Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
File:                     0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft (raw, json)
Hash identifier:          hk+fyYJfU88scsbg1zkhZF7QD+ODPCv6HXhhcq17PVQ=
Subject key identifier:   DA:62:00:9D:4A:81:5E:67:B5:CA:D6:15:C5:AA:B8:25:FB:5F:73:CB
Authority key identifier: D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0
Certificate issuer:       /CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
Certificate serial:       018F215C630882E1EE91E7A23133F37345AF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
Manifest number:          07ED
Signing time:             Sat 27 Apr 2024 21:00:53 +0000
Manifest this update:     Sat 27 Apr 2024 21:00:53 +0000
Manifest next update:     Sun 28 Apr 2024 21:00:53 +0000
Files and hashes:         1: 0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl (hash: krMVXg1g2iPfyWevu4/MjJ1mCTsXtKECyLAWITLI5Jo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 28 Apr 2024 15:42:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:21:5c:63:08:82:e1:ee:91:e7:a2:31:33:f3:73:45:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
        Validity
            Not Before: Apr 27 21:00:53 2024 GMT
            Not After : Apr 28 21:00:53 2024 GMT
        Subject: CN=da62009d4a815e67b5cad615c5aab825fb5f73cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:21:e4:a9:98:bb:c4:df:34:f2:66:75:b3:47:
                    92:66:a0:de:1f:d2:f2:cd:26:15:31:4c:35:2f:3b:
                    78:33:0c:1b:77:da:85:55:a1:8f:52:5f:29:d4:d5:
                    54:c9:87:bc:e1:cc:cc:b1:4c:76:e5:91:0f:01:56:
                    03:9d:ce:96:fb:ec:24:6e:7e:de:e3:4f:0f:fa:f3:
                    21:cc:f6:f5:2d:72:52:0a:c8:8e:eb:5e:e2:9a:7f:
                    23:46:a9:d6:6d:c7:fc:86:f7:17:65:21:2e:1a:f7:
                    b5:ad:59:6a:56:5c:ce:c5:6d:a7:c2:d4:cf:25:96:
                    82:60:68:09:42:9e:81:bc:87:c9:9b:49:67:e6:1f:
                    62:b1:ec:52:b5:13:31:f7:cc:92:c0:34:42:8d:30:
                    61:b9:5d:a1:ad:c8:fc:e6:28:d3:07:65:ef:bb:ac:
                    ab:cc:d0:21:33:77:f4:12:89:b9:5d:c9:cf:23:d9:
                    cc:05:e2:ae:31:7c:1c:27:69:1e:f7:35:25:07:22:
                    54:00:ce:7b:71:35:07:7d:89:d3:3a:0b:3b:2a:75:
                    ed:0b:f7:6f:2b:38:c5:c1:ae:42:c3:62:c4:40:c0:
                    17:c9:18:ce:f9:23:fd:ea:bf:ec:11:c0:48:c5:63:
                    c6:f1:37:e7:24:82:14:9a:ce:cf:72:5d:3d:03:19:
                    b1:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:62:00:9D:4A:81:5E:67:B5:CA:D6:15:C5:AA:B8:25:FB:5F:73:CB
            X509v3 Authority Key Identifier:
                keyid:D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:68:cb:f9:79:f4:5b:a3:5c:b5:8b:c3:be:54:4b:6d:4f:67:
         37:61:7b:61:f9:2a:d2:16:3c:75:b1:a5:66:00:d9:81:26:de:
         45:8c:8a:f7:a5:63:9e:61:e8:96:8f:c5:e1:67:94:f9:4f:49:
         21:58:da:63:f7:fe:70:9a:6a:9a:cd:c9:00:10:88:59:17:b1:
         b3:22:da:94:ab:d2:b6:7a:04:d4:27:6f:67:47:d5:44:bb:b1:
         59:4a:10:22:d1:8c:29:2a:d7:fb:33:5b:bd:75:97:5f:63:21:
         c1:db:25:14:99:8f:b4:42:f8:a5:b0:93:80:bc:c0:f3:51:3f:
         55:af:a1:49:a9:35:f0:af:73:aa:4c:07:5a:25:0d:4e:8b:c0:
         e4:23:d0:aa:23:f7:87:15:65:0b:b0:38:f2:58:01:46:51:83:
         3e:61:8b:b5:72:df:ea:78:32:7e:71:e3:e7:3e:b6:fe:64:03:
         01:7b:e5:cb:09:b0:95:f4:ba:b9:f0:56:27:92:ee:c0:1d:71:
         e3:fa:9b:2b:6c:32:67:fe:b0:32:89:c8:5c:5b:75:fa:af:52:
         7f:d4:60:b5:4e:99:b9:df:f7:2c:d6:f1:c9:ec:ad:83:06:64:
         48:b8:fa:67:87:b4:c4:da:fa:ad:a1:4f:9e:d8:a1:2f:a0:09:
         0c:65:95:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----