Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
File:                     yigmXgq4MyeqVJI0yrsT64_2ZDc.mft (raw, json)
Hash identifier:          7+xiyEM7MfCUg5x+W1u9m+r5wD9LFx5GIk5otu0XuMM=
Subject key identifier:   7E:63:48:E4:F5:46:A5:79:32:09:41:B3:87:30:51:2A:A2:31:3C:20
Authority key identifier: CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37
Certificate issuer:       /CN=ca28265e0ab83327aa549234cabb13eb8ff66437
Certificate serial:       0196808FDFFEB09FA8416B0375AA54D90F81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
Manifest number:          0E75
Signing time:             Tue 29 Apr 2025 08:00:34 +0000
Manifest this update:     Tue 29 Apr 2025 08:00:34 +0000
Manifest next update:     Wed 30 Apr 2025 08:00:34 +0000
Files and hashes:         1: yigmXgq4MyeqVJI0yrsT64_2ZDc.crl (hash: 0gXK+TysOgget5X3uqLYRpGJrum+9Qs2YGiRjrv/5iU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 08:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:80:8f:df:fe:b0:9f:a8:41:6b:03:75:aa:54:d9:0f:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca28265e0ab83327aa549234cabb13eb8ff66437
        Validity
            Not Before: Apr 29 08:00:34 2025 GMT
            Not After : Apr 30 08:00:34 2025 GMT
        Subject: CN=7e6348e4f546a579320941b38730512aa2313c20
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:44:1e:9c:04:53:0e:71:ae:a3:d1:c0:47:1c:
                    60:e8:28:74:40:00:03:87:dd:aa:55:27:fb:d6:30:
                    62:7b:1f:7d:8b:18:9a:60:37:a8:f3:a9:11:e2:66:
                    b2:2a:4e:a9:8a:2f:bb:fe:8f:47:37:df:ea:2e:51:
                    15:d3:1f:10:fc:ef:b5:68:a5:b2:e7:fe:dc:cb:5b:
                    05:a4:aa:78:d2:88:74:1e:76:4b:0a:1f:0c:6f:60:
                    f8:72:36:cc:b7:0d:b6:f9:c4:10:30:3a:47:09:fb:
                    bc:87:d7:d1:cb:d6:0a:ed:5b:15:6a:fe:a6:5c:b8:
                    b0:b1:3d:53:74:85:ae:12:ec:29:37:c8:98:3f:e7:
                    d6:85:a1:1b:3c:21:3e:95:79:7e:d0:c6:35:f4:a6:
                    b8:1f:a8:5d:39:e5:d4:98:1e:65:49:61:0b:fe:99:
                    37:31:af:78:60:ea:00:60:b1:65:80:62:c8:92:47:
                    fd:27:da:e2:60:d3:a8:a7:00:b9:f3:b3:fd:8c:27:
                    67:d9:2f:c4:2d:7e:b4:86:fe:8f:ab:3d:ee:0f:0d:
                    5d:a7:b8:58:e3:a3:06:81:8c:8b:52:2c:16:59:4f:
                    72:9f:c0:0a:11:16:c9:af:6d:1d:ca:95:af:3b:11:
                    b5:15:a9:6a:02:a6:18:0d:54:09:65:10:b5:24:31:
                    16:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:63:48:E4:F5:46:A5:79:32:09:41:B3:87:30:51:2A:A2:31:3C:20
            X509v3 Authority Key Identifier:
                keyid:CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:d6:55:b7:ea:3c:ff:86:4b:1f:78:fd:d4:3a:51:b1:c7:2a:
         91:1d:88:38:84:21:2e:06:92:16:eb:79:ae:47:35:c0:42:81:
         31:1c:b9:6e:2f:04:0e:f7:d1:2d:1a:6d:9d:58:27:18:02:e4:
         0e:fd:7e:1b:9a:c6:96:bf:d5:23:1f:fb:5c:d0:4d:b9:91:22:
         d6:d4:c9:31:34:ca:7e:1d:2a:99:76:9c:4d:bf:5e:12:29:06:
         97:a9:19:13:b9:ee:81:c2:a0:a0:5b:71:84:91:8f:80:ac:5e:
         e8:cf:4b:55:2c:03:21:bc:0f:97:51:b5:48:be:21:5a:bd:f5:
         b1:eb:5f:a2:68:9d:27:6c:ff:1e:ab:b8:e1:c8:b1:d8:03:5d:
         4b:79:a0:d1:b9:75:db:e2:f8:15:d3:c4:e2:9a:9e:1b:3a:d1:
         37:3f:05:85:64:4b:58:de:74:88:75:a1:e7:b6:c0:b6:58:b9:
         90:3d:a3:8a:a7:4e:e7:ee:3c:1e:ba:8e:07:a4:83:2b:c9:57:
         00:b3:b2:0d:02:2b:45:ca:dd:25:15:42:bf:c8:37:b6:76:7f:
         c4:2e:f6:54:bd:06:ab:15:28:f5:b9:aa:71:f2:6d:3e:bf:68:
         86:1d:dc:1b:7f:2a:5f:d5:93:c2:ea:91:4f:41:50:41:2d:8b:
         fd:b4:96:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 14:32:45 2025 by rpki-client