Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
File:                     CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft (raw, json)
Hash identifier:          y6NPq/t5JUbWk9abNgZ4S9XrHQhk8HK+t9Oi+zU0XhU=
Subject key identifier:   9F:02:CB:D1:B3:B4:A7:E1:E5:80:8D:46:9D:AE:B9:FF:AD:BE:59:D4
Authority key identifier: 08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0
Certificate issuer:       /CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
Certificate serial:       019369DA005E3ABDB77F501FD45CEED486BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
Manifest number:          0814
Signing time:             Tue 26 Nov 2024 19:01:54 +0000
Manifest this update:     Tue 26 Nov 2024 19:01:54 +0000
Manifest next update:     Wed 27 Nov 2024 19:01:54 +0000
Files and hashes:         1: CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl (hash: iAfUgXEFUFPJGBy1Zg5WEmF4Qw/1G6Kh1avge1Tt1dw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:da:00:5e:3a:bd:b7:7f:50:1f:d4:5c:ee:d4:86:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
        Validity
            Not Before: Nov 26 19:01:54 2024 GMT
            Not After : Nov 27 19:01:54 2024 GMT
        Subject: CN=9f02cbd1b3b4a7e1e5808d469daeb9ffadbe59d4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:e5:fc:ea:c0:83:49:1f:88:27:2a:02:b8:f2:
                    cc:b4:3a:82:8d:03:d5:c6:bc:f4:4c:ff:dc:3a:31:
                    7b:ac:a0:ae:2a:7a:9e:69:31:7c:25:db:35:37:04:
                    b5:ff:76:a4:8e:9d:d5:00:53:8e:fe:1b:77:df:e5:
                    33:98:99:6b:b7:f6:52:79:7e:17:bb:a0:21:c3:77:
                    18:58:7f:e4:31:89:ad:a4:74:11:f0:ec:54:75:a0:
                    ee:54:f4:b9:4e:db:a2:9c:1c:70:ad:fd:93:b1:f0:
                    a3:4b:30:cb:3c:1e:07:70:ee:f3:f8:c6:b8:ef:fa:
                    68:d4:7b:ca:83:86:ca:8b:e8:79:39:57:0e:6c:b1:
                    76:dd:08:3b:e3:78:13:a5:cb:09:19:c3:ed:80:cf:
                    8a:3e:98:96:0d:eb:cd:ab:e2:f9:1a:d7:4e:ef:69:
                    c1:14:c9:5c:43:04:d9:43:0e:29:e5:dc:1e:77:62:
                    48:10:20:a7:26:cf:7b:ff:4c:28:af:d9:62:e0:d6:
                    ba:9f:9e:fa:73:81:df:d0:73:2c:be:91:15:17:61:
                    4f:ce:aa:3b:3a:ec:8a:f5:b4:43:4e:e9:cd:8b:9c:
                    ba:fa:30:9c:6a:c4:20:24:7e:d0:8f:0d:96:1b:2d:
                    8d:3a:90:7b:b8:f6:18:6c:7b:72:2e:52:c6:81:6e:
                    f8:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:02:CB:D1:B3:B4:A7:E1:E5:80:8D:46:9D:AE:B9:FF:AD:BE:59:D4
            X509v3 Authority Key Identifier:
                keyid:08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:43:e8:df:d3:c3:cd:74:46:8c:0d:da:9c:fd:6a:38:46:97:
         bc:c5:f7:28:70:45:1f:ec:99:43:0a:5e:92:d6:76:50:f4:94:
         0c:4c:b3:5a:8b:ba:ea:8f:1f:d4:7a:fc:89:5e:56:e5:76:f4:
         08:eb:39:24:97:c8:8e:1e:7b:0f:74:8d:ee:f5:2e:72:0d:a6:
         02:e3:c6:bf:22:31:a1:60:85:d9:43:99:b3:34:c1:5a:c4:66:
         d8:a6:3f:14:50:34:01:9e:0f:77:08:8c:48:1a:9c:80:9c:5a:
         6e:64:7b:2e:7b:b5:0e:4e:12:48:92:db:a2:f7:ff:59:a4:c9:
         80:72:7f:09:0f:c1:0c:c5:a4:a0:e2:7d:7b:56:db:91:95:ac:
         01:8e:96:ec:cd:85:f0:5f:cb:a1:8b:5b:ca:02:08:33:1c:c3:
         70:8a:80:a0:dc:c7:8c:8f:2f:21:97:ae:91:81:43:46:74:3a:
         bb:e1:4e:4e:71:04:e2:2e:bb:29:f9:1b:1c:bd:42:5d:68:8a:
         db:a5:f4:d2:f2:2b:13:3b:c8:37:2d:54:18:69:87:69:5d:de:
         a5:30:a5:c4:4c:d1:12:77:c6:85:e3:9a:cc:b7:83:e0:49:1f:
         12:f8:9a:5e:fe:2e:54:b9:a8:bb:37:d4:6f:9e:05:f3:34:7f:
         f8:6a:a1:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----