Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
File:                     6Md5F2XIhNCFX-0_-MPycJmpoBo.mft (raw, json)
Hash identifier:          ZL8Jm37fPL4OTCT8Eg4IfjbzRYx6ToqqzzQrtGYn9RE=
Subject key identifier:   CE:50:E5:67:32:8D:7B:AA:D9:EF:4A:04:23:42:96:1F:11:99:A6:1D
Authority key identifier: E8:C7:79:17:65:C8:84:D0:85:5F:ED:3F:F8:C3:F2:70:99:A9:A0:1A
Certificate issuer:       /CN=e8c7791765c884d0855fed3ff8c3f27099a9a01a
Certificate serial:       01964A0F6FB393D53CB00002FCA56FE5475E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6Md5F2XIhNCFX-0_-MPycJmpoBo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
Manifest number:          14F5
Signing time:             Fri 18 Apr 2025 18:00:47 +0000
Manifest this update:     Fri 18 Apr 2025 18:00:47 +0000
Manifest next update:     Sat 19 Apr 2025 18:00:47 +0000
Files and hashes:         1: 6Md5F2XIhNCFX-0_-MPycJmpoBo.crl (hash: 6F0wR4ho2hdFJNbMoIsWzSPpvLIU1QVGulXbXg5cZmI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6Md5F2XIhNCFX-0_-MPycJmpoBo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 19 Apr 2025 18:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4a:0f:6f:b3:93:d5:3c:b0:00:02:fc:a5:6f:e5:47:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e8c7791765c884d0855fed3ff8c3f27099a9a01a
        Validity
            Not Before: Apr 18 18:00:47 2025 GMT
            Not After : Apr 19 18:00:47 2025 GMT
        Subject: CN=ce50e567328d7baad9ef4a042342961f1199a61d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:3e:61:55:8d:ee:f2:18:a2:1e:c0:cf:98:78:
                    c1:0d:e8:29:a3:5c:60:b2:10:d2:bf:c0:e8:bf:97:
                    08:cc:83:09:4b:a7:b2:7d:13:fc:28:e8:98:17:12:
                    9b:dc:4b:4e:6d:26:9c:76:91:e1:df:66:8a:24:2e:
                    5a:1a:9d:aa:e1:93:70:b9:12:ff:8d:9d:77:97:6a:
                    e2:52:d5:35:6d:6e:1d:16:77:a7:81:6e:24:78:d8:
                    f4:9c:57:7e:c5:a3:95:b1:45:37:36:eb:a7:c2:0e:
                    b7:4f:d6:47:7a:83:c3:f6:88:94:d0:d3:13:87:e9:
                    33:4a:31:96:e4:d1:9c:7a:c4:4e:10:72:25:57:aa:
                    1b:f4:f0:e5:9a:33:e2:4f:7c:48:28:f1:de:a4:23:
                    f6:6a:12:e8:67:ff:dd:a6:d6:84:9d:b4:df:d0:86:
                    8c:85:d5:e8:d9:bd:d1:ee:5a:b6:60:68:46:1b:eb:
                    70:88:b7:e2:2c:06:23:dc:eb:67:d9:7e:58:42:e4:
                    08:f1:91:a6:4c:8b:c5:d6:03:ce:77:10:20:09:2a:
                    2b:2b:8c:ba:2c:0b:69:5e:6d:cc:ea:b3:6d:b9:fc:
                    c6:f0:84:cc:23:84:6c:1c:f0:6a:ef:c7:d2:c5:66:
                    a8:56:85:bc:d5:0a:d8:6d:8d:31:3a:36:0c:ac:35:
                    c1:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:50:E5:67:32:8D:7B:AA:D9:EF:4A:04:23:42:96:1F:11:99:A6:1D
            X509v3 Authority Key Identifier:
                keyid:E8:C7:79:17:65:C8:84:D0:85:5F:ED:3F:F8:C3:F2:70:99:A9:A0:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Md5F2XIhNCFX-0_-MPycJmpoBo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4bdfcb-4385-47cc-b081-95b1d71bcc89/1/6Md5F2XIhNCFX-0_-MPycJmpoBo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:ad:8e:e9:53:6f:4f:34:7c:f9:d7:fd:bd:95:ec:aa:33:19:
         b3:a4:02:82:4f:c4:ed:1c:82:83:3d:e5:b4:a3:c4:6b:50:7e:
         ac:c2:9a:74:80:c4:f2:9c:b2:ec:51:0f:ec:1f:99:67:79:d7:
         04:8a:f8:43:31:b0:b9:06:42:1a:20:85:87:14:d2:08:ad:dd:
         07:a2:c6:ed:d8:b5:05:12:df:7e:29:98:fc:04:48:52:cd:64:
         98:7a:a3:cc:65:0b:eb:cf:68:6b:b3:0d:4f:12:43:f0:2d:92:
         1e:4b:c4:a9:71:9a:b7:3e:64:4d:5e:41:f0:ff:67:5b:f6:e6:
         f1:88:ee:e4:f7:4e:65:23:cf:35:13:ce:95:3f:6b:89:b3:e0:
         6e:9c:ce:e6:27:f3:54:c9:55:a6:57:46:0a:da:97:fa:e3:6e:
         b0:4b:c9:7d:7a:4c:8e:70:70:c7:ef:5a:76:e4:8a:f0:8c:21:
         d6:a2:56:fb:74:50:1c:7d:4f:1a:15:62:b7:61:51:d7:88:c4:
         d0:0a:de:c0:6e:a9:ff:cf:8d:a3:b8:1f:c7:7b:a3:52:b4:e7:
         40:80:3e:32:9c:fe:13:d3:7f:e2:48:6e:b7:95:64:ea:7a:a8:
         66:96:2e:5f:46:62:d6:b7:37:2a:15:f2:d1:e7:14:3d:f2:4f:
         80:5e:44:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----