Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
File:                     79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json)
Hash identifier:          YhWfKU1FmolC1Bbe2sCY7uVspI0ZGcEls7x4B+dwD6E=
Subject key identifier:   68:DF:1A:A6:0F:4F:0C:FD:F3:4B:F7:68:67:1F:89:C7:1C:D5:93:41
Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A
Certificate issuer:       /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
Certificate serial:       018F885B3F39ACBF88C70CD3459B1B639C4F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
Manifest number:          0150
Signing time:             Fri 17 May 2024 21:00:32 +0000
Manifest this update:     Fri 17 May 2024 21:00:32 +0000
Manifest next update:     Sat 18 May 2024 21:00:32 +0000
Files and hashes:         1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: tPV5JUkCjewZVOUmPti6YwDXfgREQclWvS0nqLU/SAA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:5b:3f:39:ac:bf:88:c7:0c:d3:45:9b:1b:63:9c:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
        Validity
            Not Before: May 17 21:00:32 2024 GMT
            Not After : May 18 21:00:32 2024 GMT
        Subject: CN=68df1aa60f4f0cfdf34bf768671f89c71cd59341
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:a8:c9:b3:c6:a1:b9:cd:06:90:83:7d:d3:ba:
                    cd:98:c6:0e:9d:82:bd:6c:8e:52:e8:51:6d:ff:e1:
                    1b:2c:44:51:a9:04:6f:1b:3b:25:f2:8c:78:0c:5c:
                    c0:cf:da:a2:7f:c0:fc:f1:46:9b:89:a9:c9:e9:d8:
                    bb:95:09:d2:3f:7d:67:b7:d7:3d:a6:52:14:8f:62:
                    95:c5:73:9e:9b:cc:f1:70:21:bf:00:de:ba:ff:de:
                    81:07:db:0a:1d:af:f3:c8:39:6b:7c:d2:7c:2b:8e:
                    b3:57:65:3c:6c:a5:cc:a3:14:ea:1f:07:07:bc:cb:
                    af:70:61:d1:f9:cf:10:41:f6:3d:c4:59:78:51:0f:
                    b5:0d:0d:95:08:a4:7f:71:81:b8:ae:bb:7e:a7:84:
                    e2:df:04:74:b4:59:0e:12:54:44:2f:78:88:34:05:
                    d6:42:96:11:32:15:35:48:47:e7:a8:47:b6:85:2b:
                    37:1d:2e:e6:02:99:91:55:85:08:ca:a2:fc:3a:b7:
                    94:10:e8:e9:66:22:23:d1:91:c6:45:f6:9f:1c:21:
                    bf:fe:54:93:d0:75:52:08:5f:d5:c4:df:c8:71:70:
                    41:05:9e:18:7f:35:2f:63:c3:b7:7a:9c:ce:33:b7:
                    a3:de:11:fd:0d:1a:94:5e:ac:55:26:7e:74:53:f9:
                    13:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:DF:1A:A6:0F:4F:0C:FD:F3:4B:F7:68:67:1F:89:C7:1C:D5:93:41
            X509v3 Authority Key Identifier:
                keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:50:82:be:14:a1:d5:1c:ec:c1:b7:f4:4f:05:94:e7:18:8f:
         16:b7:d9:4a:71:34:19:8a:6e:71:dd:69:fb:83:fa:ea:08:7d:
         f1:72:29:40:23:6a:5f:67:b3:e3:05:fa:6f:30:a8:14:c6:09:
         76:58:04:33:93:00:9e:65:5f:01:a6:a4:ad:cc:2c:de:0a:86:
         a7:41:17:c6:65:49:74:2c:da:ae:c3:97:f4:41:b6:d9:72:f7:
         ee:2b:3a:4e:15:d7:c1:dc:2b:56:41:42:79:49:7b:d5:2f:b2:
         30:e5:8b:61:ca:c5:df:00:3e:39:0d:63:72:ef:e7:f9:98:fb:
         0d:eb:67:28:d5:fd:5d:1f:ff:3e:83:b2:ca:c5:c1:7f:3b:0a:
         85:9a:6b:60:96:93:e9:3f:10:4d:47:0f:7f:bf:d7:e0:58:77:
         d1:b6:89:62:8b:75:8e:d4:18:b7:91:7d:f6:53:2f:1a:69:0d:
         2b:92:05:5e:31:a3:40:76:aa:6f:4f:ab:fc:2a:28:85:af:71:
         d0:43:9c:49:d4:b0:c1:4b:2f:19:c6:31:a1:cc:d0:3f:b7:b8:
         51:a0:cb:ab:c7:19:ca:62:4d:01:69:90:d0:67:05:6f:d5:3b:
         2b:00:24:92:d3:af:cf:01:bb:39:64:5d:32:c7:2b:7c:d8:c7:
         d1:8e:27:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----