Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
File:                     hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json)
Hash identifier:          aQJThOE+0v8/DhJg9lB2Lr48B4TlfnUt1VIYH7yoUII=
Subject key identifier:   5C:85:2F:45:7E:D9:F7:13:B0:84:F3:E3:CA:E6:D5:DB:B3:8C:73:BF
Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
Certificate issuer:       /CN=85512d19d37946cd4c236f890469635751f5d904
Certificate serial:       018FB42234B2F1BE7D3CA6D5B41C3E32B14E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
Manifest number:          118A
Signing time:             Sun 26 May 2024 09:01:31 +0000
Manifest this update:     Sun 26 May 2024 09:01:31 +0000
Manifest next update:     Mon 27 May 2024 09:01:31 +0000
Files and hashes:         1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: Rv5CnJLpfsWsO5yofVYudBrzNIKZizkosSV3gHp0u6g=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 27 May 2024 08:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:b4:22:34:b2:f1:be:7d:3c:a6:d5:b4:1c:3e:32:b1:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85512d19d37946cd4c236f890469635751f5d904
        Validity
            Not Before: May 26 09:01:31 2024 GMT
            Not After : May 27 09:01:31 2024 GMT
        Subject: CN=5c852f457ed9f713b084f3e3cae6d5dbb38c73bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:60:23:4f:c3:1f:ce:54:8d:d5:9f:c1:5d:84:
                    5d:ac:d7:80:7d:3e:bb:b4:9a:a9:84:93:a2:60:51:
                    69:2d:bf:10:c1:25:3d:32:a4:f1:26:e5:e3:c1:ad:
                    fc:da:98:bb:fc:97:3d:98:ec:c5:64:f9:cc:07:b1:
                    52:3d:b2:54:36:0b:a3:0a:4f:87:83:73:11:34:06:
                    4b:9b:e2:db:ce:cc:93:1b:c2:98:6a:4b:31:df:c1:
                    54:ea:84:1d:10:2a:af:c7:32:15:02:2c:ea:20:66:
                    28:d5:df:b9:49:6a:b4:ce:ac:a0:58:ca:11:be:6f:
                    24:13:7b:51:44:c0:7b:b9:9e:f5:f1:d0:5d:6d:d4:
                    3e:64:f8:2d:79:ca:af:a8:84:e9:d5:cd:6f:64:01:
                    19:ef:7a:f2:ff:c6:b7:04:d9:f3:7d:21:43:4f:8b:
                    57:e9:90:6b:b6:ea:4e:57:a7:6c:a6:b5:43:38:5b:
                    a7:41:6a:71:5e:69:2b:bd:24:86:ff:cd:7b:a0:fc:
                    73:36:d8:72:c4:c8:fa:fb:ec:ad:df:dc:3d:f2:17:
                    7f:ce:a7:3f:42:a9:d6:ac:cc:ae:59:60:71:22:99:
                    c6:98:da:16:40:99:5f:ec:7f:5d:e5:ca:fa:39:15:
                    e4:aa:c0:f6:a2:2d:3e:d2:73:11:51:ef:9d:0d:c3:
                    7f:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:85:2F:45:7E:D9:F7:13:B0:84:F3:E3:CA:E6:D5:DB:B3:8C:73:BF
            X509v3 Authority Key Identifier:
                keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:78:99:5d:22:c8:95:c5:eb:4f:97:9c:aa:5c:09:97:74:66:
         bc:10:0d:54:52:7b:00:5f:41:f6:56:cb:10:0a:c8:8c:68:ae:
         db:cd:ab:f3:25:ec:3a:c0:8c:be:2b:71:85:f7:e4:2e:7a:8f:
         d4:0d:4c:a3:1c:20:a1:5e:80:86:a8:e4:55:45:dd:db:ee:e4:
         5c:3a:78:cd:9b:d8:61:22:e9:e9:e2:2d:c2:4d:d8:2e:b8:58:
         08:a8:fa:ba:5e:24:e3:cc:4f:39:4d:8a:45:59:76:80:79:99:
         3a:1b:76:6e:d6:f2:09:14:02:b5:cc:e3:6a:d0:32:ac:72:aa:
         74:3f:11:bd:4e:4d:16:b8:a7:67:0f:89:5c:e0:ed:60:f2:8c:
         65:83:9d:ee:35:63:3b:0a:af:a9:7e:c3:2f:66:c0:e9:68:f9:
         c7:c5:57:13:61:09:59:4d:e3:5a:39:03:65:0a:b1:bc:07:50:
         77:7e:d9:3a:76:1f:1c:4c:ea:42:cb:0d:b4:65:3f:85:9f:0e:
         4a:84:30:72:6b:50:2c:b8:80:95:26:f2:f9:c0:63:9a:3d:e4:
         6c:b6:7c:cb:9b:0b:3b:df:79:2e:78:4d:f7:c4:8f:08:b5:73:
         5c:ce:88:58:1a:ff:1d:05:c1:df:39:65:e1:1d:a4:d6:3f:b5:
         cd:a3:a7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----