Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
File:                     KMaADXS8QQW0DnfqCFugJtvuw18.mft (raw, json)
Hash identifier:          Dg975Mxr31l8LPt3WgA2YQdrrGL3/mbUcf1E0HfiyVQ=
Subject key identifier:   EF:D3:C2:CD:BD:FA:83:88:B5:EA:DE:DB:E4:66:98:D9:21:4E:6E:5A
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Certificate issuer:       /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial:       0188796FE5E8AE6684405BF19C02FECA703E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
Manifest number:          07F6
Signing time:             Fri 02 Jun 2023 00:09:16 +0000
Manifest this update:     Fri 02 Jun 2023 00:09:16 +0000
Manifest next update:     Sat 03 Jun 2023 00:09:16 +0000
Files and hashes:         1: KMaADXS8QQW0DnfqCFugJtvuw18.crl (hash: pzf79i1fPVGvZ/zpvtumjnkLMkvgYtwqucnIAhOG7HQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
                          rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 02 Jun 2023 16:53:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:88:79:6f:e5:e8:ae:66:84:40:5b:f1:9c:02:fe:ca:70:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
        Validity
            Not Before: Jun  2 00:09:16 2023 GMT
            Not After : Jun  3 00:09:16 2023 GMT
        Subject: CN=efd3c2cdbdfa8388b5eadedbe46698d9214e6e5a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:be:6d:5b:fa:8a:3d:ba:8b:c9:b6:24:6c:91:
                    b0:ad:e5:f4:6c:c0:84:88:0e:ca:56:af:3e:5a:db:
                    47:e8:7e:1a:83:b3:78:6a:54:4f:54:3d:d7:77:79:
                    13:0c:5b:6b:15:c7:64:24:9a:42:5a:e1:00:5b:e0:
                    df:8a:a4:f4:95:75:6a:f1:88:e3:4f:44:a6:d3:51:
                    92:6a:e0:b0:b4:e4:41:96:da:33:ca:18:cd:08:90:
                    a7:f3:85:26:34:f8:9b:23:c5:f0:7f:c8:52:17:40:
                    71:c2:96:bf:fc:cf:8a:04:8c:da:b7:59:ca:d8:0f:
                    58:16:45:78:fa:c2:1c:b3:33:c7:64:d6:47:06:8e:
                    b9:45:f6:e7:9f:5b:a7:ea:64:d9:62:95:5f:cd:6f:
                    4b:e2:5b:01:3d:96:30:7f:73:5a:ec:13:16:f0:d0:
                    6f:91:0e:fb:46:f1:f9:78:8a:b5:d6:9b:3e:78:0e:
                    cc:01:16:e6:d1:cf:36:18:d1:06:49:1c:59:fc:81:
                    f4:ee:68:6d:11:0c:ba:aa:01:b0:f9:dc:ab:93:28:
                    f5:d9:72:e9:ed:7a:dc:e6:c8:18:99:43:19:3b:a8:
                    06:5f:d8:88:f2:ca:a2:91:0c:f6:56:81:87:27:f7:
                    0e:57:1a:43:f4:4b:7a:1d:a2:ae:a0:a0:5b:a9:d6:
                    72:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:D3:C2:CD:BD:FA:83:88:B5:EA:DE:DB:E4:66:98:D9:21:4E:6E:5A
            X509v3 Authority Key Identifier:
                keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:f0:61:0b:09:6a:b9:c0:6f:50:5b:8c:22:ba:6b:34:1a:2a:
         ff:13:0e:f7:e4:ee:3b:a5:33:6d:50:a0:1c:ec:07:9f:9e:a6:
         99:55:69:3d:f5:66:3c:ed:ca:6a:62:a1:96:d3:f8:25:b0:7f:
         34:9a:19:7b:c1:da:73:e2:40:d1:df:51:28:95:59:26:1a:1a:
         2a:fb:95:18:b5:a5:f0:39:ae:38:f9:d8:c6:db:59:d7:79:dd:
         62:7e:60:96:41:f4:68:cf:5c:20:e5:a8:20:68:e3:bb:cb:a4:
         a8:6b:3a:ff:26:55:26:22:2e:ca:9d:78:85:94:c4:1b:c7:75:
         29:54:7b:be:49:72:21:4f:2e:66:ea:64:97:90:fb:ea:56:b7:
         0b:74:7c:d3:a4:62:0b:a7:e0:e2:2a:4a:df:cd:fd:1d:c6:8b:
         e3:10:43:d7:b4:43:da:7b:ba:05:cb:92:8a:a3:07:77:ae:92:
         9f:86:8e:d1:f2:14:59:38:69:5a:fa:26:24:34:fe:ca:3a:4f:
         1d:8b:97:63:75:14:f9:65:a6:79:75:e9:f3:97:d4:bf:9f:bb:
         11:a6:65:2c:bd:32:93:fe:90:b4:19:29:f7:1b:34:ec:57:5d:
         30:53:eb:dc:67:79:c1:06:9a:7e:12:2c:2e:b4:12:07:4e:e0:
         92:29:c4:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAYh5b+XormaEQFvxnAL+ynA+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YzY4MDBkNzRiYzQxMDViNDBlNzdlYTA4NWJhMDI2ZGJl
ZWMzNWYwHhcNMjMwNjAyMDAwOTE2WhcNMjMwNjAzMDAwOTE2WjAzMTEwLwYDVQQD
EyhlZmQzYzJjZGJkZmE4Mzg4YjVlYWRlZGJlNDY2OThkOTIxNGU2ZTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnb5tW/qKPbqLybYkbJGwreX0bMCE
iA7KVq8+WttH6H4ag7N4alRPVD3Xd3kTDFtrFcdkJJpCWuEAW+DfiqT0lXVq8Yjj
T0Sm01GSauCwtORBltozyhjNCJCn84UmNPibI8Xwf8hSF0Bxwpa//M+KBIzat1nK
2A9YFkV4+sIcszPHZNZHBo65Rfbnn1un6mTZYpVfzW9L4lsBPZYwf3Na7BMW8NBv
kQ77RvH5eIq11ps+eA7MARbm0c82GNEGSRxZ/IH07mhtEQy6qgGw+dyrkyj12XLp
7Xrc5sgYmUMZO6gGX9iI8sqikQz2VoGHJ/cOVxpD9Et6HaKuoKBbqdZy6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO/Tws29+oOItere2+RmmNkhTm5aMB8GA1UdIwQY
MBaAFCjGgA10vEEFtA536ghboCbb7sNfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8yNDI5MTEtOTNjMC00NWU3LTkwMTIt
NDkzOWJiZmRmYjg2LzEvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC8yNDI5MTEtOTNjMC00NWU3LTkwMTItNDkzOWJiZmRmYjg2
LzEvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWfBhCwlq
ucBvUFuMIrprNBoq/xMO9+TuO6UzbVCgHOwHn56mmVVpPfVmPO3KamKhltP4JbB/
NJoZe8Hac+JA0d9RKJVZJhoaKvuVGLWl8DmuOPnYxttZ13ndYn5glkH0aM9cIOWo
IGjju8ukqGs6/yZVJiIuyp14hZTEG8d1KVR7vklyIU8uZupkl5D76la3C3R806Ri
C6fg4ipK3839HcaL4xBD17RD2nu6BcuSiqMHd66Sn4aO0fIUWThpWvomJDT+yjpP
HYuXY3UU+WWmeXXp85fUv5+7EaZlLL0yk/6QtBkp9xs07FddMFPr3Gd5wQaafhIs
LrQSB07gkinEEQ==
-----END CERTIFICATE-----