Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
File:                     jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft (raw, json)
Hash identifier:          HXVtZFPdkEE2lIPN7wTJmxrHZse8wT2NycgEKzBcPJE=
Subject key identifier:   11:0E:3E:5C:C4:12:C8:A0:51:9E:BB:9D:D1:A4:CA:5D:48:2B:51:D5
Authority key identifier: 8D:82:79:DA:ED:AB:BF:91:83:AF:B6:8E:43:FB:1E:5B:B6:D4:33:A3
Certificate issuer:       /CN=8d8279daedabbf9183afb68e43fb1e5bb6d433a3
Certificate serial:       01936B2253FDBA780431776E3AA187CDA35B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
Manifest number:          02A3
Signing time:             Wed 27 Nov 2024 01:00:31 +0000
Manifest this update:     Wed 27 Nov 2024 01:00:31 +0000
Manifest next update:     Thu 28 Nov 2024 01:00:31 +0000
Files and hashes:         1: jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl (hash: eyH5JQjoRuWxNAYzPacBEdIIR/9MUVn0C6a7tO9DM5Q=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:6b:22:53:fd:ba:78:04:31:77:6e:3a:a1:87:cd:a3:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d8279daedabbf9183afb68e43fb1e5bb6d433a3
        Validity
            Not Before: Nov 27 01:00:31 2024 GMT
            Not After : Nov 28 01:00:31 2024 GMT
        Subject: CN=110e3e5cc412c8a0519ebb9dd1a4ca5d482b51d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:29:ed:30:c7:50:07:43:0e:e6:ee:66:dc:6c:
                    f6:f4:fb:2c:3d:0c:13:1f:0c:70:f5:6a:d6:34:91:
                    5c:91:3f:72:24:81:1a:f7:80:5a:6f:48:73:e1:a5:
                    16:f3:27:bc:4e:99:d9:e3:a0:0c:32:72:ba:a3:54:
                    06:7c:71:1a:f9:7d:6a:4f:2a:d2:21:5f:16:a3:9a:
                    7d:b6:56:72:0e:05:4c:88:10:73:a2:e9:71:7e:f7:
                    7d:18:09:83:c1:60:02:05:26:05:cf:40:29:f6:7e:
                    82:14:87:29:f4:56:9f:af:52:05:3f:97:d7:01:b3:
                    73:b4:0d:6c:7e:00:d6:04:21:13:cf:dd:da:58:0a:
                    0e:e1:63:8f:51:1c:17:b3:3c:bd:80:2b:cd:e7:9c:
                    e4:59:b4:3b:12:34:fc:d6:2c:de:a7:29:40:b4:75:
                    9d:b2:b3:70:7d:de:61:b9:92:cb:19:06:4b:59:cc:
                    ae:79:30:78:d5:37:7c:80:cb:56:6d:aa:fc:98:ea:
                    3d:27:eb:8a:69:74:b7:a0:05:78:63:e6:39:2b:0b:
                    44:70:14:73:1c:72:37:28:8e:37:f6:8d:ca:30:b7:
                    3a:96:37:8c:ae:65:92:a8:17:45:29:21:a3:cc:d6:
                    60:d9:45:53:89:22:c4:68:2c:c0:fe:9a:54:5a:ae:
                    c7:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:0E:3E:5C:C4:12:C8:A0:51:9E:BB:9D:D1:A4:CA:5D:48:2B:51:D5
            X509v3 Authority Key Identifier:
                keyid:8D:82:79:DA:ED:AB:BF:91:83:AF:B6:8E:43:FB:1E:5B:B6:D4:33:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:41:69:05:bb:1e:c4:56:6a:5f:40:9c:5e:3e:a6:7b:d5:d4:
         eb:8a:e1:0b:c1:14:20:08:f8:69:41:e7:0a:9e:c8:5e:92:7b:
         d7:5b:87:f8:e5:7d:13:f3:1f:00:ed:d1:06:f1:58:e5:30:3b:
         fe:2b:84:fd:8c:86:bd:c7:6b:92:a7:11:d4:2b:5f:8e:65:49:
         6f:ea:f8:b4:d9:13:3c:9e:3c:66:2e:e5:7c:9e:fe:0f:f8:48:
         44:36:25:19:0a:c5:bb:a3:89:dc:b5:96:67:00:8e:04:28:fa:
         4c:bf:e4:a8:43:2f:6e:27:f1:78:01:8a:fa:e9:71:e3:25:5f:
         85:77:c2:af:26:6d:5c:fc:7c:76:2a:96:26:16:9a:e2:fa:e1:
         ff:2a:85:92:a6:99:5d:3e:d6:df:bf:46:03:73:59:d9:c5:1f:
         87:84:b1:73:80:c0:a8:f9:23:94:d0:45:29:38:06:65:15:ce:
         a8:4b:b8:16:a0:2f:2a:96:0e:f5:17:67:a5:08:2a:a8:f7:19:
         ad:09:83:a9:57:1f:05:92:b2:fc:ad:3f:31:8b:4f:31:fe:df:
         9f:79:84:16:7a:13:70:ab:38:5a:43:e5:c8:a9:af:74:16:c5:
         14:a2:c0:c5:15:5c:18:67:a8:0d:4d:b3:07:60:6c:e9:3a:27:
         1d:b0:03:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNrIlP9ungEMXduOqGHzaNbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkODI3OWRhZWRhYmJmOTE4M2FmYjY4ZTQzZmIxZTViYjZk
NDMzYTMwHhcNMjQxMTI3MDEwMDMxWhcNMjQxMTI4MDEwMDMxWjAzMTEwLwYDVQQD
EygxMTBlM2U1Y2M0MTJjOGEwNTE5ZWJiOWRkMWE0Y2E1ZDQ4MmI1MWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlintMMdQB0MO5u5m3Gz29PssPQwT
Hwxw9WrWNJFckT9yJIEa94Bab0hz4aUW8ye8TpnZ46AMMnK6o1QGfHEa+X1qTyrS
IV8Wo5p9tlZyDgVMiBBzoulxfvd9GAmDwWACBSYFz0Ap9n6CFIcp9Fafr1IFP5fX
AbNztA1sfgDWBCETz93aWAoO4WOPURwXszy9gCvN55zkWbQ7EjT81izepylAtHWd
srNwfd5huZLLGQZLWcyueTB41Td8gMtWbar8mOo9J+uKaXS3oAV4Y+Y5KwtEcBRz
HHI3KI439o3KMLc6ljeMrmWSqBdFKSGjzNZg2UVTiSLEaCzA/ppUWq7HZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBEOPlzEEsigUZ67ndGkyl1IK1HVMB8GA1UdIwQY
MBaAFI2Cedrtq7+Rg6+2jkP7Hlu21DOjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvallKNTJ1MnJ2NUdEcjdhT1Ffc2VXN2JVTTZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9jZmI5NTMtYmZlZi00NGZlLTgyNWEt
YWY3M2RjMGY2ZjJhLzEvallKNTJ1MnJ2NUdEcjdhT1Ffc2VXN2JVTTZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9jZmI5NTMtYmZlZi00NGZlLTgyNWEtYWY3M2RjMGY2ZjJh
LzEvallKNTJ1MnJ2NUdEcjdhT1Ffc2VXN2JVTTZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ0FpBbse
xFZqX0CcXj6me9XU64rhC8EUIAj4aUHnCp7IXpJ711uH+OV9E/MfAO3RBvFY5TA7
/iuE/YyGvcdrkqcR1CtfjmVJb+r4tNkTPJ48Zi7lfJ7+D/hIRDYlGQrFu6OJ3LWW
ZwCOBCj6TL/kqEMvbifxeAGK+ulx4yVfhXfCryZtXPx8diqWJhaa4vrh/yqFkqaZ
XT7W379GA3NZ2cUfh4Sxc4DAqPkjlNBFKTgGZRXOqEu4FqAvKpYO9RdnpQgqqPcZ
rQmDqVcfBZKy/K0/MYtPMf7fn3mEFnoTcKs4WkPlyKmvdBbFFKLAxRVcGGeoDU2z
B2Bs6TonHbADIQ==
-----END CERTIFICATE-----