Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
File:                     sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft (raw, json)
Hash identifier:          iwtF9Dr3qg+qHxay1MMUov/DZY1NMcqjgPaTF+uploY=
Subject key identifier:   E8:E3:5E:8E:0C:D5:F5:B3:FD:DC:03:C0:C0:39:89:52:C7:47:E6:F1
Authority key identifier: B0:BB:87:D2:0C:C4:20:DF:41:E0:90:C3:3B:4C:40:EF:CB:0D:D8:78
Certificate issuer:       /CN=b0bb87d20cc420df41e090c33b4c40efcb0dd878
Certificate serial:       01967F7D0CF1BA3F6CBC614D9FB777DFA64D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sLuH0gzEIN9B4JDDO0xA78sN2Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
Manifest number:          1512
Signing time:             Tue 29 Apr 2025 03:00:23 +0000
Manifest this update:     Tue 29 Apr 2025 03:00:23 +0000
Manifest next update:     Wed 30 Apr 2025 03:00:23 +0000
Files and hashes:         1: sLuH0gzEIN9B4JDDO0xA78sN2Hg.crl (hash: /2ODyi62HDHFvSJUXsrE7Wg2I1u5XSIYLyFGsae5lQI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sLuH0gzEIN9B4JDDO0xA78sN2Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 03:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:7f:7d:0c:f1:ba:3f:6c:bc:61:4d:9f:b7:77:df:a6:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0bb87d20cc420df41e090c33b4c40efcb0dd878
        Validity
            Not Before: Apr 29 03:00:23 2025 GMT
            Not After : Apr 30 03:00:23 2025 GMT
        Subject: CN=e8e35e8e0cd5f5b3fddc03c0c0398952c747e6f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:64:8d:9f:82:ee:15:61:39:8a:9f:6b:0c:8e:
                    2d:c4:6f:4d:aa:e6:85:c4:b2:77:ca:df:1b:f3:0a:
                    35:68:b5:1e:4c:bb:1c:99:e0:e1:d4:56:a0:c9:26:
                    a8:e0:2d:64:90:a1:65:79:6e:a5:69:b2:c7:ca:47:
                    bd:f8:37:df:e4:39:c0:d7:fe:62:5d:78:80:31:5b:
                    7a:b9:35:a9:1d:fe:a3:b7:ba:e6:b5:2a:8b:f6:4d:
                    4b:50:a8:ad:b8:85:22:2b:58:74:20:23:d5:cd:f1:
                    fa:d0:93:c5:49:3d:97:75:19:a6:88:0f:ac:eb:09:
                    9e:51:b2:22:73:7b:9a:72:d3:06:31:db:45:39:5d:
                    56:37:90:18:a3:a1:09:5b:b3:8a:de:01:a8:e9:00:
                    33:b8:fb:47:31:5f:67:56:34:f9:b6:59:3a:b0:34:
                    b7:0d:bd:01:3a:cf:d8:8a:56:c8:dd:ea:34:f4:97:
                    c0:6f:a2:84:bb:1a:29:15:45:9c:df:48:dc:90:30:
                    76:72:88:9c:e8:fe:8f:25:96:78:a5:97:e2:28:c0:
                    78:ca:bb:20:e7:cc:b3:02:76:8c:77:fa:2e:f2:49:
                    f9:de:65:8d:64:57:d8:2a:a2:b0:d8:5d:81:f7:06:
                    14:9b:94:95:28:0b:b3:51:7e:87:78:06:94:1d:4a:
                    0b:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:E3:5E:8E:0C:D5:F5:B3:FD:DC:03:C0:C0:39:89:52:C7:47:E6:F1
            X509v3 Authority Key Identifier:
                keyid:B0:BB:87:D2:0C:C4:20:DF:41:E0:90:C3:3B:4C:40:EF:CB:0D:D8:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLuH0gzEIN9B4JDDO0xA78sN2Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:68:ed:eb:8c:10:5c:20:7a:cc:9d:98:1a:e0:82:4e:00:32:
         ec:be:33:c6:d2:17:14:b4:69:96:d3:2e:9d:29:35:7e:7f:e5:
         fc:d2:21:f1:51:de:00:d5:0a:dd:6c:7b:ea:2f:5c:5a:e3:47:
         ab:df:59:b3:d3:4d:04:3d:82:f4:42:75:f0:2b:0d:85:7e:78:
         ee:dd:6c:8b:c9:65:86:99:ae:c3:15:2f:6e:9f:90:a4:fe:cd:
         4e:d9:f0:ee:7d:51:65:a6:c5:4e:f2:da:5f:d2:1c:4e:43:64:
         cb:db:26:c9:d6:37:67:87:cd:ce:c0:b4:f2:0c:c0:6a:29:55:
         c6:5a:7f:d8:18:8d:db:a0:1c:ef:59:51:d7:bd:b9:14:c8:bc:
         6f:97:41:35:7c:54:b7:07:5a:06:98:8a:53:9b:3f:ab:c1:e5:
         2a:3f:8d:bc:3e:a1:b8:a1:d7:36:b4:89:4c:7e:e0:77:2e:6d:
         f2:21:ed:20:10:ea:43:5f:34:a4:1c:61:f1:3f:24:8a:76:fe:
         d7:87:1a:aa:20:93:66:3b:5f:a0:5d:80:85:6d:50:9d:59:ee:
         00:35:d2:1c:7d:05:22:22:9e:31:46:d0:a3:71:e2:6c:57:77:
         49:33:44:46:44:91:3e:a8:1b:1f:92:1b:48:99:d6:fe:93:c9:
         31:c7:31:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----