Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
File:                     biYdnc3dmGfliSrRpNII32lTEXc.mft (raw, json)
Hash identifier:          pNfMFOegXzDlcfOl/uVbgRCDn5aGJLqMqLx+xdKKBas=
Subject key identifier:   0D:F9:F7:84:73:5A:0D:33:10:C1:06:CF:F5:A1:ED:7A:E0:52:E5:7F
Authority key identifier: 6E:26:1D:9D:CD:DD:98:67:E5:89:2A:D1:A4:D2:08:DF:69:53:11:77
Certificate issuer:       /CN=6e261d9dcddd9867e5892ad1a4d208df69531177
Certificate serial:       018F87489B11F13D6A9E022E42F5CA60C590
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
Manifest number:          09D4
Signing time:             Fri 17 May 2024 16:00:33 +0000
Manifest this update:     Fri 17 May 2024 16:00:33 +0000
Manifest next update:     Sat 18 May 2024 16:00:33 +0000
Files and hashes:         1: biYdnc3dmGfliSrRpNII32lTEXc.crl (hash: JkvnHA5/Z99FRL381jUaqPZbqPCMoQZ1AWMUpG2Y2U8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:9b:11:f1:3d:6a:9e:02:2e:42:f5:ca:60:c5:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e261d9dcddd9867e5892ad1a4d208df69531177
        Validity
            Not Before: May 17 16:00:33 2024 GMT
            Not After : May 18 16:00:33 2024 GMT
        Subject: CN=0df9f784735a0d3310c106cff5a1ed7ae052e57f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:51:63:12:ee:3a:0d:9c:b3:a0:78:a4:f6:f0:
                    39:72:8c:cc:a8:79:bc:67:8c:21:c9:f0:5b:df:0f:
                    14:d8:c5:82:a3:c1:2f:dc:82:f1:4e:f5:75:3e:95:
                    31:08:23:31:36:e8:64:d0:d8:ea:99:03:5f:10:46:
                    91:66:3c:3d:35:78:89:9a:fb:04:51:d5:a4:19:d1:
                    c3:0e:92:eb:bd:dd:21:f9:24:fb:9a:d2:f1:20:4c:
                    95:23:5a:84:25:96:da:9f:0c:f9:03:5c:74:ff:3d:
                    37:23:4a:20:8a:53:a7:20:8a:cf:6c:8d:5a:23:21:
                    67:1b:80:d7:27:44:66:1d:c4:d4:99:e4:b0:bb:2e:
                    77:51:08:66:fa:d9:78:20:d9:31:e0:4d:9f:ac:84:
                    1d:56:07:70:cc:74:68:a2:4d:58:73:b4:8a:c5:97:
                    49:12:ed:fd:ea:57:bc:3a:d6:7a:25:ce:ea:15:9f:
                    3d:da:3c:03:26:0d:b1:ca:15:5c:29:53:e1:67:81:
                    fd:f1:99:65:81:91:44:cb:03:db:ee:5b:3b:ff:64:
                    7f:92:e3:2b:33:d1:84:d6:8a:bc:42:60:50:e6:cb:
                    8c:21:5b:3f:78:63:b9:e0:63:b9:37:49:98:19:e4:
                    10:53:43:c3:f8:29:a6:b3:d8:25:1f:ad:e4:b8:6a:
                    a7:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:F9:F7:84:73:5A:0D:33:10:C1:06:CF:F5:A1:ED:7A:E0:52:E5:7F
            X509v3 Authority Key Identifier:
                keyid:6E:26:1D:9D:CD:DD:98:67:E5:89:2A:D1:A4:D2:08:DF:69:53:11:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:28:48:00:59:79:1f:65:6e:fd:76:8f:dc:ad:0a:ed:21:ff:
         93:13:ba:7a:eb:39:45:29:45:91:7e:32:cc:ce:4b:2a:ad:67:
         e3:f4:9a:6b:fa:7a:e9:38:3e:66:5c:a5:08:3e:ed:bd:07:2f:
         2b:ae:c2:aa:66:7a:fa:61:48:ba:da:87:3a:3b:e8:d9:25:b8:
         d8:95:06:2d:18:11:f6:d5:8c:fb:f7:82:66:bf:77:d3:cc:30:
         73:75:8b:4b:31:25:5e:44:67:4c:b0:66:08:62:a7:09:21:cb:
         5d:94:86:7a:3b:7c:fa:72:a0:6c:ab:01:61:fa:b2:47:d2:89:
         7c:22:0f:a9:9a:80:b7:97:34:fc:04:b1:8e:93:ab:f6:20:0d:
         9a:e9:64:3f:3a:ee:61:08:e3:45:76:c8:45:00:71:e2:c5:78:
         3d:5c:31:ce:ab:2d:48:d8:0b:8e:a9:00:95:59:6b:72:cc:c3:
         be:a5:26:cf:c1:d8:b0:73:21:15:d2:60:41:ea:45:0a:0f:89:
         0b:ec:ee:d0:88:6e:70:a0:65:77:94:ff:91:d5:89:09:2f:34:
         8b:bb:1e:50:b2:c0:a5:d7:05:5c:3a:7d:ed:90:2e:cc:77:ff:
         be:9a:b5:e9:76:7e:b8:07:95:29:dc:cf:10:66:da:ea:e2:8d:
         dc:4d:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----