Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft
File:                     e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft (raw, json)
Hash identifier:          G37PxWzCbh8ySBhWVu+Ag5OlPN9Kcy3Ka/3Eiupm12s=
Subject key identifier:   97:AD:9B:16:EE:2F:19:B6:6C:15:43:EE:B7:B6:37:B8:A3:D5:64:7D
Authority key identifier: 7B:78:73:F8:9C:2A:98:53:27:EA:79:96:26:74:23:A7:75:1C:61:69
Certificate issuer:       /CN=7b7873f89c2a985327ea7996267423a7751c6169
Certificate serial:       019369DA111EE8CDEA7AB7748C26C30B9BEC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e3hz-JwqmFMn6nmWJnQjp3UcYWk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft
Manifest number:          1377
Signing time:             Tue 26 Nov 2024 19:01:59 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:59 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:59 +0000
Files and hashes:         1: e3hz-JwqmFMn6nmWJnQjp3UcYWk.crl (hash: lOQJpN/pIFmDMLxyDaYr6D3o7IPU9MIXUOSGy09Xuss=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e3hz-JwqmFMn6nmWJnQjp3UcYWk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:da:11:1e:e8:cd:ea:7a:b7:74:8c:26:c3:0b:9b:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b7873f89c2a985327ea7996267423a7751c6169
        Validity
            Not Before: Nov 26 19:01:59 2024 GMT
            Not After : Nov 27 19:01:59 2024 GMT
        Subject: CN=97ad9b16ee2f19b66c1543eeb7b637b8a3d5647d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:4f:78:ae:ba:74:49:8b:dd:a4:30:55:5b:f7:
                    80:ce:b0:03:ad:de:c3:f2:84:75:f6:10:38:09:79:
                    8e:fd:57:15:a1:0e:e4:c3:c9:cb:24:4d:3c:27:86:
                    06:9e:29:a2:5d:de:4c:bb:af:ae:fe:18:8a:02:b9:
                    1c:ea:5b:5e:bf:ae:f5:bf:45:c1:63:a7:fa:08:6e:
                    6e:e8:ac:85:23:92:ec:a6:02:ed:cb:56:84:d7:ca:
                    11:5b:3e:65:04:f5:36:97:ae:46:f5:8f:8f:15:39:
                    2a:b6:5b:82:cc:4f:4d:88:5c:3d:bd:53:f7:cc:23:
                    7d:53:e5:48:2c:de:ab:2a:23:f6:ac:4c:37:c0:05:
                    37:fd:05:f2:24:06:1a:c5:53:cf:02:9d:a4:ac:37:
                    46:ae:7d:a3:b8:19:45:6e:2d:c6:af:7b:0a:cc:0a:
                    fe:ef:05:f2:5f:69:d1:37:a9:04:7a:46:49:39:b8:
                    45:a1:98:7d:f1:87:0b:46:dc:66:0f:25:cc:75:99:
                    82:3e:d2:34:65:26:5b:d8:5f:00:f5:4d:14:95:91:
                    91:e0:2e:f7:6c:bb:82:59:6f:b9:42:10:04:aa:c7:
                    36:8b:de:c9:0e:cf:cf:8a:97:e8:87:62:92:90:0d:
                    bb:4e:04:98:15:4e:a3:51:90:fd:9b:9f:51:0c:e5:
                    55:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:AD:9B:16:EE:2F:19:B6:6C:15:43:EE:B7:B6:37:B8:A3:D5:64:7D
            X509v3 Authority Key Identifier:
                keyid:7B:78:73:F8:9C:2A:98:53:27:EA:79:96:26:74:23:A7:75:1C:61:69

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3hz-JwqmFMn6nmWJnQjp3UcYWk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:40:25:c8:ae:07:6e:fe:df:26:9e:9e:fb:ad:d1:39:f2:53:
         1c:22:b8:32:03:82:3c:a5:b6:d9:c2:8b:c6:69:ed:8c:e9:fd:
         21:5a:1f:cd:1c:7b:2a:30:f4:f5:de:6c:cb:31:e5:f7:9e:e8:
         40:be:d5:49:25:2e:38:da:eb:d9:71:06:0f:03:29:97:fd:ba:
         72:d2:d9:65:cc:fa:7a:26:30:e5:f2:c8:a2:0b:9d:e7:57:d2:
         3f:a5:b3:74:0c:78:3d:2d:3d:c6:2e:19:ba:9d:a7:75:cb:02:
         17:9a:a4:fb:26:be:28:84:9c:a9:02:f6:bd:8d:50:01:a9:89:
         5e:ef:d3:52:8c:6e:f0:d4:71:07:35:6a:da:a6:e4:e4:77:a6:
         6e:c6:0e:ac:89:bc:a7:cb:47:47:ff:d9:05:dd:c0:cc:91:d4:
         a0:86:2b:9e:47:df:49:04:06:28:dd:10:ca:e9:56:a3:35:f0:
         21:d8:13:67:39:a4:c0:59:d4:02:10:33:68:0b:d1:a3:35:82:
         5c:88:42:b1:95:30:70:b0:8a:4a:61:99:55:1a:76:06:57:91:
         12:96:d0:92:43:d2:c8:9c:2e:7c:3a:f4:1b:ea:63:58:26:a7:
         70:4a:e3:a7:3d:3f:60:7e:27:4f:ad:29:3f:19:a8:0d:f6:c1:
         07:9d:bd:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----