Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft
File:                     HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft (raw, json)
Hash identifier:          13OFpQ4LvhRdTbxHDZTyhyekcKa/jDu1qRjErmhzJNk=
Subject key identifier:   EA:E3:71:D5:47:97:38:B5:EF:12:E3:0B:C5:EC:C9:03:50:22:D2:75
Authority key identifier: 1C:16:18:E0:43:72:D9:B2:7F:41:7D:22:9F:82:61:40:27:BC:3C:60
Certificate issuer:       /CN=1c1618e04372d9b27f417d229f82614027bc3c60
Certificate serial:       019510C7963FD038571D091028AA924F8179
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HBYY4ENy2bJ_QX0in4JhQCe8PGA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft
Manifest number:          07B2
Signing time:             Sun 16 Feb 2025 22:01:10 +0000
Manifest this update:     Sun 16 Feb 2025 22:01:10 +0000
Manifest next update:     Mon 17 Feb 2025 22:01:10 +0000
Files and hashes:         1: HBYY4ENy2bJ_QX0in4JhQCe8PGA.crl (hash: fkhCqkuyYj37aYdVZhyDoBT1iew0tMGPAgs5Aa6U77g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HBYY4ENy2bJ_QX0in4JhQCe8PGA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:01:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c7:96:3f:d0:38:57:1d:09:10:28:aa:92:4f:81:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c1618e04372d9b27f417d229f82614027bc3c60
        Validity
            Not Before: Feb 16 22:01:10 2025 GMT
            Not After : Feb 17 22:01:10 2025 GMT
        Subject: CN=eae371d5479738b5ef12e30bc5ecc9035022d275
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:f8:be:64:e7:1f:4a:17:59:61:8b:40:d7:4f:
                    da:e8:ea:56:7b:0e:2c:2d:43:d0:f3:ef:d9:e4:9f:
                    fe:59:60:df:85:6c:0e:a6:2d:f8:5a:0f:e8:1e:26:
                    c6:f8:7f:b8:17:f8:15:5e:54:54:9c:ff:c0:3d:f7:
                    13:4d:8a:0a:27:6d:95:ee:54:c1:76:68:54:71:01:
                    42:25:b9:98:ef:8e:f8:0e:94:d7:14:db:8d:58:41:
                    53:b9:f2:7b:2c:c5:87:75:be:69:fb:f0:96:a8:e7:
                    be:8a:93:ee:16:7a:d9:cb:39:b0:4e:56:3e:ed:c8:
                    e2:cf:74:83:02:be:aa:65:5a:9e:ef:96:6b:df:60:
                    10:5b:a1:38:72:e5:1c:e6:54:37:0d:d0:06:8a:3d:
                    83:6e:24:5b:ee:a8:7d:14:bb:2c:fd:0b:a1:61:2a:
                    76:0f:a8:f3:5a:54:ae:2d:47:67:e0:db:cc:c4:95:
                    98:e4:1c:c4:7f:da:c2:28:d7:e8:0a:a4:57:60:8f:
                    c6:c1:7f:78:e9:d8:bc:35:42:56:7c:0e:42:4b:69:
                    1e:0e:41:d7:0a:15:74:4c:47:a1:d7:11:00:27:6d:
                    87:0e:cc:39:19:54:bd:85:ac:a7:cd:12:ac:13:5e:
                    cb:65:3e:16:c1:2f:84:8d:ec:2c:1b:f0:29:74:28:
                    d3:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:E3:71:D5:47:97:38:B5:EF:12:E3:0B:C5:EC:C9:03:50:22:D2:75
            X509v3 Authority Key Identifier:
                keyid:1C:16:18:E0:43:72:D9:B2:7F:41:7D:22:9F:82:61:40:27:BC:3C:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HBYY4ENy2bJ_QX0in4JhQCe8PGA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:91:0b:b5:41:eb:e6:38:eb:46:7e:26:19:8d:d0:ef:c8:f8:
         21:f9:ab:cc:9e:ba:b4:3a:4b:a0:b7:71:ce:51:a3:51:a6:90:
         8c:a7:56:af:8d:86:e3:61:2d:62:fc:d8:9b:6c:a6:e4:98:76:
         22:81:0a:a2:49:ec:e0:01:88:a5:59:0e:b5:5e:6a:87:88:31:
         72:d8:ce:e8:ed:f1:68:28:3f:cb:32:9f:0d:06:95:8a:0a:81:
         e7:39:27:ff:a3:ab:f1:0b:18:c0:b0:1c:6a:55:29:30:c8:3e:
         f9:3a:2c:e7:14:75:9e:1b:1b:d6:99:b3:7a:66:4e:e7:2f:dd:
         b6:07:5e:77:76:62:4f:2b:2b:74:f4:5b:5c:24:e3:1e:b3:d3:
         4d:c8:db:ff:c4:13:b5:5b:0a:4a:e3:08:c1:13:fe:6c:60:7f:
         ff:c1:fc:f6:7d:58:45:a5:cf:15:2c:7f:ec:eb:4a:84:1d:80:
         47:a5:3e:d4:1c:7f:cb:c5:5e:74:aa:e9:95:a4:88:ee:f3:67:
         4b:7b:7e:60:9f:9e:b6:be:25:26:bc:fd:ae:43:9e:3a:73:f7:
         c2:60:e7:0f:8a:73:44:29:e1:1c:a0:96:51:bc:e3:80:2e:5a:
         d0:18:ae:66:bc:38:96:12:93:41:d6:6a:27:ca:a0:3e:ce:95:
         79:ed:c4:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----