Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
File:                     5cfDmlkS3cIen2tRmJZyV2ISeDM.mft (raw, json)
Hash identifier:          8cgS+qNllIpWGZZdoOUd3KXDdpbwl9w5zMRm1WgqxJw=
Subject key identifier:   02:25:96:50:DF:F0:CA:CB:64:DE:56:40:E0:E7:D4:38:BB:D0:C1:1F
Authority key identifier: E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33
Certificate issuer:       /CN=e5c7c39a5912ddc21e9f6b519896725762127833
Certificate serial:       01962E61B24E45E886FD91DE1A6C0FC7245A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
Manifest number:          64
Signing time:             Sun 13 Apr 2025 09:01:16 +0000
Manifest this update:     Sun 13 Apr 2025 09:01:16 +0000
Manifest next update:     Mon 14 Apr 2025 09:01:16 +0000
Files and hashes:         1: 5cfDmlkS3cIen2tRmJZyV2ISeDM.crl (hash: icdg6JLGSO/+NtRkZ0ibBePfENVz/46y8XJKflea0W0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 14 Apr 2025 03:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:2e:61:b2:4e:45:e8:86:fd:91:de:1a:6c:0f:c7:24:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5c7c39a5912ddc21e9f6b519896725762127833
        Validity
            Not Before: Apr 13 09:01:16 2025 GMT
            Not After : Apr 14 09:01:16 2025 GMT
        Subject: CN=02259650dff0cacb64de5640e0e7d438bbd0c11f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:1a:3e:f3:61:b1:03:60:6a:43:35:c2:09:42:
                    75:4d:7e:d8:97:b5:61:d7:69:1b:9d:e6:dc:1d:ec:
                    3d:7f:69:b2:ca:23:bb:fe:b6:d4:69:ff:00:5a:dc:
                    80:bb:c0:43:a1:69:18:82:71:4d:d2:37:42:21:6c:
                    e5:9b:19:22:9d:82:56:73:75:f4:89:16:83:e6:c2:
                    9e:43:f5:17:ef:6d:55:3a:b2:35:82:09:ef:ab:8e:
                    0b:04:a8:86:a2:c0:70:84:3d:64:32:01:b4:f6:c3:
                    68:2b:3f:12:02:01:20:67:d4:62:43:15:d7:15:45:
                    d1:49:d8:19:cc:7c:4a:96:ab:83:66:02:b9:4a:06:
                    d4:52:cf:20:ca:81:09:cd:45:a3:92:21:f9:b4:25:
                    bd:d2:80:bf:45:99:8d:f1:00:10:68:fe:fe:b4:fa:
                    4c:eb:28:0c:04:25:56:b9:16:29:56:33:59:ba:4b:
                    58:aa:15:90:29:69:e4:c7:73:2d:52:68:eb:7c:db:
                    cb:2c:5b:23:f3:f2:aa:d5:bc:b2:30:61:f3:37:96:
                    67:79:46:42:35:f4:a0:1f:e4:64:08:41:04:40:e7:
                    fa:2d:e0:70:15:8a:78:85:a6:40:14:32:7d:04:b4:
                    87:a1:01:9a:57:11:83:97:59:7e:bf:ad:c1:27:5d:
                    94:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:25:96:50:DF:F0:CA:CB:64:DE:56:40:E0:E7:D4:38:BB:D0:C1:1F
            X509v3 Authority Key Identifier:
                keyid:E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:e8:65:fc:02:9e:ee:1e:96:c7:08:d3:0e:91:d6:b1:da:92:
         8c:5e:a3:fc:c6:fb:73:d3:48:c4:78:c1:92:4d:6d:63:9e:18:
         2a:7f:89:73:fe:e5:ba:7e:27:b6:41:2a:9b:34:a6:b1:19:34:
         44:58:62:dd:78:75:ff:56:c0:f7:32:24:79:0b:59:8f:f6:d7:
         0f:92:70:33:86:7e:6c:36:e9:d2:b1:18:e4:c4:26:82:59:dc:
         0e:ae:85:6f:6a:ea:01:4f:90:a9:ba:72:63:3e:38:dc:61:77:
         ff:ec:4d:9d:17:3f:df:a3:e1:0a:46:e0:db:95:1f:02:ab:80:
         71:95:08:d4:12:15:10:e6:4c:28:a0:18:c7:71:cf:63:89:51:
         2f:32:d7:9f:b5:b7:f1:d3:22:62:fa:ed:c8:af:44:9b:39:ac:
         11:ca:c4:7c:f3:e5:ed:3c:4c:41:b7:f6:29:8b:a7:cb:fd:ac:
         3b:bf:bf:83:35:30:8e:89:5c:7f:7b:c2:0c:7d:b7:9a:34:ba:
         ad:d3:ec:d9:fb:66:d7:10:fc:3f:c3:e2:d6:cb:66:5c:39:b5:
         d8:28:a3:12:11:86:8c:0d:38:a0:36:be:c6:42:d1:bd:df:2a:
         3f:9f:16:2a:cd:3e:33:28:c3:34:f3:67:2e:4c:75:d4:e1:0a:
         06:e6:12:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYuYbJOReiG/ZHeGmwPxyRaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YzdjMzlhNTkxMmRkYzIxZTlmNmI1MTk4OTY3MjU3NjIx
Mjc4MzMwHhcNMjUwNDEzMDkwMTE2WhcNMjUwNDE0MDkwMTE2WjAzMTEwLwYDVQQD
EygwMjI1OTY1MGRmZjBjYWNiNjRkZTU2NDBlMGU3ZDQzOGJiZDBjMTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqho+82GxA2BqQzXCCUJ1TX7Yl7Vh
12kbnebcHew9f2myyiO7/rbUaf8AWtyAu8BDoWkYgnFN0jdCIWzlmxkinYJWc3X0
iRaD5sKeQ/UX721VOrI1ggnvq44LBKiGosBwhD1kMgG09sNoKz8SAgEgZ9RiQxXX
FUXRSdgZzHxKlquDZgK5SgbUUs8gyoEJzUWjkiH5tCW90oC/RZmN8QAQaP7+tPpM
6ygMBCVWuRYpVjNZuktYqhWQKWnkx3MtUmjrfNvLLFsj8/Kq1byyMGHzN5ZneUZC
NfSgH+RkCEEEQOf6LeBwFYp4haZAFDJ9BLSHoQGaVxGDl1l+v63BJ12UlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAIlllDf8MrLZN5WQODn1Di70MEfMB8GA1UdIwQY
MBaAFOXHw5pZEt3CHp9rUZiWcldiEngzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWNmRG1sa1MzY0llbjJ0Um1KWnlWMklTZURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8xMGFmODMtMDhmNS00OTE5LWJhMWQt
MzhmODY0YTM0Yjc4LzEvNWNmRG1sa1MzY0llbjJ0Um1KWnlWMklTZURNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8xMGFmODMtMDhmNS00OTE5LWJhMWQtMzhmODY0YTM0Yjc4
LzEvNWNmRG1sa1MzY0llbjJ0Um1KWnlWMklTZURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqOhl/AKe
7h6WxwjTDpHWsdqSjF6j/Mb7c9NIxHjBkk1tY54YKn+Jc/7lun4ntkEqmzSmsRk0
RFhi3Xh1/1bA9zIkeQtZj/bXD5JwM4Z+bDbp0rEY5MQmglncDq6Fb2rqAU+Qqbpy
Yz443GF3/+xNnRc/36PhCkbg25UfAquAcZUI1BIVEOZMKKAYx3HPY4lRLzLXn7W3
8dMiYvrtyK9EmzmsEcrEfPPl7TxMQbf2KYuny/2sO7+/gzUwjolcf3vCDH23mjS6
rdPs2ftm1xD8P8Pi1stmXDm12CijEhGGjA04oDa+xkLRvd8qP58WKs0+MyjDNPNn
Lkx11OEKBuYSWA==
-----END CERTIFICATE-----