Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
File:                     lcGSBnFsXHnTW_FZJNszI6TsGMg.mft (raw, json)
Hash identifier:          Q8BmFmxPUbscrRtg/MBBhilf7GLeehqsLnTTCZcifh8=
Subject key identifier:   E7:A4:6A:8D:BB:9A:AD:A3:29:F0:C7:44:4E:53:04:85:74:41:FD:8D
Authority key identifier: 95:C1:92:06:71:6C:5C:79:D3:5B:F1:59:24:DB:33:23:A4:EC:18:C8
Certificate issuer:       /CN=95c19206716c5c79d35bf15924db3323a4ec18c8
Certificate serial:       018F87ED1F35CB9DC4A50A1BDFFFB9B6E849
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
Manifest number:          0D48
Signing time:             Fri 17 May 2024 19:00:15 +0000
Manifest this update:     Fri 17 May 2024 19:00:15 +0000
Manifest next update:     Sat 18 May 2024 19:00:15 +0000
Files and hashes:         1: lcGSBnFsXHnTW_FZJNszI6TsGMg.crl (hash: wQxgO85IJPtE15RpYOFp793/4qvEG4bNTP8Ov62vwzE=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:ed:1f:35:cb:9d:c4:a5:0a:1b:df:ff:b9:b6:e8:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=95c19206716c5c79d35bf15924db3323a4ec18c8
        Validity
            Not Before: May 17 19:00:15 2024 GMT
            Not After : May 18 19:00:15 2024 GMT
        Subject: CN=e7a46a8dbb9aada329f0c7444e5304857441fd8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:28:0d:1a:12:91:d4:7c:5c:7a:15:b6:c9:eb:
                    bf:ca:3e:f9:0f:1e:66:b2:09:c3:3c:01:0d:97:71:
                    49:56:78:4e:e0:a8:8a:4f:30:00:31:2e:cb:67:6a:
                    96:f4:6e:5d:e9:d5:e1:7e:5b:01:04:05:41:43:56:
                    b8:de:5c:34:4b:c5:19:31:de:e4:08:7e:d9:d8:69:
                    a1:63:81:17:27:64:2d:38:49:c4:0e:f4:3d:fa:0b:
                    22:eb:d4:6e:e9:d0:98:11:e2:d8:52:8b:47:b7:64:
                    cf:8e:a3:a1:b8:ee:aa:1f:49:99:db:90:32:c7:ef:
                    01:5a:f5:f8:97:7e:85:ad:60:4b:30:e9:35:85:f9:
                    40:f8:76:0d:7a:a2:f1:a0:f5:08:1f:c0:55:3f:34:
                    92:e8:56:63:a4:3e:c7:62:bd:fe:40:7d:72:16:78:
                    16:89:5d:ac:b8:98:94:ee:65:68:13:ff:52:64:b8:
                    28:5f:d3:08:b1:91:b2:6d:63:76:97:5e:e5:29:39:
                    2d:a1:c4:3d:25:ba:3d:93:b4:92:b0:1a:df:d8:92:
                    57:f7:0a:df:a8:b2:ca:73:f1:dd:41:ac:da:8a:79:
                    a6:75:8f:a4:69:d0:d6:54:81:68:5b:02:0d:56:6d:
                    97:f0:12:9e:9c:71:73:6f:52:86:eb:ff:b1:ce:72:
                    c8:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:A4:6A:8D:BB:9A:AD:A3:29:F0:C7:44:4E:53:04:85:74:41:FD:8D
            X509v3 Authority Key Identifier:
                keyid:95:C1:92:06:71:6C:5C:79:D3:5B:F1:59:24:DB:33:23:A4:EC:18:C8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lcGSBnFsXHnTW_FZJNszI6TsGMg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3feed9-ce5f-4a22-99b9-a4a9cc471599/1/lcGSBnFsXHnTW_FZJNszI6TsGMg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:fe:95:c8:cd:22:78:ef:17:c9:5b:f9:f8:8b:07:34:1b:72:
         17:31:8f:63:12:3a:1a:46:51:13:db:a4:97:f4:11:92:55:4d:
         77:f4:87:88:74:8c:39:fa:99:d9:47:4f:07:93:82:4b:95:ee:
         54:81:de:2f:d6:d2:13:8e:01:88:0f:dc:0d:19:e3:fc:4f:7e:
         ab:d7:8f:d1:66:f4:04:1d:a4:3b:c8:30:53:7e:25:30:4c:36:
         cd:a2:76:2b:1f:66:c4:7c:08:36:bb:74:7d:40:92:5f:ed:b4:
         12:7d:f3:c1:ec:93:06:d5:9a:e8:ec:e1:0b:ad:c9:3f:a4:bc:
         d2:a5:58:25:07:5b:c7:19:99:dd:cd:c4:cf:b2:56:4b:d7:b8:
         8c:50:d2:eb:90:b7:a6:7a:06:f5:af:6a:19:2a:81:b3:1f:7d:
         6d:af:13:43:6e:c7:fb:d0:de:38:e3:53:94:ee:94:56:e8:94:
         96:80:51:56:06:e5:ba:4d:f8:ea:96:fa:e9:98:79:34:36:8b:
         6d:cf:bb:63:7d:e2:27:76:4f:63:3d:bb:e4:d0:b3:e7:91:ad:
         40:eb:b5:a4:0b:cc:b4:dc:d4:44:5f:1c:5b:e0:01:98:e7:9e:
         5a:9a:69:d0:2b:c8:93:2a:7e:ad:39:8d:1a:d9:db:c3:e5:79:
         8f:f5:84:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----