Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
File:                     ihz-evMMHHJdI25KL8Kv1wn65kQ.mft (raw, json)
Hash identifier:          TMX8g6e8GBkXaT63TwQ17bh2oSgLUc0ufH35VCcwbNs=
Subject key identifier:   4E:5E:CC:4F:7A:60:05:93:3D:3E:7E:9A:13:A6:F6:B1:0C:F9:DF:56
Authority key identifier: 8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44
Certificate issuer:       /CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644
Certificate serial:       019369D9CE07E7D806D797F66D7C9223AC4F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
Manifest number:          0739
Signing time:             Tue 26 Nov 2024 19:01:41 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:41 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:41 +0000
Files and hashes:         1: ihz-evMMHHJdI25KL8Kv1wn65kQ.crl (hash: UGSLR193jt05Sy4P6GYY/Ud54Jk7iKXX12nWCctioHM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d9:ce:07:e7:d8:06:d7:97:f6:6d:7c:92:23:ac:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644
        Validity
            Not Before: Nov 26 19:01:41 2024 GMT
            Not After : Nov 27 19:01:41 2024 GMT
        Subject: CN=4e5ecc4f7a6005933d3e7e9a13a6f6b10cf9df56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:2b:38:37:7f:ff:a3:fe:2f:80:82:42:39:8d:
                    b6:df:4b:22:6a:49:12:43:9f:0f:5e:49:7b:e6:7e:
                    2f:c8:d2:fb:ae:63:a6:f6:17:65:ac:61:b2:06:bf:
                    e6:03:0a:eb:c4:9b:c5:fc:dd:90:1f:9f:c3:e2:28:
                    01:19:3b:b4:ea:73:be:14:1f:ef:30:92:3a:e2:e4:
                    79:4a:f5:b3:5a:be:a9:96:91:0d:f0:db:fa:13:17:
                    3c:2c:f9:88:8f:1a:5c:e7:b5:24:3d:3f:a8:c6:44:
                    06:c5:43:ef:6d:70:06:cf:c5:8f:31:7b:48:65:6c:
                    d3:50:3d:e8:07:8d:dd:b5:fa:26:54:f0:87:35:52:
                    a6:24:be:e0:07:e7:f0:18:58:d4:9b:1a:bc:f1:bd:
                    f7:24:02:9c:4e:79:79:58:fd:5d:2b:3d:14:15:43:
                    d2:5c:58:d8:b7:9c:50:f2:e2:98:7c:c4:ce:a9:3d:
                    f0:7f:6b:af:ff:7c:c7:63:84:5c:74:63:fd:3b:f4:
                    e7:41:b7:0f:76:7f:ea:ad:13:07:10:92:cc:3f:96:
                    95:d1:92:39:f1:ea:57:f6:f0:e2:c1:21:70:1d:ea:
                    cb:8a:0f:f0:ea:93:88:ba:7b:8a:3c:95:5f:66:5b:
                    97:be:8e:67:7e:6a:9d:e9:57:2f:a5:ae:5d:ff:e4:
                    58:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:5E:CC:4F:7A:60:05:93:3D:3E:7E:9A:13:A6:F6:B1:0C:F9:DF:56
            X509v3 Authority Key Identifier:
                keyid:8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:f4:04:57:02:3f:52:c6:09:39:83:58:b3:94:4f:a8:57:3c:
         ba:b6:f0:4a:94:1d:ee:ac:85:9f:ee:b3:b4:79:6a:ad:c2:7e:
         ba:25:7e:e9:aa:c4:bf:ee:c6:bb:1b:90:b0:7b:7d:4d:62:f1:
         4d:12:70:1d:c9:e7:e1:80:9e:31:0c:dc:a3:d8:04:13:bd:f3:
         1f:ca:cf:62:f9:1e:f3:cd:d3:66:d2:9f:69:98:20:ef:9d:3f:
         49:f3:56:50:ad:5a:39:e6:1d:f0:a0:1d:2b:2b:fb:ca:eb:8f:
         5b:5b:ab:a4:4e:fc:4d:c6:a0:ca:02:eb:6d:b0:bd:f2:b0:57:
         90:90:09:60:68:3b:e1:37:23:67:18:c5:fb:6a:38:7e:b7:ef:
         e5:95:c5:8d:1f:f0:fc:1f:a1:a6:47:45:e3:b7:87:7d:c1:ea:
         7c:41:4e:30:98:9e:46:90:2d:f3:f3:d8:40:69:4b:6e:fe:c8:
         db:4a:05:f7:e7:fc:91:9d:7e:b0:64:68:fc:76:71:61:bf:6c:
         4e:75:ab:bc:34:6b:4f:9a:3c:f5:5d:2d:81:b2:23:88:71:4c:
         e8:26:9c:e1:e5:1e:95:dd:17:9a:f1:75:95:2e:68:f2:5e:8a:
         b8:48:ea:b6:13:18:55:43:c1:b8:14:3c:b6:e3:2b:c8:88:6a:
         24:13:ab:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----