3:d2:e2:ef:fb:ac:84:d3:
                    ce:6a:5c:43:3d:f6:95:ae:73:40:6d:0a:73:4e:1a:
                    96:27:ae:8f:26:4f:29:be:b7:08:66:95:4e:8d:6a:
                    c8:4f:76:29:a1:52:b8:bc:2b:b8:01:0b:07:2c:d5:
                    b8:4f:4d:ed:23:b6:eb:13:3b:eb:53:d2:fa:bc:e9:
                    0c:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:5B:91:E8:62:B7:C2:C9:3D:89:0F:3D:EA:5E:EB:3E:E3:83:C1:6A
            X509v3 Authority Key Identifier:
                keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:02:68:d4:c8:dd:d2:ab:89:26:3b:03:59:40:e5:c5:9b:b0:
         74:c0:f5:e7:dc:71:50:d2:93:9f:7c:f2:f9:0f:5c:46:6a:41:
         90:93:e7:af:6f:9d:5e:6a:96:5c:80:2c:29:ca:56:66:e5:48:
         38:66:04:45:2a:e8:cc:51:98:cc:32:86:a8:90:07:10:d0:e8:
         12:ac:f7:ee:c5:05:3e:bd:e2:5e:f2:b2:94:b4:62:99:f1:39:
         a7:1a:c7:7a:c9:8e:ce:28:28:4e:3a:27:c8:94:c1:64:94:f5:
         e4:a3:b7:07:bf:12:93:67:a0:58:c2:eb:32:3e:ae:54:cb:32:
         0b:df:42:98:30:a6:17:3b:de:15:0d:23:dc:e3:dc:b5:3a:df:
         64:f5:a5:d1:d9:f5:2b:59:cd:1b:ba:f4:7d:1d:7c:e3:6a:43:
         64:da:db:8c:19:41:4c:4d:99:99:2e:de:50:7d:25:c4:d0:36:
         ae:f4:cd:2c:b1:f7:29:f3:e1:1f:b7:92:92:fa:8e:43:bb:0a:
         eb:be:65:5f:48:e2:c2:9b:81:8a:24:68:26:6a:ee:06:f9:8b:
         3f:64:f6:d3:72:78:60:62:76:06:91:5e:f9:8b:3a:e3:a6:ef:
         e7:b2:8b:01:d3:35:54:60:8c:93:3b:9f:c2:8a:07:f0:13:48:
         4b:2c:92:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY9XAuYIrOxEsbKai7iKxidSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMDRmMTVjZjMwZDczODQ4YjA3NGRmY2FjMjYxMzgwMDYx
NTZhZDQwHhcNMjQwNTA4MDcwMjM4WhcNMjQwNTA5MDcwMjM4WjAzMTEwLwYDVQQD
Eyg2MjViOTFlODYyYjdjMmM5M2Q4OTBmM2RlYTVlZWIzZWUzODNjMTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lpdJe7BuDZvHIf6NpWRnzC1eUqm
fAmegfvUdej/5LUFjogjzG7nuYMU4suDQhNbmdISbYTTo1wDzHFLYI73Kl/I8z90
gxnAIg5mB1l1EWCxTa1ujTcTzPXtGtkxggSlEzCH8qko4iAWNwWrYYALraq+A4ot
NHexwcXjQThalH5cSBgIjKEqA6oLn/xSSkoKOY6fc6hqXhPfGVxQHoZbEYsckq34
aofvYs0ND1NnfG+W1F3dJYGNklpoo9Li7/ushNPOalxDPfaVrnNAbQpzThqWJ66P
Jk8pvrcIZpVOjWrIT3YpoVK4vCu4AQsHLNW4T03tI7brEzvrU9L6vOkMvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGJbkehit8LJPYkPPepe6z7jg8FqMB8GA1UdIwQY
MBaAFCIE8VzzDXOEiwdN/KwmE4AGFWrUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMt
YzFiMTAyMzlkZDU4LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMtYzFiMTAyMzlkZDU4
LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHAJo1Mjd
0quJJjsDWUDlxZuwdMD159xxUNKTn3zy+Q9cRmpBkJPnr2+dXmqWXIAsKcpWZuVI
OGYERSrozFGYzDKGqJAHENDoEqz37sUFPr3iXvKylLRimfE5pxrHesmOzigoTjon
yJTBZJT15KO3B78Sk2egWMLrMj6uVMsyC99CmDCmFzveFQ0j3OPctTrfZPWl0dn1
K1nNG7r0fR1842pDZNrbjBlBTE2ZmS7eUH0lxNA2rvTNLLH3KfPhH7eSkvqOQ7sK
675lX0jiwpuBiiRoJmruBvmLP2T203J4YGJ2BpFe+Ys646bv57KLAdM1VGCMkzuf
wooH8BNISyySMQ==
-----END CERTIFICATE-----