Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
File:                     MFOQl41XlfFI4eYK6c_XKDNIEiw.mft (raw, json)
Hash identifier:          n7aQhJozaqbrIV2EJRbi/R2u4SYXqIQ2z/mtcWYagzw=
Subject key identifier:   E3:40:4A:C5:9E:DD:6A:9E:96:74:DB:32:6D:90:8F:F0:91:57:AC:1B
Authority key identifier: 30:53:90:97:8D:57:95:F1:48:E1:E6:0A:E9:CF:D7:28:33:48:12:2C
Certificate issuer:       /CN=305390978d5795f148e1e60ae9cfd7283348122c
Certificate serial:       0190456610B5138DE4B99F38C4731D05F0EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
Manifest number:          087F
Signing time:             Sun 23 Jun 2024 14:00:35 +0000
Manifest this update:     Sun 23 Jun 2024 14:00:35 +0000
Manifest next update:     Mon 24 Jun 2024 14:00:35 +0000
Files and hashes:         1: MFOQl41XlfFI4eYK6c_XKDNIEiw.crl (hash: wMGwNsyu505OlXFUBznQdtNQC4qVVWmZjR/29b4+JYA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 14:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:45:66:10:b5:13:8d:e4:b9:9f:38:c4:73:1d:05:f0:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=305390978d5795f148e1e60ae9cfd7283348122c
        Validity
            Not Before: Jun 23 14:00:35 2024 GMT
            Not After : Jun 24 14:00:35 2024 GMT
        Subject: CN=e3404ac59edd6a9e9674db326d908ff09157ac1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:e1:15:7b:ce:5a:df:8c:e0:1d:55:7d:4b:23:
                    f9:b3:e0:0d:e8:ef:49:1d:27:88:c0:8d:fe:4d:1b:
                    f6:43:27:02:55:ff:54:b6:8a:c3:07:e1:96:3b:65:
                    67:45:91:3f:01:11:4e:6f:05:45:99:00:6e:6b:bb:
                    3b:e2:a1:33:53:56:4d:59:32:c3:f4:0c:0c:b8:59:
                    94:a8:9f:72:89:86:2c:2f:ca:1d:f8:bf:7e:5c:ee:
                    67:47:cb:8e:5c:b4:27:b1:b3:c8:85:bc:fa:f4:5b:
                    cf:65:de:31:e2:07:74:7e:c3:46:51:b5:4e:95:00:
                    b8:9a:28:6a:69:f8:b8:e9:a1:8e:5e:58:b3:92:68:
                    a2:d4:1c:8e:71:24:ab:f8:df:c0:21:6f:20:b9:51:
                    09:89:16:d8:9c:76:ee:5f:8f:c9:7b:25:5f:a7:92:
                    67:a8:dc:be:0d:6c:cf:17:71:3c:47:64:ef:14:8d:
                    c0:ae:d2:2d:b0:ef:dc:a4:26:82:a7:aa:f1:8f:e3:
                    fa:91:3a:ec:a8:44:55:79:1d:e7:ac:ed:3f:64:77:
                    73:82:7f:da:29:cf:d2:d4:40:a3:f3:a1:f7:f9:18:
                    b1:a8:ca:d3:83:d4:f6:e2:12:4f:7d:83:31:3a:f9:
                    04:e7:7e:b4:06:8e:1e:14:28:43:68:d9:5d:e0:62:
                    81:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:40:4A:C5:9E:DD:6A:9E:96:74:DB:32:6D:90:8F:F0:91:57:AC:1B
            X509v3 Authority Key Identifier:
                keyid:30:53:90:97:8D:57:95:F1:48:E1:E6:0A:E9:CF:D7:28:33:48:12:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:df:ae:7b:34:c2:e3:05:b5:44:35:11:5c:1b:52:48:71:a0:
         cf:aa:7c:45:16:c6:57:10:3d:f4:89:3a:7b:7d:12:a3:29:d7:
         48:ab:7b:db:eb:c4:f1:b5:58:2a:eb:35:78:f5:48:98:2f:ae:
         64:24:05:1b:66:0e:f8:25:d4:42:0e:63:45:ee:ef:90:8b:32:
         ac:97:25:5e:50:2a:ea:80:31:5d:55:95:7e:e7:29:f5:ae:84:
         73:3d:95:a0:c4:3d:11:d8:e9:11:7d:9e:91:13:24:06:17:b8:
         d1:11:68:51:4b:e1:79:d6:ce:51:18:a0:6d:97:7e:43:1b:0c:
         cb:5c:4e:89:80:da:4c:ab:de:f7:7f:8f:4c:5b:ab:0b:18:16:
         12:6f:16:a8:b2:81:96:18:11:88:36:d5:8d:0c:b3:1d:0a:81:
         d5:42:a7:81:a2:ed:e3:e2:24:a1:86:53:ab:bb:78:3e:91:b5:
         d5:c2:a3:4f:6e:ed:b3:d5:69:5c:11:49:ea:d2:5f:00:27:9a:
         fb:9c:50:73:d8:4a:47:f7:6d:d3:10:4c:f4:54:56:71:b2:39:
         07:6d:5e:b1:cb:3f:c0:4e:0e:12:06:d5:ba:10:d2:b7:78:97:
         ae:0a:c0:00:7f:b1:e4:6e:5d:db:ba:e7:ca:d2:23:49:b1:05:
         7c:68:be:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----