Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
File:                     0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft (raw, json)
Hash identifier:          zGQ21Dsmn5VebBYWto3zWT+RRMU2E85KeE8k4Qp16WI=
Subject key identifier:   DC:DD:92:2F:2C:CC:B0:A2:3A:6B:34:1E:25:1B:DE:C8:00:6D:A8:79
Authority key identifier: D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66
Certificate issuer:       /CN=d2261dee6d54dd536ef700f2d9d8197c86093966
Certificate serial:       018F45A0162DB1B439CE5813CF73ABCB3161
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
Manifest number:          10E5
Signing time:             Sat 04 May 2024 22:01:10 +0000
Manifest this update:     Sat 04 May 2024 22:01:10 +0000
Manifest next update:     Sun 05 May 2024 22:01:10 +0000
Files and hashes:         1: 0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl (hash: 6p9izIQqCM7/SLu1sUiGSIZxWg5ph5GwOV9vvMCACZA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 05 May 2024 20:58:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:45:a0:16:2d:b1:b4:39:ce:58:13:cf:73:ab:cb:31:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2261dee6d54dd536ef700f2d9d8197c86093966
        Validity
            Not Before: May  4 22:01:10 2024 GMT
            Not After : May  5 22:01:10 2024 GMT
        Subject: CN=dcdd922f2cccb0a23a6b341e251bdec8006da879
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:c1:de:6a:9f:41:f5:e5:93:67:85:db:ee:a1:
                    66:f3:2c:54:c1:20:be:fe:c5:be:d5:3a:99:44:65:
                    b8:b8:de:8d:6e:ea:7c:5e:91:2a:b9:39:72:60:08:
                    b5:42:c3:2d:6f:ec:3c:ab:c1:72:bd:09:f6:bc:83:
                    70:e4:86:97:ce:00:3a:e9:86:4c:ef:60:e5:4f:1d:
                    68:25:dc:50:0a:20:c4:ce:cf:5d:6d:2c:82:95:a2:
                    48:26:66:78:ed:1d:cd:50:33:64:4d:00:a0:9a:4e:
                    70:b1:41:a2:99:e5:4f:d0:f7:aa:19:41:f7:ab:e2:
                    f8:12:ce:f8:54:2d:7f:3f:bb:66:7e:02:ee:3e:06:
                    ba:83:df:87:10:36:e8:0d:a7:44:7e:81:ab:e2:df:
                    b3:fd:de:ba:d1:7b:7f:4a:df:e6:22:a0:1f:80:a2:
                    05:1a:4f:f5:e6:32:a2:d7:11:35:76:68:91:b3:e0:
                    14:b3:bb:f7:e4:54:48:c4:1c:bd:4c:bd:a0:3c:92:
                    eb:24:ad:87:7b:94:79:8b:7f:9b:21:7b:9d:86:97:
                    8b:92:aa:24:11:4e:e1:28:51:5f:f3:cc:99:86:7d:
                    6a:e4:4b:23:f1:a2:ba:8d:80:87:45:9d:96:35:1e:
                    cb:8a:8c:f8:db:0f:0e:78:14:43:3c:a0:64:38:8e:
                    31:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:DD:92:2F:2C:CC:B0:A2:3A:6B:34:1E:25:1B:DE:C8:00:6D:A8:79
            X509v3 Authority Key Identifier:
                keyid:D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:29:c5:bc:fd:12:67:69:4a:b0:5e:4e:00:62:24:f6:73:3a:
         de:5c:a0:45:0f:99:b8:f5:21:24:39:e5:dc:86:0e:c4:51:5a:
         bb:68:e3:54:e6:22:05:d4:75:32:19:e3:05:3f:df:ba:e0:42:
         a3:15:1a:21:82:43:94:d6:4f:f0:77:56:b4:01:72:61:26:28:
         75:8e:f6:11:ed:54:14:3d:dd:3f:10:67:98:77:cc:a7:25:ff:
         0c:0c:7a:fa:f6:38:76:36:92:e9:5f:9f:f1:dd:4b:22:9c:59:
         28:cf:19:a3:78:3f:7a:8a:20:e7:13:d1:5c:bb:18:21:e8:c6:
         98:79:4b:2a:51:ae:72:5f:a8:e3:81:bf:04:49:9e:09:08:98:
         cd:eb:4e:7d:c2:61:6e:b7:82:81:da:6e:cb:cf:6c:26:af:df:
         05:69:ed:d3:55:6b:18:9d:f1:5f:4f:b5:b3:dc:c4:ca:03:14:
         08:b8:c1:57:2c:fb:e6:7d:cb:25:9c:57:41:21:5c:ee:13:24:
         71:29:be:4e:24:8a:fb:a9:01:39:d1:15:db:f9:da:92:70:d4:
         e8:9d:8b:75:96:b3:42:bf:05:ac:3b:d8:3f:1c:e7:81:ab:7a:
         76:fd:06:32:8d:80:40:01:fc:b5:be:c0:32:f8:e7:c8:2b:fb:
         bf:25:f7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----