Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
File:                     NO2iVBz8z2guKd2uYx7cjR57b2A.mft (raw, json)
Hash identifier:          JTVnrYVcE7LSg7iB+uukdQdABujIrRjNyyMRcilsSiQ=
Subject key identifier:   D9:3B:EA:24:DE:E1:C8:90:F0:17:C6:46:0D:81:72:39:D0:25:B7:F6
Authority key identifier: 34:ED:A2:54:1C:FC:CF:68:2E:29:DD:AE:63:1E:DC:8D:1E:7B:6F:60
Certificate issuer:       /CN=34eda2541cfccf682e29ddae631edc8d1e7b6f60
Certificate serial:       01967DC69DA284F0D0D88A45D0532F3B7A79
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
Manifest number:          05C1
Signing time:             Mon 28 Apr 2025 19:01:30 +0000
Manifest this update:     Mon 28 Apr 2025 19:01:30 +0000
Manifest next update:     Tue 29 Apr 2025 19:01:30 +0000
Files and hashes:         1: NO2iVBz8z2guKd2uYx7cjR57b2A.crl (hash: rw7KVT7+rmu83L0OyM9xb3yjflsEtF5VWrwc0eRnTWc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 29 Apr 2025 15:01:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:7d:c6:9d:a2:84:f0:d0:d8:8a:45:d0:53:2f:3b:7a:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=34eda2541cfccf682e29ddae631edc8d1e7b6f60
        Validity
            Not Before: Apr 28 19:01:30 2025 GMT
            Not After : Apr 29 19:01:30 2025 GMT
        Subject: CN=d93bea24dee1c890f017c6460d817239d025b7f6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:6a:25:86:da:59:3b:91:0f:df:3c:8c:28:3c:
                    5b:82:f8:2a:9b:f7:87:50:d6:d2:09:65:1e:93:d6:
                    6b:14:c9:26:af:b0:e4:dd:ad:ba:8d:45:38:14:9b:
                    1a:81:f3:cb:ff:83:69:9e:6c:98:bf:83:05:58:a8:
                    8a:2d:e9:6c:31:be:83:1c:29:e1:aa:c9:96:a9:91:
                    e2:4d:d8:f5:ac:9d:8e:d8:63:80:88:09:56:1c:5f:
                    a3:a3:51:32:9e:f9:f8:04:c9:5e:6e:0f:b3:13:20:
                    c6:f3:a9:4e:34:63:a0:bf:66:88:09:7a:6c:ad:15:
                    3d:16:6e:3e:88:db:42:ba:0e:d6:be:d9:f7:7d:88:
                    7a:f4:34:d2:54:78:e2:f1:31:e8:1d:e0:64:84:28:
                    24:7c:04:8b:b5:7c:7c:c3:6e:dd:e1:36:ef:ae:d7:
                    f3:02:ce:de:3d:2a:64:21:ac:f9:aa:e5:c8:86:72:
                    ed:e3:40:02:71:bc:b6:73:5e:18:34:dd:f9:a9:e5:
                    3d:cb:fd:51:57:20:a9:89:c3:e2:46:60:08:57:36:
                    4a:e5:15:3e:5c:87:c6:c6:c2:64:d3:06:97:df:67:
                    68:7c:2c:99:b5:00:1d:98:4e:33:73:6b:09:21:91:
                    63:28:26:58:3e:f6:ac:20:be:8b:16:f7:11:ca:35:
                    ce:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:3B:EA:24:DE:E1:C8:90:F0:17:C6:46:0D:81:72:39:D0:25:B7:F6
            X509v3 Authority Key Identifier:
                keyid:34:ED:A2:54:1C:FC:CF:68:2E:29:DD:AE:63:1E:DC:8D:1E:7B:6F:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:4d:95:0a:1c:fc:09:be:0c:6e:33:98:1d:13:0d:ba:14:12:
         bd:f2:1a:85:21:eb:1f:bf:47:4c:f0:ee:1f:9c:67:90:0c:0c:
         ad:9a:f0:b3:d7:6f:8f:66:de:57:05:5a:ce:b9:b3:ca:2b:82:
         2b:1a:aa:59:2e:35:f3:ec:20:28:81:f5:20:36:b3:bd:42:47:
         f7:a7:4b:90:c8:23:a0:a8:2e:55:61:49:be:22:0a:5e:34:ea:
         c8:d8:0e:3b:17:93:63:e7:60:03:55:55:65:8c:af:e5:9b:88:
         e6:30:f6:eb:7a:ef:6e:68:da:55:56:3f:56:5e:88:00:1f:9e:
         fe:d0:3c:43:d8:5b:08:cf:b5:b2:a7:00:23:b4:5f:9c:b8:a4:
         21:67:b4:5d:3f:44:8f:21:41:ef:3b:9a:0b:fc:ae:f1:86:49:
         a1:56:08:0f:83:c8:ff:de:4f:0c:17:a3:30:c2:ca:a7:75:c8:
         81:bd:c1:1d:73:98:76:90:61:e1:6b:48:5a:02:59:ca:13:62:
         7b:21:3e:9c:2d:ed:98:8c:95:6a:de:ae:89:ea:ab:0b:79:24:
         6e:7e:98:6e:12:6d:5f:73:17:0b:f4:92:3a:28:22:df:c9:b1:
         c3:6d:28:a4:a1:33:ec:86:d0:c7:a1:93:96:7c:87:06:8b:7d:
         a6:52:2b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----