Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft
File:                     MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft (raw, json)
Hash identifier:          ABd/73JG/kCQWfht8w74m6wGpckxom52N3iizrjJIaQ=
Subject key identifier:   92:80:28:CD:CF:0D:1D:DD:8E:F8:97:08:18:C4:3F:96:23:45:5F:98
Authority key identifier: 31:3D:A1:93:57:CB:C6:7D:A7:D5:5F:A3:5A:AB:36:95:BC:04:D0:4F
Certificate issuer:       /CN=313da19357cbc67da7d55fa35aab3695bc04d04f
Certificate serial:       018F874B123B7551A6D666B9222DC4795D96
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MT2hk1fLxn2n1V-jWqs2lbwE0E8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft
Manifest number:          04E7
Signing time:             Fri 17 May 2024 16:03:15 +0000
Manifest this update:     Fri 17 May 2024 16:03:15 +0000
Manifest next update:     Sat 18 May 2024 16:03:15 +0000
Files and hashes:         1: MT2hk1fLxn2n1V-jWqs2lbwE0E8.crl (hash: 2xOpr4I50dJ4f+LPf4/f3K4gvHT3RM4YFWNDemqJUCU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MT2hk1fLxn2n1V-jWqs2lbwE0E8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:03:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4b:12:3b:75:51:a6:d6:66:b9:22:2d:c4:79:5d:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=313da19357cbc67da7d55fa35aab3695bc04d04f
        Validity
            Not Before: May 17 16:03:15 2024 GMT
            Not After : May 18 16:03:15 2024 GMT
        Subject: CN=928028cdcf0d1ddd8ef8970818c43f9623455f98
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:8e:af:b0:c7:3b:75:3e:8f:4e:4d:0b:62:06:
                    aa:97:ff:a5:5e:80:d1:83:c1:b2:28:7d:9f:73:bd:
                    08:e1:09:78:86:5d:5b:2b:6b:7d:81:ce:c4:89:46:
                    9f:c1:a4:0d:5a:c6:2d:e4:d2:20:74:03:af:3a:9f:
                    a4:4d:e9:aa:8b:5a:cd:8c:3d:79:70:49:f5:d6:e6:
                    02:be:8f:f4:f4:bb:c7:2a:e0:15:c2:af:7a:29:2b:
                    b8:30:f0:af:c4:9a:49:8b:b1:41:fe:a0:89:a5:fc:
                    45:c5:2a:02:7c:7d:af:b2:8f:98:56:70:27:94:1e:
                    30:f6:25:ca:06:70:1b:0b:23:d3:77:fe:7b:a7:17:
                    19:2f:db:29:57:a6:38:b8:e6:0b:a6:ff:ed:b0:1e:
                    c3:99:4e:b9:c1:b5:aa:ec:53:4e:4d:ea:0e:f1:00:
                    38:58:b5:7a:49:f8:23:69:a1:4a:e7:5f:7c:e7:11:
                    35:4e:65:cb:19:5d:21:8f:a7:72:82:4c:16:1b:6f:
                    92:aa:bb:b7:ba:a9:d0:99:67:ae:e1:75:78:6e:53:
                    b0:6f:a6:76:15:ee:58:cb:80:0c:46:64:91:70:54:
                    0b:5b:0b:70:49:1e:98:98:c1:0d:22:8a:d5:80:40:
                    1d:52:ee:e6:79:dc:0d:84:2e:80:50:28:89:d6:16:
                    0c:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:80:28:CD:CF:0D:1D:DD:8E:F8:97:08:18:C4:3F:96:23:45:5F:98
            X509v3 Authority Key Identifier:
                keyid:31:3D:A1:93:57:CB:C6:7D:A7:D5:5F:A3:5A:AB:36:95:BC:04:D0:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MT2hk1fLxn2n1V-jWqs2lbwE0E8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/063bc3-8c76-475e-b9f1-f0bbbebbd6a9/1/MT2hk1fLxn2n1V-jWqs2lbwE0E8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:77:1a:06:7f:1c:45:25:bf:27:e5:98:ad:5c:91:b7:cb:25:
         fe:11:75:37:5d:8f:91:ee:ab:32:b3:ac:d1:74:6c:24:8a:4c:
         b1:1d:54:a8:1a:ae:07:10:e3:03:71:13:8a:d6:83:91:23:13:
         5f:8b:0b:4e:22:e0:0d:da:ae:29:a0:15:1f:4c:79:d2:ed:6a:
         d6:73:0e:3a:97:d0:80:8c:8f:09:ac:82:0c:09:2f:f5:ac:b2:
         6e:1d:6a:6f:9a:7e:4f:fa:0f:66:c9:b3:ad:8c:94:b5:1b:36:
         9d:57:d5:fe:aa:70:f2:2b:dd:01:09:29:ef:a2:85:5b:78:6a:
         9c:4b:68:9a:93:c7:7b:47:23:50:b4:16:ed:ca:c4:88:ad:7c:
         fd:ef:47:03:d3:e9:17:53:2f:3b:43:7c:3f:fd:83:48:7d:19:
         db:2c:d5:dd:a6:f9:f2:a3:15:56:2c:09:76:5c:3a:1d:56:ba:
         54:fb:0e:22:60:69:e6:23:a9:d0:db:5d:2d:b2:ec:9d:48:13:
         1c:d8:32:e0:17:43:66:65:ba:95:cb:f0:fb:87:14:c4:42:17:
         28:d4:9f:36:56:79:65:40:b6:46:7d:27:7b:7b:c0:cf:eb:66:
         90:40:f2:24:8d:8b:a4:4b:de:26:3a:e0:da:b4:46:96:a3:60:
         2e:87:29:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----