Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/2d52ae-3928-449e-86eb-66f053f6a4f8/1/pCqe9isMK_HTQWU5sqBKJlmMLEM.mft
File:                     pCqe9isMK_HTQWU5sqBKJlmMLEM.mft (raw, json)
Hash identifier:          s7lvXLPMqKnQFDK7aOQ70bPmTuFDoRsh3MDNMNtqeXs=
Subject key identifier:   4A:D7:A0:45:2D:B2:3B:5C:6D:26:A1:21:64:8B:8B:0B:F3:87:4F:40
Authority key identifier: A4:2A:9E:F6:2B:0C:2B:F1:D3:41:65:39:B2:A0:4A:26:59:8C:2C:43
Certificate issuer:       /CN=a42a9ef62b0c2bf1d3416539b2a04a26598c2c43
Certificate serial:       019369D937C67C2F471DEE0793CA76B0236C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pCqe9isMK_HTQWU5sqBKJlmMLEM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/2d52ae-3928-449e-86eb-66f053f6a4f8/1/pCqe9isMK_HTQWU5sqBKJlmMLEM.mft
Manifest number:          1379
Signing time:             Tue 26 Nov 2024 19:01:03 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:03 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:03 +0000
Files and hashes:         1: pCqe9isMK_HTQWU5sqBKJlmMLEM.crl (hash: MCdHbM3WXnvqIIQNSY8WCfKtGdeWkfUAS4HhByCsmbk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/2d52ae-3928-449e-86eb-66f053f6a4f8/1/pCqe9isMK_HTQWU5sqBKJlmMLEM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/2d52ae-3928-449e-86eb-66f053f6a4f8/1/pCqe9isMK_HTQWU5sqBKJlmMLEM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pCqe9isMK_HTQWU5sqBKJlmMLEM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:d9:37:c6:7c:2f:47:1d:ee:07:93:ca:76:b0:23:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a42a9ef62b0c2bf1d3416539b2a04a26598c2c43
        Validity
            Not Before: Nov 26 19:01:03 2024 GMT
            Not After : Nov 27 19:01:03 2024 GMT
        Subject: CN=4ad7a0452db23b5c6d26a121648b8b0bf3874f40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:5a:77:b3:b8:7f:b7:55:b7:72:70:2d:57:16:
                    5a:6f:2c:d8:00:65:20:a1:cd:2d:f4:e1:57:9a:1a:
                    9b:00:ee:ca:a4:d5:18:38:2b:92:1a:7a:52:65:0f:
                    b9:cd:e8:03:86:a0:f6:d8:0f:5c:b7:0c:a7:3b:b5:
                    84:86:45:70:3c:04:d9:c8:fb:a8:a1:6a:b4:1d:d7:
                    fe:f2:79:c4:6e:e9:85:3d:f3:9c:fb:b5:12:a2:c4:
                    b8:b6:03:83:d5:7a:c2:81:e5:1f:2a:63:ae:eb:fa:
                    7a:f5:77:82:6c:38:30:9f:bf:7e:3a:27:0b:95:65:
                    dd:05:8c:ae:45:bf:04:d3:3c:60:86:08:a4:2e:59:
                    9e:bb:e5:64:b8:21:f5:e0:06:cc:09:66:43:2e:80:
                    46:f0:0c:53:1b:cc:0b:4a:96:8d:5e:5f:18:8c:d4:
                    43:ea:4a:e8:1a:3a:0e:03:54:e8:ac:cf:ae:a7:52:
                    fb:f9:2a:b3:e2:01:ac:1c:64:30:8f:00:0d:de:dc:
                    92:c4:84:9f:f8:d3:92:9a:1b:50:ce:14:4b:ad:17:
                    8e:e8:b8:16:74:92:31:26:45:25:93:43:69:fb:e2:
                    e1:83:c5:02:fb:56:4f:6c:97:61:c1:49:84:da:ad:
                    be:00:82:a6:ba:4a:f5:ed:49:4f:44:7e:de:09:9c:
                    a9:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:D7:A0:45:2D:B2:3B:5C:6D:26:A1:21:64:8B:8B:0B:F3:87:4F:40
            X509v3 Authority Key Identifier:
                keyid:A4:2A:9E:F6:2B:0C:2B:F1:D3:41:65:39:B2:A0:4A:26:59:8C:2C:43

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCqe9isMK_HTQWU5sqBKJlmMLEM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/2d52ae-3928-449e-86eb-66f053f6a4f8/1/pCqe9isMK_HTQWU5sqBKJlmMLEM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/2d52ae-3928-449e-86eb-66f053f6a4f8/1/pCqe9isMK_HTQWU5sqBKJlmMLEM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cb:84:9c:69:c6:8d:67:60:79:76:b7:e2:39:59:a8:eb:af:54:
         a9:d5:e1:1c:e8:f8:02:01:ba:d5:c9:8f:0c:16:2a:55:13:e7:
         9c:9b:e6:fb:69:e1:95:63:27:5d:d8:6a:2b:17:bb:8c:d5:e6:
         1a:31:33:eb:e6:02:9a:af:78:aa:90:13:1c:f0:94:39:6f:b8:
         e2:6d:bc:cb:b1:96:00:ef:61:97:87:37:9b:50:ef:fd:55:88:
         6c:5b:c8:3e:24:04:38:60:5b:1c:74:a9:ee:3c:8e:51:7c:b1:
         0b:6a:b0:c6:40:9a:39:07:10:bd:b4:cd:93:9b:d4:2a:0e:ad:
         a7:81:cc:f7:16:6e:66:da:15:a5:01:a5:6b:97:a2:3c:fd:fe:
         5c:7b:b6:a2:e1:c5:ff:0f:5e:1a:db:dc:66:50:4b:b1:b8:e9:
         d4:aa:5f:b2:f8:3a:80:48:91:2e:9c:df:fe:68:63:c0:d6:53:
         c9:4d:30:d0:23:a9:47:41:60:1c:46:0d:46:fb:05:39:08:42:
         94:00:7a:d6:8f:c8:1f:3c:cc:b3:d3:64:ed:b1:1d:14:ea:85:
         56:eb:ea:89:ee:25:9e:11:ed:fb:ac:40:3a:f5:bd:42:cb:36:
         5a:18:02:07:a0:b0:ea:af:0f:7c:ab:d3:ab:67:07:a0:39:cd:
         0d:b6:3b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:31:32 2024 by rpki-client on console-ams.rpki-client.org