Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File:                     2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier:          31wiZdzHcHHqoHvSm0ndPxu98Lkyc/s8W8rf6B5iggM=
Subject key identifier:   64:A6:47:AC:8E:7F:E7:3B:5A:E1:FF:30:08:B0:7D:A1:9D:0E:E5:F4
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer:       /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial:       019357650E3CCF2431AD003150AE40D93359
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number:          0B3B
Signing time:             Sat 23 Nov 2024 05:01:00 +0000
Manifest this update:     Sat 23 Nov 2024 05:01:00 +0000
Manifest next update:     Sun 24 Nov 2024 05:01:00 +0000
Files and hashes:         1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: 3aBAn7vGS9AjZ1fLJZpYFw06m7s/8OAQmtmizJzPFY0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 05:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:57:65:0e:3c:cf:24:31:ad:00:31:50:ae:40:d9:33:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
        Validity
            Not Before: Nov 23 05:01:00 2024 GMT
            Not After : Nov 24 05:01:00 2024 GMT
        Subject: CN=64a647ac8e7fe73b5ae1ff3008b07da19d0ee5f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:ad:dc:80:f7:8a:18:c1:a6:79:bb:11:25:ea:
                    09:12:b7:eb:d3:0e:9a:6d:d7:39:72:86:54:ec:01:
                    45:47:e8:0f:e8:04:5a:73:07:01:b5:2f:de:f7:6b:
                    e8:75:e6:ca:8e:96:08:14:c9:a8:50:c6:fa:ca:d1:
                    fb:76:93:6e:0e:f9:8c:3f:03:7b:0a:30:42:a8:31:
                    1f:42:fb:d9:a4:ef:32:eb:18:c1:06:34:8d:63:8e:
                    da:0f:aa:54:cd:19:2b:a3:5e:fb:9c:28:3f:26:8a:
                    ad:99:2c:33:43:9e:86:5f:75:74:26:ab:66:a7:d5:
                    4f:89:32:82:ad:44:43:ca:ec:02:97:14:d7:cf:8a:
                    5b:88:30:e7:4e:18:48:a7:98:9d:00:16:94:2f:3a:
                    d0:71:33:25:50:aa:b8:6d:bc:d4:81:d1:86:be:e4:
                    64:d7:ab:6c:1d:ea:d5:3c:1a:c3:4b:72:43:ca:0d:
                    dd:36:79:21:a1:79:dd:eb:6e:79:52:35:17:00:9e:
                    ff:a6:1d:07:9b:e5:3f:2c:ca:bb:ee:1e:7e:80:c1:
                    24:2c:03:2c:e4:92:b6:1e:36:86:ad:d5:8f:27:f0:
                    21:5d:e0:51:a4:c3:96:0c:98:8f:2a:81:8a:e7:d7:
                    92:7b:e1:66:3e:56:46:f0:4c:50:73:42:90:8a:c2:
                    cf:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:A6:47:AC:8E:7F:E7:3B:5A:E1:FF:30:08:B0:7D:A1:9D:0E:E5:F4
            X509v3 Authority Key Identifier:
                keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:cd:8c:91:77:fc:95:e7:a3:3d:1e:11:32:b4:80:7d:10:b0:
         35:22:46:af:ff:76:51:89:0c:dd:ed:6e:8a:63:ac:0a:ac:c1:
         14:90:40:0f:be:5c:a4:5d:54:18:1e:61:9a:29:de:91:a1:cf:
         72:f5:8d:5f:9d:7c:b3:58:e3:4e:3c:88:28:17:8c:62:17:dc:
         64:3d:9f:ea:50:90:9d:67:d7:bb:11:4d:e9:95:16:0f:d5:38:
         fe:55:f4:35:ce:f8:2a:d2:c6:42:20:7b:e0:4d:c8:f1:96:85:
         6e:66:97:89:17:da:1d:cb:40:62:19:52:2d:59:d8:21:92:14:
         c3:fc:48:dc:03:33:9d:ec:20:89:2f:2a:e2:b2:9e:b3:1d:98:
         94:82:3a:1b:c1:0c:dc:07:bc:5c:01:f9:27:e3:24:1f:02:ad:
         9f:38:2d:67:be:60:ae:5f:9e:d1:08:6d:41:01:b5:e8:ed:54:
         9a:1a:d0:cf:86:62:a2:b4:f9:f9:83:9d:62:e4:be:a2:7e:15:
         cb:78:24:c5:9e:2e:30:85:bf:d4:d8:0c:f8:b7:4d:6c:b3:86:
         46:ea:5e:fd:87:fe:d9:47:84:95:49:d5:e6:5c:f1:cf:a1:82:
         66:bb:c1:0d:63:8b:7e:65:fa:98:0f:34:4a:66:e7:08:50:e8:
         5a:c0:fa:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNXZQ48zyQxrQAxUK5A2TNZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ODUwNTVkNzAzOThjZjBjNzJjY2VhYzVlNTgxYWQ0MGYy
MDNlZmMwHhcNMjQxMTIzMDUwMTAwWhcNMjQxMTI0MDUwMTAwWjAzMTEwLwYDVQQD
Eyg2NGE2NDdhYzhlN2ZlNzNiNWFlMWZmMzAwOGIwN2RhMTlkMGVlNWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA463cgPeKGMGmebsRJeoJErfr0w6a
bdc5coZU7AFFR+gP6ARacwcBtS/e92vodebKjpYIFMmoUMb6ytH7dpNuDvmMPwN7
CjBCqDEfQvvZpO8y6xjBBjSNY47aD6pUzRkro177nCg/JoqtmSwzQ56GX3V0Jqtm
p9VPiTKCrURDyuwClxTXz4pbiDDnThhIp5idABaULzrQcTMlUKq4bbzUgdGGvuRk
16tsHerVPBrDS3JDyg3dNnkhoXnd6255UjUXAJ7/ph0Hm+U/LMq77h5+gMEkLAMs
5JK2HjaGrdWPJ/AhXeBRpMOWDJiPKoGK59eSe+FmPlZG8ExQc0KQisLP8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGSmR6yOf+c7WuH/MAiwfaGdDuX0MB8GA1UdIwQY
MBaAFNiFBV1wOYzwxyzOrF5YGtQPID78MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUt
MWNhM2M2N2YxNTA2LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUtMWNhM2M2N2YxNTA2
LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADs2MkXf8
leejPR4RMrSAfRCwNSJGr/92UYkM3e1uimOsCqzBFJBAD75cpF1UGB5hminekaHP
cvWNX518s1jjTjyIKBeMYhfcZD2f6lCQnWfXuxFN6ZUWD9U4/lX0Nc74KtLGQiB7
4E3I8ZaFbmaXiRfaHctAYhlSLVnYIZIUw/xI3AMznewgiS8q4rKesx2YlII6G8EM
3Ae8XAH5J+MkHwKtnzgtZ75grl+e0QhtQQG16O1UmhrQz4ZiorT5+YOdYuS+on4V
y3gkxZ4uMIW/1NgM+LdNbLOGRupe/Yf+2UeElUnV5lzxz6GCZrvBDWOLfmX6mA80
SmbnCFDoWsD6/w==
-----END CERTIFICATE-----