Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
File:                     xcidUmDLNP27s7wlv0rbr0zcaKA.mft (raw, json)
Hash identifier:          HzRkP29969CMoR7p6GHYydWxSa9nst76xDDupbztuas=
Subject key identifier:   2E:C1:03:7D:84:72:28:BE:4E:26:52:03:65:03:E9:1F:89:BF:1E:FB
Authority key identifier: C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
Certificate issuer:       /CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Certificate serial:       019358790F3E2BC22C602E18159AD0FCF362
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
Manifest number:          032E
Signing time:             Sat 23 Nov 2024 10:02:28 +0000
Manifest this update:     Sat 23 Nov 2024 10:02:28 +0000
Manifest next update:     Sun 24 Nov 2024 10:02:28 +0000
Files and hashes:         1: xcidUmDLNP27s7wlv0rbr0zcaKA.crl (hash: SUJI6YTly6J0edHPFB/qGO7xgUipyHGQKaLD3G5Jflc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:79:0f:3e:2b:c2:2c:60:2e:18:15:9a:d0:fc:f3:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
        Validity
            Not Before: Nov 23 10:02:28 2024 GMT
            Not After : Nov 24 10:02:28 2024 GMT
        Subject: CN=2ec1037d847228be4e2652036503e91f89bf1efb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:34:2c:8e:bb:b4:d9:58:0b:9e:b1:a4:8d:21:
                    f9:69:4a:06:bc:7a:82:92:84:fe:fa:a4:d7:a7:13:
                    ca:43:00:1b:97:c0:4b:f1:9f:e8:46:8d:77:4d:13:
                    11:e8:cb:c9:fb:a5:d8:6e:cf:7d:8b:a1:ad:5b:78:
                    9b:f2:87:36:69:20:1d:cb:e7:df:fc:73:0e:20:63:
                    22:f5:44:b5:ad:fb:88:17:a3:81:0f:54:32:fb:dc:
                    fd:f9:04:10:2f:29:1f:5f:45:76:32:e6:fb:c3:eb:
                    5d:49:60:87:40:91:74:b3:18:2c:3c:8d:7c:7b:ab:
                    06:c4:d8:7d:4a:2c:ff:9d:d4:ad:39:16:85:72:e5:
                    f9:f2:b6:a3:3d:ba:45:1a:eb:e0:20:fc:73:61:3e:
                    5f:70:45:5d:26:57:e7:ab:26:d4:57:55:b0:b7:6c:
                    df:8a:bf:0f:df:a0:04:b1:a4:65:89:24:b3:bb:27:
                    51:06:e2:ff:5b:df:5c:78:d0:7a:67:fc:0c:1c:52:
                    0c:b0:86:77:2f:09:46:fe:47:d2:8f:1f:1d:62:db:
                    ff:11:3b:8f:b3:a4:d0:ae:78:e6:f0:38:60:c1:ad:
                    c0:d5:83:8e:ac:d5:90:90:57:18:77:0e:8b:68:25:
                    79:75:6b:21:01:6a:7a:b0:4a:9e:ca:4f:6b:fc:bd:
                    d6:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:C1:03:7D:84:72:28:BE:4E:26:52:03:65:03:E9:1F:89:BF:1E:FB
            X509v3 Authority Key Identifier:
                keyid:C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:00:2d:75:e8:03:cd:77:c8:bd:5a:53:1a:ab:f9:85:1c:95:
         08:cc:be:3a:fd:19:fa:ef:31:f1:ba:bc:57:cc:fc:dc:8a:34:
         ac:8f:f4:1c:88:49:49:af:24:83:fe:fd:4b:d8:5d:5c:98:28:
         f4:84:c5:66:33:a5:4c:f3:ff:6e:4e:32:a6:4c:c6:be:c4:db:
         67:cc:eb:ba:ce:e5:bc:ac:ca:90:88:cc:b3:32:ea:25:10:5c:
         3f:a8:76:0a:da:5c:e5:f0:39:d7:0c:26:97:23:e9:f6:44:f1:
         d2:09:d8:66:d8:6d:37:a4:0e:34:97:ab:00:0f:6f:c2:4c:a8:
         60:6c:50:8f:84:86:9e:f6:97:d5:0e:d1:ed:0c:23:0b:f5:17:
         c7:2f:75:02:62:4f:62:65:e5:bf:e6:c6:68:48:10:e7:a1:27:
         b9:24:ec:66:9e:21:93:2c:f2:53:84:07:c7:7c:1f:d7:8f:db:
         7f:72:b4:c6:5f:5a:24:35:a3:6e:1b:93:31:d6:62:b1:68:55:
         d9:13:f4:19:dc:4c:af:5a:3d:cc:44:ea:62:50:85:0d:e5:60:
         06:bc:83:fa:00:81:5a:94:45:31:51:b0:b1:d1:b0:9b:bb:9b:
         e2:21:d4:99:c5:7e:01:aa:28:21:36:f1:3b:0a:00:ca:d9:71:
         24:44:f4:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNYeQ8+K8IsYC4YFZrQ/PNiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1Yzg5ZDUyNjBjYjM0ZmRiYmIzYmMyNWJmNGFkYmFmNGNk
YzY4YTAwHhcNMjQxMTIzMTAwMjI4WhcNMjQxMTI0MTAwMjI4WjAzMTEwLwYDVQQD
EygyZWMxMDM3ZDg0NzIyOGJlNGUyNjUyMDM2NTAzZTkxZjg5YmYxZWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DQsjru02VgLnrGkjSH5aUoGvHqC
koT++qTXpxPKQwAbl8BL8Z/oRo13TRMR6MvJ+6XYbs99i6GtW3ib8oc2aSAdy+ff
/HMOIGMi9US1rfuIF6OBD1Qy+9z9+QQQLykfX0V2Mub7w+tdSWCHQJF0sxgsPI18
e6sGxNh9Siz/ndStORaFcuX58rajPbpFGuvgIPxzYT5fcEVdJlfnqybUV1Wwt2zf
ir8P36AEsaRliSSzuydRBuL/W99ceNB6Z/wMHFIMsIZ3LwlG/kfSjx8dYtv/ETuP
s6TQrnjm8Dhgwa3A1YOOrNWQkFcYdw6LaCV5dWshAWp6sEqeyk9r/L3WuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7BA32Ecii+TiZSA2UD6R+Jvx77MB8GA1UdIwQY
MBaAFMXInVJgyzT9u7O8Jb9K269M3GigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGNpZFVtRExOUDI3czd3bHYwcmJyMHpjYUtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82MjNiMTQtNGU2ZS00YzMxLTk2YmUt
OGViY2QwOWIyYmNhLzEveGNpZFVtRExOUDI3czd3bHYwcmJyMHpjYUtBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS82MjNiMTQtNGU2ZS00YzMxLTk2YmUtOGViY2QwOWIyYmNh
LzEveGNpZFVtRExOUDI3czd3bHYwcmJyMHpjYUtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZAAtdegD
zXfIvVpTGqv5hRyVCMy+Ov0Z+u8x8bq8V8z83Io0rI/0HIhJSa8kg/79S9hdXJgo
9ITFZjOlTPP/bk4ypkzGvsTbZ8zrus7lvKzKkIjMszLqJRBcP6h2Ctpc5fA51wwm
lyPp9kTx0gnYZthtN6QONJerAA9vwkyoYGxQj4SGnvaX1Q7R7QwjC/UXxy91AmJP
YmXlv+bGaEgQ56EnuSTsZp4hkyzyU4QHx3wf14/bf3K0xl9aJDWjbhuTMdZisWhV
2RP0GdxMr1o9zETqYlCFDeVgBryD+gCBWpRFMVGwsdGwm7ub4iHUmcV+AaooITbx
OwoAytlxJET0sg==
-----END CERTIFICATE-----