Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
File:                     hVLmDnmh3nUzQ9eBW4cMloDArn8.mft (raw, json)
Hash identifier:          LpaTpHmsP9VWWyasZeUlrK9PYvleD+GS4WgmGuWh4a0=
Subject key identifier:   C1:BF:FD:59:9B:2F:0C:B1:90:16:1E:57:EA:85:CE:2D:C5:BC:F9:76
Authority key identifier: 85:52:E6:0E:79:A1:DE:75:33:43:D7:81:5B:87:0C:96:80:C0:AE:7F
Certificate issuer:       /CN=8552e60e79a1de753343d7815b870c9680c0ae7f
Certificate serial:       01967FB42A0A07BB7BFFDB3454C967A22CC2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
Manifest number:          0AE5
Signing time:             Tue 29 Apr 2025 04:00:35 +0000
Manifest this update:     Tue 29 Apr 2025 04:00:35 +0000
Manifest next update:     Wed 30 Apr 2025 04:00:35 +0000
Files and hashes:         1: hVLmDnmh3nUzQ9eBW4cMloDArn8.crl (hash: fy0rEKOErN2mYc6jks7h1Y8Qp/crEdMbhR0vHq4C42Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 00:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:7f:b4:2a:0a:07:bb:7b:ff:db:34:54:c9:67:a2:2c:c2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8552e60e79a1de753343d7815b870c9680c0ae7f
        Validity
            Not Before: Apr 29 04:00:35 2025 GMT
            Not After : Apr 30 04:00:35 2025 GMT
        Subject: CN=c1bffd599b2f0cb190161e57ea85ce2dc5bcf976
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:eb:d1:43:bd:33:38:ba:01:d7:d8:fb:f2:c0:
                    99:1e:d6:a5:be:bd:b5:a2:58:92:a6:52:d3:fe:1c:
                    e5:95:ea:18:bb:ad:2f:39:db:9e:4b:6e:00:10:74:
                    fa:e9:8f:73:92:8b:bb:8b:b2:61:bd:a3:aa:40:ba:
                    a9:b9:f5:c1:2b:6e:84:d8:92:66:eb:d7:1f:7a:23:
                    9c:67:ed:19:45:65:80:81:62:f3:50:b5:06:9d:99:
                    89:74:07:a1:c5:af:f0:93:16:9b:98:b6:32:82:8d:
                    ea:71:97:ec:3f:35:ea:5a:f2:b1:94:06:11:e3:c6:
                    74:cd:91:23:fc:09:fb:e5:3f:ef:d9:43:96:3d:98:
                    35:0e:77:d5:5b:e6:09:9f:c8:70:23:33:cd:71:62:
                    b6:bc:ab:ba:11:27:46:aa:38:2f:95:b9:c6:48:cd:
                    15:de:66:a2:fc:7d:82:26:94:9f:b4:37:ce:90:b1:
                    2a:7f:87:a7:f0:37:18:2d:60:b3:4b:5e:67:52:27:
                    13:76:43:a7:5e:c0:2e:97:b0:40:9f:6c:4a:f2:cb:
                    8c:10:61:f0:04:c0:dc:53:36:7d:19:e3:50:82:fe:
                    21:7e:cb:df:8a:c9:af:e9:9c:ef:e5:7a:17:c9:b9:
                    0b:ce:e4:65:91:bb:53:af:33:7c:4b:82:e6:a0:62:
                    7f:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:BF:FD:59:9B:2F:0C:B1:90:16:1E:57:EA:85:CE:2D:C5:BC:F9:76
            X509v3 Authority Key Identifier:
                keyid:85:52:E6:0E:79:A1:DE:75:33:43:D7:81:5B:87:0C:96:80:C0:AE:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:e0:98:0d:6c:01:80:80:6d:71:ef:f5:4f:0f:52:c9:c8:00:
         20:7d:83:41:9b:f6:55:46:5a:6e:73:70:af:f7:af:88:d6:19:
         15:86:64:28:70:82:a8:a2:66:bd:f9:8a:a1:b8:5d:63:f9:0b:
         5a:43:35:4d:05:15:d8:e9:44:c7:55:2f:ce:40:0e:90:6c:08:
         53:07:dd:99:e9:ca:9d:83:a9:2a:6d:fa:06:f8:7b:f8:73:eb:
         a7:54:d6:99:b3:e3:16:55:2a:16:d2:e2:3b:8b:a5:c5:f4:5c:
         f9:86:0d:f9:16:3d:d0:2e:a3:78:ce:aa:12:36:5f:7b:1f:96:
         24:dc:95:06:9c:e2:40:b2:cd:4d:da:b7:6a:ad:ab:42:ba:8c:
         80:81:47:08:b9:9b:cc:4c:f5:6d:88:a2:cc:9b:25:4a:00:11:
         89:ca:23:61:d6:6d:ce:72:c5:05:a0:fd:59:57:e9:a8:e4:c3:
         23:6e:95:2a:15:5f:1e:14:6f:51:aa:5c:29:6f:a7:41:1e:ab:
         ce:33:2b:c4:45:5f:e6:ad:3a:9b:d0:ff:2c:f2:56:b8:95:21:
         2b:1e:4f:59:9c:67:7a:cd:02:5c:b0:9d:15:e4:34:c6:c8:5f:
         76:c0:81:56:ad:fd:ef:34:db:53:b6:f9:a2:48:18:74:df:e3:
         cf:04:04:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----