Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
File:                     D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft (raw, json)
Hash identifier:          QrNMMh9dzIYg+VT5svudrLyHeadXGy+sVNplPAFk5LQ=
Subject key identifier:   6C:0C:6E:10:E7:91:DA:01:5E:DF:8E:70:03:9F:48:B6:26:8F:53:96
Authority key identifier: 0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77
Certificate issuer:       /CN=0f79760520b7c15c2e4260308272b849f88ed677
Certificate serial:       01936A46A8A78BF7DAFA8B33D829AF3CC44E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
Manifest number:          137A
Signing time:             Tue 26 Nov 2024 21:00:35 +0000
Manifest this update:     Tue 26 Nov 2024 21:00:35 +0000
Manifest next update:     Wed 27 Nov 2024 21:00:35 +0000
Files and hashes:         1: D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl (hash: e1Dl/WNOABfvbOjPfmclJ0bsAoBlwSlIks7kYOxGXQQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:6a:46:a8:a7:8b:f7:da:fa:8b:33:d8:29:af:3c:c4:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f79760520b7c15c2e4260308272b849f88ed677
        Validity
            Not Before: Nov 26 21:00:35 2024 GMT
            Not After : Nov 27 21:00:35 2024 GMT
        Subject: CN=6c0c6e10e791da015edf8e70039f48b6268f5396
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:9f:5c:a9:6a:44:1a:2d:df:d8:fe:2a:bc:19:
                    59:cd:29:c5:47:1a:02:cf:f1:d9:50:b2:e3:f6:36:
                    6c:0d:7f:9b:e2:02:7d:ee:96:d9:a6:6d:bc:ff:8a:
                    22:7e:e0:a9:b3:b0:3f:ea:56:7f:99:53:70:c5:fd:
                    6d:13:df:0b:9f:9d:52:67:af:71:c4:6a:5a:0c:47:
                    1d:57:c0:16:7c:0b:ec:e6:f9:1f:89:23:ff:e8:d9:
                    c9:86:29:24:61:0d:17:20:79:7f:90:ec:75:fb:35:
                    7d:01:ac:62:33:be:05:ae:45:7a:c5:c8:db:b8:3a:
                    66:08:0a:56:2b:1d:24:96:2f:f1:ac:0f:7f:4c:39:
                    fd:73:3f:c4:18:49:99:e3:88:ff:d4:8b:96:76:a0:
                    92:85:ed:cc:c5:a6:42:e8:62:38:d5:c2:8b:db:2e:
                    eb:c0:41:92:e7:0f:30:b6:6c:07:e0:4a:05:63:bd:
                    c4:e3:82:ee:de:e4:bc:41:b1:72:e0:1c:2d:16:86:
                    80:7e:fd:88:ab:7c:1b:3a:ee:5e:96:e7:fd:57:35:
                    c3:2d:53:51:fb:ce:47:82:53:10:4d:50:08:ee:3d:
                    c1:34:16:e8:90:09:5d:e1:7d:44:26:ea:95:ad:7a:
                    47:ef:8b:4f:a6:35:67:03:b7:1c:a2:3b:e2:b0:76:
                    3d:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:0C:6E:10:E7:91:DA:01:5E:DF:8E:70:03:9F:48:B6:26:8F:53:96
            X509v3 Authority Key Identifier:
                keyid:0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:a2:a7:74:80:43:cc:a2:7c:1c:4d:6e:c2:4a:a8:ff:48:14:
         b3:77:1f:7a:04:13:ee:21:d6:57:7e:3f:ad:87:31:c7:4a:b4:
         70:14:d7:51:c8:19:b9:68:3f:6b:e4:29:0a:78:e3:8f:e4:bf:
         76:31:72:17:50:62:c7:25:6b:5c:e0:e2:68:05:80:33:9d:cd:
         cd:98:e3:dc:5c:31:43:31:7c:fd:d5:c8:f6:9a:c3:68:63:6a:
         2b:e4:91:8e:cd:8a:a6:09:63:d1:8a:eb:a6:f4:2e:bf:28:34:
         48:b0:1b:a6:ab:f8:eb:eb:bb:94:b4:98:7e:c5:d0:fe:4a:3b:
         ea:00:c0:6a:67:3c:ae:ac:ab:60:80:e0:a0:a8:77:44:cb:81:
         30:40:b8:b9:05:27:e2:45:78:3e:78:6f:03:5b:bd:c0:87:16:
         72:75:9b:77:7b:c5:92:ac:f7:17:85:5b:61:1d:01:dd:ea:c4:
         b1:31:e9:81:c0:d3:75:d2:f1:75:66:b3:f7:73:3c:f7:ab:5b:
         a6:2d:ea:40:d1:6c:4c:e4:af:5b:5d:ef:3f:24:18:4f:d4:20:
         de:e8:81:08:2f:1a:ea:e4:f6:32:ea:d9:af:e4:c3:4b:f2:62:
         cd:55:94:65:83:ab:5f:b3:15:6d:01:b1:e6:80:02:6b:3f:f1:
         4f:0d:03:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----