Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File:                     M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier:          LWjj7h7w+SwbL4LmcMwhF7qh2ypqma/jc+Je07ESya0=
Subject key identifier:   7C:34:74:87:58:B7:6C:6D:9C:94:7F:2B:25:BA:08:16:38:09:B2:16
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer:       /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial:       019510C7D8B5C789CFE1EAED5E3C78A9297A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number:          103B
Signing time:             Sun 16 Feb 2025 22:01:27 +0000
Manifest this update:     Sun 16 Feb 2025 22:01:27 +0000
Manifest next update:     Mon 17 Feb 2025 22:01:27 +0000
Files and hashes:         1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: 5yMgEobn/YYVs+gDb3q+SEg5VnEf8xYW4aBex7Ko9ko=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c7:d8:b5:c7:89:cf:e1:ea:ed:5e:3c:78:a9:29:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
        Validity
            Not Before: Feb 16 22:01:27 2025 GMT
            Not After : Feb 17 22:01:27 2025 GMT
        Subject: CN=7c34748758b76c6d9c947f2b25ba08163809b216
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:a4:1b:71:ae:bb:a1:39:3b:c0:fa:f7:53:62:
                    19:f4:81:0b:12:6e:72:04:eb:42:05:54:d9:79:f6:
                    56:49:48:28:9f:17:a9:81:d2:65:73:e5:3b:e7:bf:
                    30:c5:91:55:77:25:44:3a:6f:ef:f6:b0:11:42:e1:
                    c9:ad:c1:db:be:97:12:d5:79:52:a5:71:25:bf:14:
                    04:11:e5:82:2a:da:22:d1:89:0a:1e:e8:34:e9:81:
                    19:e5:06:e8:2c:fd:b1:20:79:e0:40:ff:19:1e:dd:
                    93:d2:49:93:a0:f6:3f:76:03:7c:7a:de:1e:26:14:
                    75:45:85:4b:53:47:86:c2:7b:92:09:54:76:6f:7b:
                    ba:91:1b:3d:12:f2:37:6d:a7:36:c3:71:80:62:7f:
                    dd:e9:fb:e9:7c:86:e8:99:02:78:5f:fc:34:5e:b1:
                    b7:4e:15:36:61:ae:d7:73:2d:ce:bd:11:bc:e3:44:
                    92:da:a5:94:73:d8:f1:0b:d0:c1:90:c8:0b:e9:ee:
                    10:72:a0:7d:6d:19:26:d1:0b:e8:ea:40:73:29:13:
                    98:1e:50:f6:14:b3:02:9f:37:4b:d2:22:24:e3:41:
                    8c:57:ce:e4:db:f7:9f:1d:02:17:46:b2:b7:59:7a:
                    48:2b:22:cf:1d:01:71:69:95:52:9b:6c:9e:80:13:
                    23:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:34:74:87:58:B7:6C:6D:9C:94:7F:2B:25:BA:08:16:38:09:B2:16
            X509v3 Authority Key Identifier:
                keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:e3:37:00:c6:2e:b7:96:30:86:7a:1d:a7:94:3c:d2:b0:11:
         5b:79:0e:aa:f6:36:b4:88:d7:68:af:67:e4:bd:a7:c2:65:68:
         9a:a6:cc:2f:50:a8:9d:45:d1:1b:e5:c4:1e:a8:f4:19:b7:4d:
         d8:3f:63:53:d0:e2:03:5b:15:ee:dd:2e:60:a6:b4:e9:b4:cc:
         4c:92:11:21:c1:63:c7:de:35:a6:09:4d:74:00:4a:df:a2:7e:
         fb:b8:54:0a:4f:4d:17:19:1b:ff:00:7b:24:00:57:3b:e5:4e:
         78:80:64:d2:e3:0b:07:27:86:3f:d6:cf:0d:ab:f6:f3:d1:5a:
         35:e1:2d:c1:14:31:54:5c:e5:a7:1a:b5:24:6d:97:48:e7:4a:
         93:69:df:a2:2a:9c:7b:82:1f:39:ab:40:a5:dd:78:ec:6f:03:
         65:9f:88:b9:3c:76:ed:8a:a6:7e:27:f2:7c:9c:85:5d:96:71:
         42:18:ed:4b:6c:eb:5b:3c:72:0c:a9:25:86:a2:be:c6:d3:71:
         85:2e:66:96:86:7e:5d:ea:5d:13:4b:42:a6:94:f6:32:08:f7:
         27:63:4d:e5:80:60:f7:09:4f:25:93:0d:9b:70:57:e1:e2:7f:
         c9:30:5c:c7:75:0c:25:bc:76:c5:56:57:b7:cd:03:4c:01:c2:
         a8:c7:c8:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx9i1x4nP4ertXjx4qSl6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzNjNkNzJjZGQ5M2FiMDJmZTNmNzg4ZDYyMWQ3MTVkOWVm
ZDc2OTkwHhcNMjUwMjE2MjIwMTI3WhcNMjUwMjE3MjIwMTI3WjAzMTEwLwYDVQQD
Eyg3YzM0NzQ4NzU4Yjc2YzZkOWM5NDdmMmIyNWJhMDgxNjM4MDliMjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaQbca67oTk7wPr3U2IZ9IELEm5y
BOtCBVTZefZWSUgonxepgdJlc+U7578wxZFVdyVEOm/v9rARQuHJrcHbvpcS1XlS
pXElvxQEEeWCKtoi0YkKHug06YEZ5QboLP2xIHngQP8ZHt2T0kmToPY/dgN8et4e
JhR1RYVLU0eGwnuSCVR2b3u6kRs9EvI3bac2w3GAYn/d6fvpfIbomQJ4X/w0XrG3
ThU2Ya7Xcy3OvRG840SS2qWUc9jxC9DBkMgL6e4QcqB9bRkm0Qvo6kBzKROYHlD2
FLMCnzdL0iIk40GMV87k2/efHQIXRrK3WXpIKyLPHQFxaZVSm2yegBMj+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHw0dIdYt2xtnJR/KyW6CBY4CbIWMB8GA1UdIwQY
MBaAFDNj1yzdk6sC/j94jWIdcV2e/XaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgt
NDM0ZjllMGQ3NTBjLzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS9jOWMwZDgtNzAxMy00NmMzLTljMjgtNDM0ZjllMGQ3NTBj
LzEvTTJQWExOMlRxd0wtUDNpTlloMXhYWjc5ZHBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQeM3AMYu
t5Ywhnodp5Q80rARW3kOqvY2tIjXaK9n5L2nwmVomqbML1ConUXRG+XEHqj0GbdN
2D9jU9DiA1sV7t0uYKa06bTMTJIRIcFjx941pglNdABK36J++7hUCk9NFxkb/wB7
JABXO+VOeIBk0uMLByeGP9bPDav289FaNeEtwRQxVFzlpxq1JG2XSOdKk2nfoiqc
e4IfOatApd147G8DZZ+IuTx27YqmfifyfJyFXZZxQhjtS2zrWzxyDKklhqK+xtNx
hS5mloZ+XepdE0tCppT2Mgj3J2NN5YBg9wlPJZMNm3BX4eJ/yTBcx3UMJbx2xVZX
t80DTAHCqMfIDQ==
-----END CERTIFICATE-----