Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
File:                     yPGA3UiWddR5NSX-5s__Rpcv8zw.mft (raw, json)
Hash identifier:          CVlTm3s8mhgULZ3p2VRC1WLRf+vTCYxr8ud6UOucUrw=
Subject key identifier:   DC:A6:25:44:15:03:67:13:A0:79:F3:1B:80:5E:B5:0E:41:57:86:05
Authority key identifier: C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C
Certificate issuer:       /CN=c8f180dd489675d4793525fee6cfff46972ff33c
Certificate serial:       018F8D81D133F1C3A42678A52490FC3B1531
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
Manifest number:          1178
Signing time:             Sat 18 May 2024 21:00:46 +0000
Manifest this update:     Sat 18 May 2024 21:00:46 +0000
Manifest next update:     Sun 19 May 2024 21:00:46 +0000
Files and hashes:         1: yPGA3UiWddR5NSX-5s__Rpcv8zw.crl (hash: LgPDrGdvDAAJCkehm3se8lLjXc7tLWoE4DDVKyQyn1g=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 19 May 2024 20:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:8d:81:d1:33:f1:c3:a4:26:78:a5:24:90:fc:3b:15:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8f180dd489675d4793525fee6cfff46972ff33c
        Validity
            Not Before: May 18 21:00:46 2024 GMT
            Not After : May 19 21:00:46 2024 GMT
        Subject: CN=dca6254415036713a079f31b805eb50e41578605
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:d9:c1:91:4d:53:91:e1:86:9c:ab:32:03:03:
                    4f:0f:1c:df:eb:f8:79:58:58:48:24:d7:95:00:7f:
                    9e:89:62:83:bd:ae:7b:c2:65:af:82:83:ff:ab:b2:
                    61:d7:a9:f2:18:7a:0c:ac:7f:22:df:69:13:18:c8:
                    aa:3f:ea:46:d6:31:c2:15:22:1d:3d:90:89:e0:37:
                    c3:c0:1e:fd:98:53:e3:26:e8:c4:9a:37:de:a4:9b:
                    85:4f:7e:d0:39:0d:85:0e:9d:91:fa:bc:8f:df:8a:
                    00:6d:9c:2c:c1:fc:4c:e1:e9:6a:75:f0:a3:d8:cf:
                    7f:a6:2c:29:79:18:39:6d:a5:2f:53:9d:35:8f:bc:
                    2b:93:69:20:8c:98:85:0e:75:b2:bc:7f:19:b8:bd:
                    34:28:bb:42:f8:c9:9c:73:e8:58:78:8c:9e:06:f7:
                    93:22:a8:54:8b:ea:c2:6b:42:8d:da:8c:87:23:c6:
                    39:55:0d:69:ac:72:06:f6:fe:7f:3c:14:22:08:21:
                    e4:cf:b7:b4:de:ac:10:9e:25:75:3f:8d:f0:82:ce:
                    a2:a6:04:dd:fa:a8:75:13:2c:08:9d:61:22:ce:5d:
                    e0:53:8f:6d:d3:d2:01:40:41:4f:af:b8:f8:15:dd:
                    ec:7d:d2:56:60:86:6e:d8:be:dd:20:49:1f:79:2d:
                    61:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:A6:25:44:15:03:67:13:A0:79:F3:1B:80:5E:B5:0E:41:57:86:05
            X509v3 Authority Key Identifier:
                keyid:C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:b4:8f:d3:1f:32:12:a3:23:c7:28:df:ec:76:8a:13:65:93:
         83:12:0b:7f:1f:07:e4:41:60:d7:c0:11:0c:cc:73:22:1a:1e:
         dd:b2:a0:1e:5e:9e:e8:86:e0:2d:7c:c5:46:04:a6:ea:4a:b3:
         3c:8c:f3:8d:79:6d:36:19:1c:c8:71:6b:ef:f1:bd:c3:af:f0:
         3a:58:bf:ac:0f:06:4c:57:91:60:1d:96:b6:a8:5c:c4:5d:94:
         75:bd:44:26:d1:f3:fc:5c:7b:f2:06:57:c2:53:eb:33:5d:0e:
         08:af:fb:7c:e4:f4:20:2e:f5:5d:4f:7b:71:52:e6:0b:5e:1b:
         0c:8b:34:28:74:4b:44:41:f1:11:c3:72:7b:e7:3a:60:05:8a:
         a5:49:99:b1:68:e0:0d:45:ee:f9:bb:6f:34:26:92:a7:1c:6c:
         b2:dc:39:95:9c:6b:7f:20:bc:12:d7:b3:bb:0a:a4:18:90:14:
         a2:57:df:26:20:9f:1f:a8:17:f8:7d:d3:9f:6c:25:b1:2e:17:
         97:49:3c:1d:4f:30:ba:ed:78:20:03:31:f6:42:ba:d1:f9:c6:
         e1:ea:80:1f:99:00:7f:3f:6c:2d:71:ba:86:3c:1b:a6:7a:12:
         c8:d1:11:a1:d5:de:85:bc:49:27:27:59:93:65:a7:a4:a5:0a:
         5b:38:21:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----