Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
File:                     AOezY1s9V4VgNwpYMDz81c2SkQU.mft (raw, json)
Hash identifier:          KxoZtCZzuXPmNQm6FPDkDzL3aZopL+G7r+zi1Z+8cg4=
Subject key identifier:   E7:5B:38:1F:2F:72:65:87:50:E3:06:62:5D:66:22:31:30:68:1F:12
Authority key identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05
Certificate issuer:       /CN=00e7b3635b3d578560370a58303cfcd5cd929105
Certificate serial:       01935689023EC90C1EA1C462FDE55FE8355C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
Manifest number:          0A83
Signing time:             Sat 23 Nov 2024 01:00:39 +0000
Manifest this update:     Sat 23 Nov 2024 01:00:39 +0000
Manifest next update:     Sun 24 Nov 2024 01:00:39 +0000
Files and hashes:         1: AOezY1s9V4VgNwpYMDz81c2SkQU.crl (hash: kGgkl6UvpsJSlVAyJ6JJOINIeqQ0Da41LG7/BL1qJNI=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 01:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:56:89:02:3e:c9:0c:1e:a1:c4:62:fd:e5:5f:e8:35:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00e7b3635b3d578560370a58303cfcd5cd929105
        Validity
            Not Before: Nov 23 01:00:39 2024 GMT
            Not After : Nov 24 01:00:39 2024 GMT
        Subject: CN=e75b381f2f72658750e306625d66223130681f12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:d4:9e:66:e5:7e:7c:68:c7:b6:75:bb:e5:ab:
                    bf:2e:8b:25:13:c4:d5:93:da:5c:fd:31:de:62:09:
                    7c:d6:3a:d0:78:61:81:67:f7:70:5b:33:17:34:e2:
                    ae:94:82:26:81:81:9a:48:a3:38:83:b7:4a:8b:10:
                    5f:0b:bc:53:8c:8d:a5:20:bf:04:5f:d9:66:8d:3a:
                    ff:ad:ba:c0:3d:66:a3:8d:f4:00:53:f3:96:3c:9a:
                    73:2f:24:3e:af:4e:a5:c7:d0:ad:5a:12:a8:2e:40:
                    5b:7c:6d:f9:c8:3c:f4:c2:48:f9:e2:d8:41:e8:b2:
                    12:1a:35:f7:df:d6:e1:c1:03:fe:09:14:ed:53:8f:
                    1b:4f:d8:cc:4f:18:b9:31:1e:e4:17:86:85:86:c8:
                    bc:c3:a4:6b:2e:db:40:d1:d1:7d:30:14:36:dd:84:
                    68:de:0f:26:2f:cd:34:ab:01:06:35:bf:f8:af:85:
                    72:22:d9:57:fe:a5:54:d9:f6:f4:6f:9b:43:85:38:
                    05:90:92:f5:4a:3a:b4:21:5e:55:19:e7:5e:4b:ea:
                    05:4f:d8:e0:c2:6f:72:77:34:04:f3:7b:ef:03:cf:
                    49:01:be:0e:a6:fd:c1:34:c3:f2:3e:9b:84:01:b2:
                    88:53:df:79:85:f5:03:d3:37:90:ae:23:c3:78:2c:
                    37:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:5B:38:1F:2F:72:65:87:50:E3:06:62:5D:66:22:31:30:68:1F:12
            X509v3 Authority Key Identifier:
                keyid:00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:68:c0:9f:69:90:0a:3e:fe:64:9e:ad:b9:46:00:f2:bf:fe:
         a2:8d:51:72:cd:bc:34:eb:a4:a3:22:a6:c3:7a:e4:51:4a:ed:
         94:ae:4f:53:34:0f:1a:fc:00:7d:01:bd:aa:c0:a9:3b:4f:37:
         00:45:6d:a4:55:c4:5d:d1:21:4e:05:fb:0b:96:ee:e5:f9:3a:
         5d:70:34:62:b3:e0:71:14:e6:cb:d6:16:9b:ff:6f:52:ab:c1:
         10:5c:d6:14:6e:ab:bc:ed:1d:4f:33:b5:aa:ab:e2:d6:8a:dd:
         11:7e:b9:bb:49:fb:a1:92:cc:62:80:f2:fd:c4:f8:3a:90:98:
         b6:03:cd:2d:02:dd:ae:97:e1:2b:9c:40:9b:3f:4d:94:d5:1b:
         ed:df:53:7b:a9:55:cb:f3:95:ab:4c:6b:18:02:4d:a9:39:db:
         31:c0:9a:0a:99:f2:ad:12:70:3a:b4:73:74:76:c8:5e:90:2c:
         7e:fd:97:f7:24:d5:64:8d:ec:58:5e:bf:9c:dc:b1:4b:d4:cb:
         e3:ab:0c:9b:3d:4e:97:1e:58:75:f4:57:07:65:30:3a:94:e4:
         24:15:be:46:13:44:52:f5:2b:39:58:21:7c:8a:dc:df:26:7a:
         e4:60:4b:04:28:39:1f:a7:f6:20:cc:bd:76:85:46:ff:ae:3b:
         28:bb:a8:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----