Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/737703-c8c1-4682-bb02-d800bdd686e3/1/KY2bT7TP4nih65-iA1oInEwlaFg.mft
File:                     KY2bT7TP4nih65-iA1oInEwlaFg.mft (raw, json)
Hash identifier:          3ykg2me3vOTtb3PR4suB5BoibNYjOSnnlDJr+5QACNI=
Subject key identifier:   14:E7:ED:F6:93:43:57:67:0D:56:14:53:68:49:22:1C:44:E9:FA:04
Authority key identifier: 29:8D:9B:4F:B4:CF:E2:78:A1:EB:9F:A2:03:5A:08:9C:4C:25:68:58
Certificate issuer:       /CN=298d9b4fb4cfe278a1eb9fa2035a089c4c256858
Certificate serial:       018F8892763B061C01D94057DBCC24D0C691
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KY2bT7TP4nih65-iA1oInEwlaFg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/737703-c8c1-4682-bb02-d800bdd686e3/1/KY2bT7TP4nih65-iA1oInEwlaFg.mft
Manifest number:          06FE
Signing time:             Fri 17 May 2024 22:00:50 +0000
Manifest this update:     Fri 17 May 2024 22:00:50 +0000
Manifest next update:     Sat 18 May 2024 22:00:50 +0000
Files and hashes:         1: KY2bT7TP4nih65-iA1oInEwlaFg.crl (hash: iF8edSoy8/H/BkVmd0HDu3HR/SvFhpVogZSxxsH/OCQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/737703-c8c1-4682-bb02-d800bdd686e3/1/KY2bT7TP4nih65-iA1oInEwlaFg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/737703-c8c1-4682-bb02-d800bdd686e3/1/KY2bT7TP4nih65-iA1oInEwlaFg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KY2bT7TP4nih65-iA1oInEwlaFg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:92:76:3b:06:1c:01:d9:40:57:db:cc:24:d0:c6:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=298d9b4fb4cfe278a1eb9fa2035a089c4c256858
        Validity
            Not Before: May 17 22:00:50 2024 GMT
            Not After : May 18 22:00:50 2024 GMT
        Subject: CN=14e7edf6934357670d5614536849221c44e9fa04
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:e5:b0:19:3b:dd:86:4b:d7:5c:ee:02:ce:00:
                    16:6c:5f:6c:58:fd:ea:05:6d:17:b7:13:07:e9:16:
                    d2:70:eb:65:dd:61:6d:47:a6:29:c5:5f:30:da:08:
                    74:84:82:49:52:a0:1a:26:d5:58:cd:dc:04:d4:88:
                    40:46:3a:99:ce:29:e4:ab:9d:19:36:5d:27:35:79:
                    74:ab:3b:f7:39:a3:88:cc:ef:1b:71:1c:69:4d:72:
                    2d:68:55:5b:c5:d8:b6:37:9e:49:c3:1a:4e:5b:51:
                    ec:12:71:48:bf:c2:c5:ee:d8:1e:70:7a:d8:89:50:
                    0f:67:35:bb:93:43:8c:1e:af:3d:d6:0c:48:5d:3a:
                    54:96:6a:04:6b:c9:e4:a4:d3:03:d3:e6:08:05:5b:
                    c9:71:65:f0:00:5f:3c:a4:66:a7:56:6b:7c:ba:08:
                    49:a5:72:b5:6e:6d:ab:57:dc:41:1f:48:55:a6:f8:
                    51:dd:fe:7d:89:18:2e:ef:f5:80:3c:25:47:88:58:
                    06:25:ec:ee:af:ce:9d:8c:16:14:dd:32:85:be:74:
                    2d:db:0f:1e:19:05:91:01:be:83:3a:a7:f4:1c:84:
                    6f:7f:92:a7:b2:25:87:e2:f1:d2:ed:43:8c:34:a1:
                    20:4f:df:b1:8e:d1:c3:79:6d:d6:3b:be:79:91:ef:
                    b5:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:E7:ED:F6:93:43:57:67:0D:56:14:53:68:49:22:1C:44:E9:FA:04
            X509v3 Authority Key Identifier:
                keyid:29:8D:9B:4F:B4:CF:E2:78:A1:EB:9F:A2:03:5A:08:9C:4C:25:68:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KY2bT7TP4nih65-iA1oInEwlaFg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/737703-c8c1-4682-bb02-d800bdd686e3/1/KY2bT7TP4nih65-iA1oInEwlaFg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/737703-c8c1-4682-bb02-d800bdd686e3/1/KY2bT7TP4nih65-iA1oInEwlaFg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:4f:ae:37:59:3b:be:39:e1:69:73:e4:99:08:8b:14:37:82:
         6d:e9:62:b8:96:ea:d0:9e:a5:c5:1e:e7:45:cf:88:fd:b1:1b:
         66:e2:ba:20:8a:02:98:c9:a6:2b:ee:1c:13:eb:68:58:eb:7d:
         6a:4b:55:c5:b9:91:0b:51:7e:41:49:65:68:9b:74:34:62:da:
         d8:fb:a4:2b:04:fb:57:3e:a2:24:ae:ed:9e:31:0b:ca:82:9c:
         9e:dd:f7:40:e7:9f:71:b1:41:02:0a:ff:b1:27:b3:2c:d3:5d:
         22:b4:86:ab:e5:03:2a:98:c1:60:b9:ff:67:21:f6:81:18:91:
         d4:30:af:67:23:31:64:fc:79:ee:5b:92:04:cf:7e:ef:46:16:
         17:5a:01:30:bf:c1:43:d7:c7:39:6b:29:fe:e4:df:f8:cd:1b:
         26:b2:f8:bd:c2:0c:3a:1d:1c:ff:cc:82:c7:75:5e:33:0d:f3:
         f0:dd:34:96:e7:28:38:e5:59:6f:b3:d1:c9:6d:4a:89:32:a2:
         d3:dc:f4:97:4e:42:de:00:d5:a5:65:30:b2:b2:e5:2c:c0:e6:
         8c:96:f4:93:06:df:f8:fe:ee:2b:54:54:f8:11:b9:44:70:8b:
         a9:8a:67:86:e5:c1:c4:a0:93:70:31:2a:be:7f:1f:06:13:a7:
         1f:c2:8e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----