Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
File:                     KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft (raw, json)
Hash identifier:          mcUjQBiKkW2m/T+0duus6mVhaiDciwfQI1EMVJ5KhWI=
Subject key identifier:   F6:BE:51:BD:AA:83:EC:61:8F:1D:E0:7B:7F:87:10:BE:00:0F:FE:4E
Authority key identifier: 2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
Certificate issuer:       /CN=2a7148c461f5e77e107af73566a27e343561dc1d
Certificate serial:       018F874877E0E62696DC979F73DB9EB6CBD2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
Manifest number:          1175
Signing time:             Fri 17 May 2024 16:00:24 +0000
Manifest this update:     Fri 17 May 2024 16:00:24 +0000
Manifest next update:     Sat 18 May 2024 16:00:24 +0000
Files and hashes:         1: KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl (hash: uRAXbzut7t1qb+jmelo4ZKVNGj17YynbhAg81teLWfc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:77:e0:e6:26:96:dc:97:9f:73:db:9e:b6:cb:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a7148c461f5e77e107af73566a27e343561dc1d
        Validity
            Not Before: May 17 16:00:24 2024 GMT
            Not After : May 18 16:00:24 2024 GMT
        Subject: CN=f6be51bdaa83ec618f1de07b7f8710be000ffe4e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:01:8e:89:19:89:01:0b:43:1c:d7:26:c5:96:
                    05:fb:90:7b:ed:26:a0:bc:df:87:e8:67:35:ee:97:
                    da:1e:fb:37:a4:15:86:d5:1e:72:39:e7:f9:36:60:
                    e1:db:55:9c:33:e2:3e:a2:3f:46:91:c5:ff:4a:1e:
                    e9:84:84:f1:33:3f:03:ad:a8:99:9b:ed:b6:12:e9:
                    53:36:af:79:09:79:af:a7:2b:c9:62:cf:ab:10:09:
                    ba:27:3c:cd:55:3c:5e:bf:ea:3f:66:74:de:8c:cb:
                    96:64:6f:06:56:23:8b:d6:33:fb:28:7d:8f:6c:09:
                    61:5f:c8:b6:41:40:28:f2:d8:f3:70:1c:63:57:c4:
                    0c:92:c8:e6:79:b2:0d:6b:d4:5e:3a:91:fa:20:5e:
                    6c:c2:ff:36:bc:39:e7:03:24:2e:ec:76:82:fb:f2:
                    1e:45:c5:20:55:2e:2b:97:94:6f:eb:9f:b9:f0:a3:
                    b9:b6:33:7b:48:86:1a:a3:b2:62:2e:5d:32:82:5f:
                    45:96:db:46:0e:cf:d1:c0:98:7e:49:c3:d6:07:21:
                    20:92:5b:b7:0f:1d:35:a9:0d:ab:e2:9b:be:b9:10:
                    31:fb:5f:34:dd:38:be:46:db:cc:70:c9:1e:51:50:
                    cf:b0:0c:38:a6:1c:33:48:0e:3c:31:be:b4:ec:e5:
                    66:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:BE:51:BD:AA:83:EC:61:8F:1D:E0:7B:7F:87:10:BE:00:0F:FE:4E
            X509v3 Authority Key Identifier:
                keyid:2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:88:ae:72:8f:32:6e:9a:28:7a:a9:57:54:88:d8:bb:14:4f:
         91:96:de:15:0f:ac:ae:44:82:a2:13:fa:69:87:70:50:a2:8e:
         a9:df:79:82:38:ec:96:9a:df:e5:68:7c:4b:2c:90:16:92:62:
         83:cd:dc:56:a4:db:2c:cd:3b:16:0c:99:5e:ef:41:35:95:d0:
         48:fc:0d:a8:87:f2:2e:83:07:ed:56:71:d3:97:d1:bf:37:d6:
         f7:6b:5d:48:f7:40:ea:ac:23:f9:e3:2e:fa:a9:1b:22:bc:cb:
         a2:e7:1a:1d:fe:38:b6:e8:7d:98:59:4a:84:2c:70:d6:4d:b6:
         9e:69:f2:2b:d4:8c:86:51:7d:60:e7:c9:7b:65:ea:0c:16:36:
         31:ab:d0:3f:d4:f3:86:e0:4b:b2:88:87:f1:e6:3d:3d:17:3d:
         84:84:90:c6:af:24:90:bd:c0:d0:f8:d3:97:03:0a:36:e8:63:
         ac:02:7b:4b:a8:5c:28:11:10:f9:e3:c1:3a:e9:69:78:7e:f3:
         9c:bd:30:15:fc:3b:ab:e2:3e:35:80:f2:08:87:a7:01:76:4c:
         bb:b9:4c:55:6a:23:85:a6:02:96:0d:6a:cd:4a:dc:0c:d5:21:
         ff:aa:06:b2:60:64:a1:fa:e9:dc:d8:29:ad:26:48:2e:05:5f:
         76:8c:63:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----