Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
File:                     oJD-k_R_g4ea4suDVIjNn31pm8A.mft (raw, json)
Hash identifier:          LhI+/3fr1hMdybb03bNk79E2N9v/eNJ/Dnqr2J6sOtU=
Subject key identifier:   42:BF:0B:2E:CF:9A:D5:5A:52:3C:CB:4D:AC:24:3B:8A:5F:6D:46:E0
Authority key identifier: A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0
Certificate issuer:       /CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0
Certificate serial:       018F8748942ED087F9EE053EFAB714837CE9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
Manifest number:          1176
Signing time:             Fri 17 May 2024 16:00:31 +0000
Manifest this update:     Fri 17 May 2024 16:00:31 +0000
Manifest next update:     Sat 18 May 2024 16:00:31 +0000
Files and hashes:         1: oJD-k_R_g4ea4suDVIjNn31pm8A.crl (hash: bkMl/9yzmNsAiezq0eN3pa9KSQr6wE34nr1pXqVxenU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:94:2e:d0:87:f9:ee:05:3e:fa:b7:14:83:7c:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0
        Validity
            Not Before: May 17 16:00:31 2024 GMT
            Not After : May 18 16:00:31 2024 GMT
        Subject: CN=42bf0b2ecf9ad55a523ccb4dac243b8a5f6d46e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:3d:f4:7c:99:5f:de:bd:41:41:0d:75:fc:fa:
                    8a:55:2b:10:dc:d2:45:61:04:21:54:c2:4f:c4:be:
                    ff:61:ba:1a:9d:af:2a:38:2c:d1:86:9e:ea:2f:e8:
                    b5:a7:0f:8d:c2:fb:4f:7d:11:87:0d:c8:5e:38:ce:
                    80:f0:47:3f:d0:bd:4e:88:97:8f:1e:15:01:39:af:
                    4d:7b:0d:02:3c:f3:b7:05:05:ff:b3:b8:da:a8:6b:
                    d3:65:66:e7:c3:f5:ae:04:01:fd:13:f3:30:bc:4f:
                    19:ca:e6:2a:69:4b:a1:b1:94:f4:bf:4d:46:bd:2f:
                    99:63:1a:c6:93:14:3c:1b:b5:08:4e:96:fb:c7:ec:
                    2f:75:eb:09:e5:c0:8f:b7:72:43:bd:82:95:1a:82:
                    16:10:61:a8:34:81:e6:c8:2f:03:e9:63:94:2c:21:
                    32:14:e0:be:f5:0b:c4:a9:b2:53:0e:29:52:64:1b:
                    f7:7c:91:c3:55:2b:a2:51:fe:5e:6c:2b:56:7f:d4:
                    c0:d9:b3:83:d3:89:b0:da:36:2d:ed:65:bb:33:1a:
                    56:4b:9b:3d:3c:4f:68:33:d7:16:8e:52:c6:72:24:
                    a5:92:b4:28:fa:43:21:12:e7:ac:cd:28:8b:80:ef:
                    fc:c1:5f:df:bb:89:4f:9f:bb:d6:4d:c2:59:3d:0d:
                    09:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:BF:0B:2E:CF:9A:D5:5A:52:3C:CB:4D:AC:24:3B:8A:5F:6D:46:E0
            X509v3 Authority Key Identifier:
                keyid:A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:f4:73:78:d9:02:19:09:e5:5c:56:0b:99:d4:bb:66:49:91:
         88:53:11:41:78:cd:09:c6:24:42:ac:46:30:97:8e:8f:d7:52:
         5a:8a:2b:a1:4b:c2:43:ed:a2:86:31:91:35:59:dc:ae:c2:16:
         ae:15:8b:73:a0:ef:a5:d0:05:f7:37:71:a4:a6:22:6f:56:20:
         71:31:7f:2c:37:d0:9e:94:a2:13:64:54:c5:02:d7:33:a2:58:
         0e:44:03:e7:d2:67:49:e1:18:3e:48:af:d9:60:71:5c:4f:43:
         0c:e7:8b:10:c2:ad:65:bc:84:53:15:ea:fe:b0:8c:4e:73:1c:
         ea:f9:ac:44:1f:8b:14:f6:c9:33:12:9a:d2:25:d6:90:e9:1b:
         c5:6c:01:14:80:54:ad:1e:d9:85:2c:65:ab:49:b2:96:ce:9c:
         d2:c8:fd:2e:94:e7:7c:87:05:5d:c9:6c:e8:2b:b7:e5:ad:34:
         f8:d6:48:96:25:0d:ac:19:f9:5a:d5:38:f6:ac:fa:9b:d4:74:
         03:35:ff:38:bc:b4:74:cf:8f:8d:11:05:b1:23:00:d1:0f:20:
         97:0c:7c:fd:1a:0a:af:1b:ec:0a:20:05:50:8d:33:dd:17:72:
         fd:26:c5:11:1e:78:13:a0:f4:98:82:e1:38:cd:30:27:47:46:
         ed:68:6c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----