Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/074aad-c947-4311-aff1-ae92b6ae1bfe/1/KAYV5gBqhh9mz3MH0w_JNQx2994.mft
File:                     KAYV5gBqhh9mz3MH0w_JNQx2994.mft (raw, json)
Hash identifier:          cjQE6t9nJR5+D4ud2CBux+DPtNDkYPeo7M47sgSULHA=
Subject key identifier:   0E:F1:84:E0:C7:27:C8:A6:57:80:96:D4:21:0E:78:9F:EC:D0:B4:77
Authority key identifier: 28:06:15:E6:00:6A:86:1F:66:CF:73:07:D3:0F:C9:35:0C:76:F7:DE
Certificate issuer:       /CN=280615e6006a861f66cf7307d30fc9350c76f7de
Certificate serial:       018F87B6901F49AC93F033EE4B8B40DC530C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KAYV5gBqhh9mz3MH0w_JNQx2994.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/074aad-c947-4311-aff1-ae92b6ae1bfe/1/KAYV5gBqhh9mz3MH0w_JNQx2994.mft
Manifest number:          1175
Signing time:             Fri 17 May 2024 18:00:39 +0000
Manifest this update:     Fri 17 May 2024 18:00:39 +0000
Manifest next update:     Sat 18 May 2024 18:00:39 +0000
Files and hashes:         1: KAYV5gBqhh9mz3MH0w_JNQx2994.crl (hash: NCzQ0vJwJWVrwfPF9+YCM19Qqef2R4rw8LldNRSidlU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/074aad-c947-4311-aff1-ae92b6ae1bfe/1/KAYV5gBqhh9mz3MH0w_JNQx2994.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/074aad-c947-4311-aff1-ae92b6ae1bfe/1/KAYV5gBqhh9mz3MH0w_JNQx2994.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KAYV5gBqhh9mz3MH0w_JNQx2994.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:b6:90:1f:49:ac:93:f0:33:ee:4b:8b:40:dc:53:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=280615e6006a861f66cf7307d30fc9350c76f7de
        Validity
            Not Before: May 17 18:00:39 2024 GMT
            Not After : May 18 18:00:39 2024 GMT
        Subject: CN=0ef184e0c727c8a6578096d4210e789fecd0b477
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:dd:1e:ba:f5:6c:75:dd:77:72:d4:74:c8:20:
                    b5:c1:36:1c:9b:54:92:56:f9:47:8f:d7:61:da:9e:
                    cc:79:c8:05:e8:32:d2:29:3e:fe:01:84:97:91:08:
                    4c:0b:e7:f9:d3:f7:3a:f3:ff:76:fd:d6:5d:aa:68:
                    30:68:03:5c:48:d2:71:4d:d3:36:11:3b:ef:1f:41:
                    fa:5e:bf:8c:33:38:5b:cc:2b:5e:8b:ed:57:fd:ad:
                    38:ec:df:76:9e:c9:74:5b:7c:aa:52:bd:af:9a:a7:
                    43:e6:ff:01:38:23:5d:73:65:4a:cd:af:ba:54:17:
                    c0:f9:8a:7e:c0:79:cb:3f:93:e9:2c:58:3e:36:bc:
                    a5:ed:5b:d2:26:d1:f6:40:61:96:b9:42:23:77:ce:
                    2e:30:e3:78:70:49:f7:76:1f:14:fe:ac:0c:d8:ba:
                    19:cd:2b:67:a0:bc:3c:2c:87:ae:72:f0:7e:46:de:
                    e1:a5:2b:90:12:e8:1c:9b:59:99:26:be:f1:36:00:
                    e2:59:3a:b9:1f:e0:a9:98:85:c2:21:0a:e7:41:73:
                    eb:3c:e3:43:e7:78:3e:62:bf:a2:a2:aa:1d:28:22:
                    f9:a7:e9:89:bb:67:de:c7:75:c7:1a:7f:f8:6b:39:
                    e1:33:87:41:07:34:df:db:fd:56:23:37:4b:db:73:
                    5f:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:F1:84:E0:C7:27:C8:A6:57:80:96:D4:21:0E:78:9F:EC:D0:B4:77
            X509v3 Authority Key Identifier:
                keyid:28:06:15:E6:00:6A:86:1F:66:CF:73:07:D3:0F:C9:35:0C:76:F7:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAYV5gBqhh9mz3MH0w_JNQx2994.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/074aad-c947-4311-aff1-ae92b6ae1bfe/1/KAYV5gBqhh9mz3MH0w_JNQx2994.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/074aad-c947-4311-aff1-ae92b6ae1bfe/1/KAYV5gBqhh9mz3MH0w_JNQx2994.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:9c:eb:d0:07:9e:7a:0a:fc:57:fd:68:b4:fc:08:b8:d2:d5:
         4c:9c:cf:d0:8d:ed:59:57:51:15:8e:03:db:6f:26:e8:ff:b1:
         01:0a:e5:a3:a2:ef:9a:3a:8d:90:b4:d8:ec:be:43:5e:96:9d:
         0b:5f:27:93:a0:a3:bc:4d:fd:4d:38:7f:d2:1e:aa:ff:b6:7d:
         11:20:af:ee:60:30:64:39:f7:8b:72:03:75:16:da:eb:55:2c:
         8c:14:2e:f4:77:65:1b:cd:fc:4c:96:7b:ff:4b:6f:9e:a9:ce:
         38:e8:7d:b8:c0:d6:e2:39:05:6e:36:ed:9d:3b:6a:c8:40:a2:
         84:a1:e6:9f:62:9e:b1:fd:4b:bc:34:26:ef:90:46:d4:b2:d5:
         0f:4e:ff:82:89:09:c8:14:c4:91:b9:ca:34:dd:37:99:c4:14:
         dd:7a:2f:5c:f0:2f:c5:cf:be:0f:79:7e:66:71:7a:9b:f1:1f:
         69:33:2a:0e:9d:c8:c0:3a:44:e0:a5:a5:8e:a4:e4:27:50:cb:
         ae:af:a4:97:99:60:57:93:1b:9c:11:cf:cd:fa:e0:32:99:eb:
         04:0f:92:02:65:1a:df:d6:85:ef:e5:74:32:1f:56:19:dc:fd:
         b7:41:5d:75:38:1e:c7:de:3d:6d:e7:4f:d9:f8:bc:4e:07:01:
         b9:5a:d2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----