Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
File:                     mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json)
Hash identifier:          BEjAxeu5ZppVBZKwAEvykHnVN+z1+rMtKKyKqpvClZw=
Subject key identifier:   56:C0:0F:0D:E0:B9:3F:37:18:C1:1D:01:49:23:B2:0D:A3:8B:08:90
Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
Certificate issuer:       /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Certificate serial:       018F8748D5CA73D576681854DA9DEB978D40
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
Manifest number:          0E0D
Signing time:             Fri 17 May 2024 16:00:48 +0000
Manifest this update:     Fri 17 May 2024 16:00:48 +0000
Manifest next update:     Sat 18 May 2024 16:00:48 +0000
Files and hashes:         1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: K6khlGUYIsgDEtwA4dAG7tZQInfnNL9MqVqlWfBDgdw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:d5:ca:73:d5:76:68:18:54:da:9d:eb:97:8d:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
        Validity
            Not Before: May 17 16:00:48 2024 GMT
            Not After : May 18 16:00:48 2024 GMT
        Subject: CN=56c00f0de0b93f3718c11d014923b20da38b0890
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:e3:73:a8:a7:04:2d:21:7b:32:6d:c7:6f:59:
                    25:28:df:82:62:69:32:3b:2d:4a:44:9b:e5:a1:a8:
                    20:b0:56:c8:97:17:03:19:2a:c9:aa:03:a2:71:0a:
                    87:9e:f9:d3:63:47:96:8b:55:f2:e3:ee:df:14:fb:
                    7d:fb:2e:75:2f:9a:68:6a:c3:ce:15:02:95:72:36:
                    be:99:42:ca:98:97:55:d9:13:aa:4a:7f:e0:51:7c:
                    5e:b8:db:1e:b7:a9:b8:82:42:55:c8:75:4c:bf:29:
                    f3:3c:2b:4c:d4:1e:44:cc:69:84:6d:8c:73:46:2e:
                    cb:79:57:06:e6:26:ee:05:5d:c3:62:d4:de:ae:ea:
                    4b:60:33:5f:17:f4:4c:64:33:e2:12:b4:b1:19:a7:
                    54:a7:e2:8e:04:6d:f9:92:55:45:b7:46:c7:7c:0a:
                    8b:2c:fb:6c:27:f1:58:84:16:d4:9e:61:a6:40:11:
                    06:85:98:d0:09:8d:e9:07:57:29:18:b6:44:c1:ea:
                    b6:56:57:b5:7e:15:ea:a4:b4:98:3f:1d:f2:6f:17:
                    32:6a:68:c5:4b:a8:e4:9b:b8:eb:7a:bf:63:b0:7d:
                    47:2c:41:23:70:7b:82:af:56:4b:5c:02:ed:d5:ad:
                    f6:17:67:98:5b:17:4c:e3:dd:1a:58:2a:0b:76:1c:
                    1a:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:C0:0F:0D:E0:B9:3F:37:18:C1:1D:01:49:23:B2:0D:A3:8B:08:90
            X509v3 Authority Key Identifier:
                keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:0e:be:30:0f:89:d2:a4:ed:eb:25:f4:ee:91:fd:2b:ff:f2:
         b7:8b:d4:bb:cb:ae:e0:e4:c2:90:37:6b:8c:9f:4a:40:03:65:
         9b:11:a9:ce:78:c4:25:e4:2a:5f:3f:53:27:56:83:06:9e:c0:
         7a:fc:97:2d:64:0f:e9:6b:02:c9:96:d5:98:65:0e:c0:75:da:
         79:87:9b:3c:03:cb:f4:60:e4:32:7f:49:8d:bf:c2:c8:65:55:
         93:bf:41:60:da:97:d7:23:5b:5b:80:02:91:45:22:1b:6a:4c:
         a9:ff:46:66:53:ba:10:9f:9c:35:8e:23:b0:85:71:d6:dd:09:
         d3:93:e8:7a:4a:3e:da:fd:5f:04:84:e9:dd:76:fa:a0:81:8c:
         d1:0a:5f:97:a3:0c:93:27:62:2d:3d:5f:8f:bf:d9:bb:b2:0d:
         25:b2:3f:fd:4f:58:b5:4e:17:a3:a5:d4:f4:4b:5b:9c:a6:d5:
         e7:7e:bd:46:29:0d:14:57:b6:5e:41:d3:20:9e:19:dd:55:7d:
         d9:a2:c4:d5:fa:47:2c:86:55:de:3a:57:f6:21:bc:ac:5c:f3:
         e5:da:9e:50:e0:8c:05:2e:61:b7:c7:cd:fa:18:19:d4:2d:35:
         74:8a:57:9e:c9:de:19:1b:ef:9c:89:4c:08:83:6e:c0:cc:38:
         8b:73:a7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----