Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft
File:                     9XGHM6rUPvapm9jZUEog3YkCLo8.mft (raw, json)
Hash identifier:          naO+NdmTZRDXc0ycTXheZ2GXcpK3yqb+DsCD/dNEvRc=
Subject key identifier:   5E:67:88:C7:EE:CC:2C:79:E7:37:B0:E0:A3:B9:A8:2C:52:1E:23:2A
Authority key identifier: F5:71:87:33:AA:D4:3E:F6:A9:9B:D8:D9:50:4A:20:DD:89:02:2E:8F
Certificate issuer:       /CN=f5718733aad43ef6a99bd8d9504a20dd89022e8f
Certificate serial:       018F7EEA27C8B560D495C4F075D935A5090D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft
Manifest number:          0E73
Signing time:             Thu 16 May 2024 01:00:25 +0000
Manifest this update:     Thu 16 May 2024 01:00:25 +0000
Manifest next update:     Fri 17 May 2024 01:00:25 +0000
Files and hashes:         1: 9XGHM6rUPvapm9jZUEog3YkCLo8.crl (hash: 9KHlIR1FdTUV//x8hUU/zC5rrtwrgagR4gOan16OI5A=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 May 2024 01:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:7e:ea:27:c8:b5:60:d4:95:c4:f0:75:d9:35:a5:09:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5718733aad43ef6a99bd8d9504a20dd89022e8f
        Validity
            Not Before: May 16 01:00:25 2024 GMT
            Not After : May 17 01:00:25 2024 GMT
        Subject: CN=5e6788c7eecc2c79e737b0e0a3b9a82c521e232a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:12:14:c6:05:d1:0a:cc:91:79:ab:92:fe:3c:
                    ae:24:39:97:f1:98:bb:9f:d1:b1:76:e2:9c:ca:7c:
                    13:64:88:64:b5:40:79:b7:21:ba:e2:25:83:69:98:
                    9c:db:01:38:0f:61:b7:8d:a6:ef:c1:64:f3:94:d1:
                    02:aa:a9:86:9a:59:3d:6c:34:2f:46:ab:53:e5:1f:
                    7c:c8:33:b4:c0:a4:2e:28:3e:2d:e6:c1:19:7d:f3:
                    be:0f:82:cf:75:8e:73:a1:e6:93:fe:b4:07:f0:b8:
                    87:d4:f9:e8:4b:a5:9f:cc:3a:2e:46:b7:9a:93:1b:
                    b1:4c:84:7d:7a:3a:2d:a4:60:12:ed:d0:67:fc:a1:
                    14:db:af:86:db:24:40:68:d2:ef:6c:fc:cc:ef:23:
                    9f:3b:72:a7:b4:4e:f5:cf:c5:a9:3a:61:d3:c8:e6:
                    58:9c:55:fe:2d:2b:eb:32:05:4b:a7:62:e3:1f:d1:
                    26:7a:0d:8d:b4:44:5f:e3:c0:0b:e1:8f:46:d3:4d:
                    55:8e:ee:a3:bd:89:89:7a:1c:d5:12:0a:53:fe:f6:
                    78:6e:21:c5:c2:e6:2d:b9:b1:16:20:fa:7e:7f:f5:
                    f4:8a:a7:72:6b:c5:22:2e:69:5c:c2:79:d6:81:29:
                    b5:db:b2:93:de:96:15:c0:f3:f2:de:65:3b:c4:8f:
                    e1:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:67:88:C7:EE:CC:2C:79:E7:37:B0:E0:A3:B9:A8:2C:52:1E:23:2A
            X509v3 Authority Key Identifier:
                keyid:F5:71:87:33:AA:D4:3E:F6:A9:9B:D8:D9:50:4A:20:DD:89:02:2E:8F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:32:02:99:49:cd:a1:64:4c:5f:49:65:4f:59:ce:af:f5:3e:
         c3:6f:3b:79:85:c5:51:64:88:90:b1:f5:b7:da:95:a2:e4:3d:
         4b:e6:8f:88:c4:a6:c9:dc:e9:b5:40:5c:6a:37:98:56:4f:34:
         32:0d:88:14:44:3f:a4:19:f5:fb:90:43:a8:1a:18:15:13:c7:
         5d:8e:14:be:94:24:a5:d1:b1:24:89:0d:83:69:37:a7:32:a5:
         43:7c:ca:11:30:f7:0a:1e:6a:8b:6f:ef:a4:67:e9:f3:24:6e:
         7e:ae:84:19:59:9c:46:c5:ed:3a:1c:7d:e8:1c:65:f4:84:de:
         b1:24:5a:88:de:01:16:34:82:d4:9b:33:4b:b0:79:72:c0:51:
         a8:18:2c:96:1b:90:92:8c:ae:5f:57:31:a8:e5:66:11:08:36:
         e3:3a:c0:c3:7a:df:66:bf:6a:3d:dd:3c:0a:72:a8:60:ae:d1:
         3c:7e:3e:ea:04:73:5c:55:3d:71:c4:c9:c4:7b:4c:c6:c3:1c:
         8c:ca:d9:27:f9:08:45:a5:a3:fd:ff:00:d7:c7:89:99:43:81:
         b2:fc:e9:8e:05:09:9c:62:04:e8:5f:50:36:c4:03:8c:96:4a:
         f6:3a:bc:ef:e6:26:90:31:40:5a:97:d9:ee:d1:ba:88:07:4a:
         f5:54:b7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----