Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/0aab87-c85b-4a8a-9dc5-6ce67e0f2593/1/16T_Zj-mcV2wxr_nmpKH6tpss-Y.mft
File:                     16T_Zj-mcV2wxr_nmpKH6tpss-Y.mft (raw, json)
Hash identifier:          O01zrhueDNUxMhSzP6GI16qSHpJeBkdtVtikWO97Q0o=
Subject key identifier:   A2:4F:C3:53:36:4D:22:4B:5B:C5:B0:1D:21:03:2B:28:FD:B8:20:2E
Authority key identifier: D7:A4:FF:66:3F:A6:71:5D:B0:C6:BF:E7:9A:92:87:EA:DA:6C:B3:E6
Certificate issuer:       /CN=d7a4ff663fa6715db0c6bfe79a9287eada6cb3e6
Certificate serial:       0196741DB45FAD71BDA36B525998C3C92733
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/16T_Zj-mcV2wxr_nmpKH6tpss-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/59/0aab87-c85b-4a8a-9dc5-6ce67e0f2593/1/16T_Zj-mcV2wxr_nmpKH6tpss-Y.mft
Manifest number:          150B
Signing time:             Sat 26 Apr 2025 22:00:25 +0000
Manifest this update:     Sat 26 Apr 2025 22:00:25 +0000
Manifest next update:     Sun 27 Apr 2025 22:00:25 +0000
Files and hashes:         1: 16T_Zj-mcV2wxr_nmpKH6tpss-Y.crl (hash: ZhRwKgNb3l5U2YLv1QjCgobdjLlLxQeeU5ubBbCrxxY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/59/0aab87-c85b-4a8a-9dc5-6ce67e0f2593/1/16T_Zj-mcV2wxr_nmpKH6tpss-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/59/0aab87-c85b-4a8a-9dc5-6ce67e0f2593/1/16T_Zj-mcV2wxr_nmpKH6tpss-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/16T_Zj-mcV2wxr_nmpKH6tpss-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 27 Apr 2025 20:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:74:1d:b4:5f:ad:71:bd:a3:6b:52:59:98:c3:c9:27:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d7a4ff663fa6715db0c6bfe79a9287eada6cb3e6
        Validity
            Not Before: Apr 26 22:00:25 2025 GMT
            Not After : Apr 27 22:00:25 2025 GMT
        Subject: CN=a24fc353364d224b5bc5b01d21032b28fdb8202e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:7b:15:40:9b:de:cb:62:7a:f2:70:6e:8f:65:
                    14:12:79:e7:02:9f:9c:0b:98:17:68:cf:e3:d0:2a:
                    71:8d:07:ff:25:7a:c2:f4:3f:6f:84:05:18:94:fd:
                    70:2c:4d:2b:6e:52:16:d7:00:d2:34:6e:17:da:12:
                    f6:43:ad:7e:c0:9c:b2:36:f3:98:8d:04:00:c7:20:
                    69:50:60:24:13:3a:cf:7b:06:2e:b6:0d:23:8b:32:
                    ed:ea:15:c1:32:91:ae:ce:cb:ba:87:e3:cf:54:6b:
                    80:e3:96:37:21:50:51:9e:c8:fa:f6:34:3b:ad:30:
                    e5:4d:66:89:ca:ac:4e:4c:e8:4d:b2:73:99:3f:de:
                    7b:ed:be:a5:d3:97:6a:e7:65:4d:f8:4e:bd:b7:22:
                    c3:c7:97:95:e5:21:0f:2f:8c:63:23:4e:67:3f:96:
                    f1:05:54:13:2f:91:27:8a:06:30:3a:ee:c7:72:37:
                    31:45:a4:f6:62:a4:ea:6a:c8:95:90:d2:9f:81:e0:
                    38:21:e4:f4:85:8d:e9:32:35:f0:6b:0a:51:2a:5c:
                    c8:7f:82:62:b3:9f:8c:61:a2:14:25:65:34:f1:ef:
                    2f:b0:d4:1a:c5:bb:b3:92:b4:ae:27:f1:bd:73:b2:
                    0e:90:3e:5c:1b:bb:52:85:d3:93:8d:0d:59:ee:e2:
                    ea:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:4F:C3:53:36:4D:22:4B:5B:C5:B0:1D:21:03:2B:28:FD:B8:20:2E
            X509v3 Authority Key Identifier:
                keyid:D7:A4:FF:66:3F:A6:71:5D:B0:C6:BF:E7:9A:92:87:EA:DA:6C:B3:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/16T_Zj-mcV2wxr_nmpKH6tpss-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0aab87-c85b-4a8a-9dc5-6ce67e0f2593/1/16T_Zj-mcV2wxr_nmpKH6tpss-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0aab87-c85b-4a8a-9dc5-6ce67e0f2593/1/16T_Zj-mcV2wxr_nmpKH6tpss-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:5f:82:e6:1a:8d:11:20:37:99:43:24:42:80:f8:25:d7:33:
         c2:a4:3a:91:d2:32:47:2f:94:e1:75:ac:42:22:5c:02:4f:4c:
         80:65:ce:87:51:a1:30:c0:f9:02:8a:e0:c5:c1:4e:53:e7:1d:
         ac:35:3e:73:f0:3d:ce:b7:4c:92:d8:e0:ca:f6:14:1c:3c:16:
         db:b1:d5:3b:87:2d:d6:c5:21:04:e3:c9:c2:cd:5b:d3:b6:71:
         ec:81:7c:e5:1c:6a:1e:99:f0:64:d5:c1:3e:24:01:c8:58:6b:
         62:6a:6b:4e:57:d0:e7:69:50:19:df:a4:17:a5:8c:6d:d2:f9:
         a9:c7:67:18:03:6a:ff:5a:3f:d9:40:be:38:19:ba:b4:81:8e:
         20:ac:b7:e2:5a:a9:08:fa:80:d3:16:b2:bb:36:c5:7d:7b:a2:
         8a:3b:e6:d8:83:8d:ed:95:d3:1c:7b:fb:dd:5f:1c:58:b7:92:
         fc:f2:e5:34:6d:2f:5d:e5:f1:7b:2e:07:f5:86:09:8f:93:9b:
         b0:a6:73:5e:4b:e4:69:00:0d:a9:b8:05:e4:f0:3a:50:4c:6b:
         95:64:7e:1c:91:d2:6c:4d:4c:89:20:8a:69:12:b0:3a:3c:6d:
         dc:5c:c1:11:71:1e:0f:3c:04:0b:25:b9:6b:9b:87:bb:8d:0e:
         63:8a:c1:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----