Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
File:                     5-aiybui7N1AdLMVN1mDXoI6uOQ.mft (raw, json)
Hash identifier:          YVQBrIRuI+dqPThk1jfJxTb9yOJZNL9tuR7i0VOmHyM=
Subject key identifier:   B5:89:20:DB:53:FC:A6:7B:46:2B:3F:E6:BF:0F:4B:06:71:4A:12:01
Authority key identifier: E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4
Certificate issuer:       /CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
Certificate serial:       018F15582B9A2F127F5089410654CE8D2A1E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
Manifest number:          081D
Signing time:             Thu 25 Apr 2024 13:00:50 +0000
Manifest this update:     Thu 25 Apr 2024 13:00:50 +0000
Manifest next update:     Fri 26 Apr 2024 13:00:50 +0000
Files and hashes:         1: 5-aiybui7N1AdLMVN1mDXoI6uOQ.crl (hash: X8pSzTF9aqphRPRavjehM35ksa4zwKQSbCZYbNppK0A=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 26 Apr 2024 13:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:15:58:2b:9a:2f:12:7f:50:89:41:06:54:ce:8d:2a:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
        Validity
            Not Before: Apr 25 13:00:50 2024 GMT
            Not After : Apr 26 13:00:50 2024 GMT
        Subject: CN=b58920db53fca67b462b3fe6bf0f4b06714a1201
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:79:17:6c:8d:84:86:bd:73:45:8b:f0:18:bb:
                    c3:26:c3:ce:c9:29:0d:ed:13:ba:30:2a:9b:f7:7d:
                    72:4c:2a:67:02:0d:89:7f:4f:0b:fd:37:28:8f:b7:
                    50:48:72:21:09:ad:ae:03:db:40:84:8c:15:02:82:
                    1f:ec:52:68:83:d5:13:e0:e7:1a:2d:8e:15:02:9b:
                    87:83:d5:c0:95:1f:0f:76:02:cd:e7:21:9d:e4:1f:
                    b4:8a:7d:6f:c5:05:1e:f1:ba:c0:73:c0:05:0c:96:
                    41:02:fe:2b:b2:ce:4a:0f:b1:88:cf:35:a3:c1:b1:
                    18:2a:cf:22:ee:5f:98:6a:d6:64:7e:1a:e5:06:e5:
                    07:dd:3c:73:fe:a4:9f:b7:1e:a4:43:73:39:44:ff:
                    7e:4f:a8:10:7f:39:27:88:97:d5:16:10:b9:97:93:
                    c7:e5:5e:0a:5e:6f:4a:f1:83:e7:b9:af:ba:63:f2:
                    56:be:26:43:d4:84:1a:0b:da:85:bb:43:06:ac:ba:
                    2c:9e:bd:a0:58:cf:3d:8e:41:5c:d1:ae:d5:34:b0:
                    05:ad:95:7f:86:9a:47:8d:7f:b7:a6:d8:1c:2e:4d:
                    aa:d5:b8:c1:d2:c5:7a:56:47:82:58:a0:71:07:12:
                    a3:0b:5c:52:f8:02:f1:dd:a7:4c:39:f6:b6:76:55:
                    9f:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:89:20:DB:53:FC:A6:7B:46:2B:3F:E6:BF:0F:4B:06:71:4A:12:01
            X509v3 Authority Key Identifier:
                keyid:E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:7f:a6:18:40:58:1b:cf:f1:b7:10:62:e8:bf:07:ea:b2:2d:
         a8:7f:9b:5b:93:35:24:d0:e8:7c:5b:13:1b:cc:02:1d:ee:a0:
         85:c4:b6:e7:19:0a:00:0b:59:60:71:9d:a4:cc:2a:43:f9:d0:
         c1:8a:d2:66:9b:79:09:81:ad:64:57:dd:d6:3a:63:53:d2:4a:
         ee:db:2f:28:04:9c:14:73:b4:a8:6a:a6:73:b9:4a:6f:01:74:
         a3:35:a5:3f:da:fd:54:b3:b6:9f:ba:a0:2b:b2:a1:21:3e:21:
         19:a7:a7:be:f6:6f:94:bf:01:1f:e2:b2:09:3e:f0:8e:fc:fd:
         59:13:3d:f4:26:9f:1a:fb:b9:1b:16:f0:05:1c:22:9d:ad:bd:
         09:40:8c:81:23:24:b5:00:f8:54:21:44:42:cb:7a:9f:2e:4b:
         f0:4e:18:82:e5:8d:08:c8:e3:22:bb:fa:f6:ad:34:2a:c9:89:
         27:d0:a4:3f:69:3a:7c:bb:52:9d:1d:18:22:4d:95:b1:ae:13:
         68:f2:16:9c:7e:c5:7f:2d:67:a6:41:6a:9d:44:19:52:65:90:
         79:b4:38:45:85:f5:ac:3a:79:53:ce:37:5c:29:0b:57:1d:a6:
         21:0c:e2:bb:90:90:eb:25:86:67:71:b8:01:47:e3:42:5e:15:
         37:50:31:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY8VWCuaLxJ/UIlBBlTOjSoeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3ZTZhMmM5YmJhMmVjZGQ0MDc0YjMxNTM3NTk4MzVlODIz
YWI4ZTQwHhcNMjQwNDI1MTMwMDUwWhcNMjQwNDI2MTMwMDUwWjAzMTEwLwYDVQQD
EyhiNTg5MjBkYjUzZmNhNjdiNDYyYjNmZTZiZjBmNGIwNjcxNGExMjAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHkXbI2Ehr1zRYvwGLvDJsPOySkN
7RO6MCqb931yTCpnAg2Jf08L/Tcoj7dQSHIhCa2uA9tAhIwVAoIf7FJog9UT4Oca
LY4VApuHg9XAlR8PdgLN5yGd5B+0in1vxQUe8brAc8AFDJZBAv4rss5KD7GIzzWj
wbEYKs8i7l+YatZkfhrlBuUH3Txz/qSftx6kQ3M5RP9+T6gQfzkniJfVFhC5l5PH
5V4KXm9K8YPnua+6Y/JWviZD1IQaC9qFu0MGrLosnr2gWM89jkFc0a7VNLAFrZV/
hppHjX+3ptgcLk2q1bjB0sV6VkeCWKBxBxKjC1xS+ALx3adMOfa2dlWfjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLWJINtT/KZ7Ris/5r8PSwZxShIBMB8GA1UdIwQY
MBaAFOfmosm7ouzdQHSzFTdZg16COrjkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNWI1OWUtYmMyNy00MjA2LWE3ZDkt
NTM1NjlhY2EzYTVmLzEvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNWI1OWUtYmMyNy00MjA2LWE3ZDktNTM1NjlhY2EzYTVm
LzEvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASH+mGEBY
G8/xtxBi6L8H6rItqH+bW5M1JNDofFsTG8wCHe6ghcS25xkKAAtZYHGdpMwqQ/nQ
wYrSZpt5CYGtZFfd1jpjU9JK7tsvKAScFHO0qGqmc7lKbwF0ozWlP9r9VLO2n7qg
K7KhIT4hGaenvvZvlL8BH+KyCT7wjvz9WRM99CafGvu5GxbwBRwina29CUCMgSMk
tQD4VCFEQst6ny5L8E4YguWNCMjjIrv69q00KsmJJ9CkP2k6fLtSnR0YIk2Vsa4T
aPIWnH7Ffy1npkFqnUQZUmWQebQ4RYX1rDp5U843XCkLVx2mIQziu5CQ6yWGZ3G4
AUfjQl4VN1Axfw==
-----END CERTIFICATE-----