Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
File:                     2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft (raw, json)
Hash identifier:          aDmxqQty7+yaXb53zjsOzs/jPVydBf7iD9TDhZql0EM=
Subject key identifier:   4C:6E:84:AD:FE:8F:92:D1:0F:13:1A:C5:D6:0F:FE:2C:76:AC:23:43
Authority key identifier: D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5
Certificate issuer:       /CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
Certificate serial:       0193587801F6C83AD0F2A316998ADF931A79
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
Manifest number:          0810
Signing time:             Sat 23 Nov 2024 10:01:19 +0000
Manifest this update:     Sat 23 Nov 2024 10:01:19 +0000
Manifest next update:     Sun 24 Nov 2024 10:01:19 +0000
Files and hashes:         1: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl (hash: Y857Sb6aJCZs4yEUZ90I6W3wpOtT3kAROPYWk4VOYcY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:78:01:f6:c8:3a:d0:f2:a3:16:99:8a:df:93:1a:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
        Validity
            Not Before: Nov 23 10:01:19 2024 GMT
            Not After : Nov 24 10:01:19 2024 GMT
        Subject: CN=4c6e84adfe8f92d10f131ac5d60ffe2c76ac2343
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:6c:97:ea:5b:1d:40:0a:f4:d7:23:ae:89:4f:
                    f8:88:05:35:7e:1e:8a:69:34:83:f3:58:15:f0:fe:
                    58:0e:50:26:4c:35:b9:fd:6f:4d:a9:6d:8b:a6:ea:
                    92:ae:ad:56:ca:4f:5e:d0:8b:00:6a:d2:36:45:21:
                    94:b2:de:25:5e:79:d1:f1:ce:0d:9f:26:02:a0:1f:
                    f3:61:f5:f0:e9:c6:96:85:89:37:f6:9b:df:82:30:
                    02:52:fe:48:2f:00:9c:e5:81:aa:fc:41:38:d7:98:
                    52:b1:bc:74:57:17:44:02:81:12:30:b8:53:97:19:
                    83:9c:cc:c9:b0:cb:dc:51:e2:a4:86:6a:48:f7:e8:
                    e5:d6:4e:e1:aa:58:f6:54:6e:fa:9a:49:47:76:66:
                    92:83:80:1c:cf:23:63:d6:44:03:f9:f9:59:aa:5b:
                    bb:72:c9:3b:a0:85:73:98:4b:2c:7a:6f:a0:f8:a7:
                    6f:7f:2c:c0:f0:9d:64:07:e3:e3:3c:dd:83:d0:92:
                    91:81:d0:d7:b4:2b:b4:a6:d4:f4:5c:a5:d7:4c:e0:
                    d9:0d:09:8b:3e:ca:f1:d0:6f:99:8d:26:cc:ec:90:
                    d8:8b:8d:60:c6:90:20:b9:3e:c1:03:cd:77:5c:ae:
                    ff:2b:3e:54:0c:59:e8:a6:de:54:38:e9:49:e7:13:
                    32:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:6E:84:AD:FE:8F:92:D1:0F:13:1A:C5:D6:0F:FE:2C:76:AC:23:43
            X509v3 Authority Key Identifier:
                keyid:D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:c4:fc:60:6c:6f:b7:01:da:00:a7:57:bc:2a:af:64:2b:48:
         c9:44:21:b3:ee:2b:bf:78:07:fb:8b:b4:b8:27:e7:3f:55:ef:
         1f:30:ba:ad:b7:c4:0d:9f:b8:a1:c6:b2:a2:f4:3a:83:46:e9:
         ee:e7:9a:ed:d6:e4:8f:48:0c:5f:0e:42:b4:80:26:6b:61:9e:
         bb:ab:b9:e2:d4:a1:b5:32:9b:47:19:fd:49:1f:30:9c:f1:b7:
         61:c1:a6:99:01:a4:e0:92:cc:62:5c:11:dd:94:ab:72:1a:4d:
         93:03:a8:1a:56:15:ae:71:5d:34:c5:ba:02:b9:61:dc:74:3b:
         ef:93:0e:ea:d6:29:68:be:46:bc:0f:1c:7b:87:d6:50:5b:f6:
         d3:5b:b7:d3:15:db:ad:52:6e:e7:d5:dd:c5:13:69:5b:5c:37:
         35:49:84:22:1c:fe:51:93:84:c5:7f:e2:3f:3b:39:9d:8a:b8:
         aa:85:cd:b6:74:79:b7:2a:b4:b6:32:4d:cb:b7:3c:72:ab:44:
         3d:0a:22:3f:72:35:81:d2:4a:9a:f3:a7:06:39:33:ab:c4:c5:
         a5:88:8a:24:03:15:66:60:ad:a1:63:e8:aa:66:1f:88:13:cd:
         7e:21:a1:63:8f:af:55:24:41:d1:3e:78:56:03:6e:73:ce:16:
         e0:2c:73:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----