Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
File:                     Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json)
Hash identifier:          v6CucRCF2t5NgUSdkkne2FzljeIwDaTLoHUH9OveDqs=
Subject key identifier:   E1:54:AF:AF:3C:CF:94:B0:5A:4E:E8:63:4B:A7:17:F0:E3:23:C1:6F
Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
Certificate issuer:       /CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Certificate serial:       018F486A5853EC2915892A23A562338E4BDD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
Manifest number:          06F3
Signing time:             Sun 05 May 2024 11:01:19 +0000
Manifest this update:     Sun 05 May 2024 11:01:19 +0000
Manifest next update:     Mon 06 May 2024 11:01:19 +0000
Files and hashes:         1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: XZS0/dgOcitMpL8mAFcxFsKpSFpfjhLxrx109ijnxzQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 06 May 2024 08:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:48:6a:58:53:ec:29:15:89:2a:23:a5:62:33:8e:4b:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384
        Validity
            Not Before: May  5 11:01:19 2024 GMT
            Not After : May  6 11:01:19 2024 GMT
        Subject: CN=e154afaf3ccf94b05a4ee8634ba717f0e323c16f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:43:04:33:9c:9b:c2:fb:6b:1c:9b:93:21:3f:
                    97:ce:77:cd:27:85:0f:ea:7c:37:d4:70:98:95:21:
                    73:db:0b:1e:03:4f:ba:52:46:f3:88:65:83:8d:a7:
                    7c:9a:e8:4f:5c:da:c3:67:c0:e9:23:02:56:4b:fd:
                    e3:09:99:91:41:2a:bd:20:60:bb:1d:c4:86:30:5d:
                    1c:69:d4:b3:5e:5a:26:3e:b9:03:23:73:3d:7c:45:
                    3b:2a:43:c1:2f:7d:29:0c:36:a4:13:dc:67:d8:9d:
                    d3:21:ca:ba:96:ea:8e:55:dc:11:64:5c:57:55:3b:
                    ef:b0:47:ff:d1:f2:ba:fe:05:d4:05:f2:af:2e:e2:
                    26:94:0d:ee:4b:02:99:81:7b:8d:1e:30:5e:bd:ae:
                    cd:23:c9:42:9c:13:1b:5c:68:5c:0c:64:e3:c8:a6:
                    59:c2:c0:e7:b9:c3:d0:fe:af:89:c2:79:92:98:7e:
                    c6:0d:ef:91:93:1d:78:0d:b2:c4:8c:2c:7a:fc:b0:
                    c2:70:7c:b0:d1:bc:94:30:81:70:d2:ff:07:3d:08:
                    29:ed:a2:4e:99:76:41:37:dc:20:26:12:e2:07:41:
                    fa:c9:43:8f:65:32:09:7b:8c:a8:7f:c8:6c:9f:dd:
                    87:0c:6b:b7:6d:eb:de:a3:da:c6:9a:27:b4:41:a3:
                    9b:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:54:AF:AF:3C:CF:94:B0:5A:4E:E8:63:4B:A7:17:F0:E3:23:C1:6F
            X509v3 Authority Key Identifier:
                keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:f8:59:41:35:7d:8b:6c:ce:50:d9:02:1d:c4:1b:db:51:ec:
         48:67:51:c2:ff:e8:2d:a4:18:5e:bf:1a:b8:a5:9b:16:22:f6:
         7a:19:18:41:0b:23:9c:69:ea:dd:01:17:4c:9d:cc:52:0e:84:
         c9:6b:39:bc:06:3a:9d:d9:ee:1d:e0:d2:67:8e:1f:d0:fc:89:
         4d:61:65:99:c9:81:90:50:c7:94:2c:20:9e:fd:8f:07:96:c1:
         04:dc:e5:32:21:b1:38:a0:65:35:47:3e:87:b1:df:3a:1b:29:
         11:7a:51:00:33:bd:8e:f2:4a:c1:a9:f4:d4:79:fc:3b:fb:c8:
         9c:60:2f:3c:92:57:9b:e5:1b:0c:65:ca:2d:a8:cf:6c:e3:50:
         48:a8:4f:f2:28:a1:d4:c7:82:69:1e:12:c6:64:2f:1d:5b:92:
         1a:1f:4c:4b:68:f0:ca:0d:1a:73:b4:8c:5d:25:df:d8:d0:d6:
         b1:5d:b1:8c:d6:35:02:cb:94:95:46:a3:11:40:f1:b0:38:28:
         ec:80:86:e4:1d:6e:ab:a9:a9:e6:62:d0:84:06:ee:0d:f8:f2:
         ec:20:d6:28:71:d3:5a:f7:54:84:43:2c:ca:6c:a7:e3:18:3a:
         df:a6:00:57:85:6f:ae:5d:1c:5d:6d:c1:4a:0b:16:39:3c:cd:
         2e:5a:01:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----