Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft
File:                     THHp8j7qymjHIcvkKAYQC3XhV3A.mft (raw, json)
Hash identifier:          dud+mD/7qGgS8MzYDHl16YN3S7FMlK97kj3HEMmbcy4=
Subject key identifier:   C5:96:B6:88:4F:AA:0B:C2:49:F7:1C:A8:71:A2:4E:40:8E:AA:F2:42
Authority key identifier: 4C:71:E9:F2:3E:EA:CA:68:C7:21:CB:E4:28:06:10:0B:75:E1:57:70
Certificate issuer:       /CN=4c71e9f23eeaca68c721cbe42806100b75e15770
Certificate serial:       01965C4C5D32B807A20E9D5756D668D294FF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft
Manifest number:          03BF
Signing time:             Tue 22 Apr 2025 07:00:30 +0000
Manifest this update:     Tue 22 Apr 2025 07:00:30 +0000
Manifest next update:     Wed 23 Apr 2025 07:00:30 +0000
Files and hashes:         1: THHp8j7qymjHIcvkKAYQC3XhV3A.crl (hash: 8A/AAzdfbKe3XeQzEZQPD1WluOWIGjOirpTba4gpR2Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 23 Apr 2025 04:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:5c:4c:5d:32:b8:07:a2:0e:9d:57:56:d6:68:d2:94:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4c71e9f23eeaca68c721cbe42806100b75e15770
        Validity
            Not Before: Apr 22 07:00:30 2025 GMT
            Not After : Apr 23 07:00:30 2025 GMT
        Subject: CN=c596b6884faa0bc249f71ca871a24e408eaaf242
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:14:02:a8:d4:f6:c5:06:b8:18:6d:d1:70:25:
                    97:2f:23:ae:85:e9:40:95:85:05:93:f9:46:d1:99:
                    80:68:43:6e:8e:43:22:10:63:f7:22:84:ef:14:1b:
                    84:79:75:79:30:85:c4:64:65:b4:08:39:3d:8d:4c:
                    2c:d3:b2:a3:77:88:12:70:55:58:56:68:1d:bd:7c:
                    08:6f:c3:34:28:85:cb:7d:0c:95:5a:59:5b:22:32:
                    24:ce:5e:88:b6:88:4e:d0:36:e9:dc:e2:5d:27:58:
                    cb:3e:06:36:fa:7b:97:a4:73:63:57:10:44:df:d5:
                    dc:46:8a:8a:95:68:68:76:e1:48:5a:82:5f:f7:bd:
                    f4:4b:b7:c1:1e:7a:11:bb:be:a0:8c:45:a8:12:85:
                    30:c7:60:fa:34:3c:13:ee:49:13:d9:ea:67:57:e5:
                    c4:53:ac:9e:f1:b7:12:5f:db:6f:23:04:1e:f2:49:
                    5d:e3:10:ff:eb:0b:90:a3:d1:60:a7:75:68:c2:57:
                    d0:99:36:89:2f:8c:36:11:95:02:de:4f:4e:88:9a:
                    50:cb:5c:61:8b:69:69:cb:5c:b4:74:6b:ad:2d:85:
                    af:b4:8f:b9:f6:a2:8a:f9:75:c7:79:e9:09:2d:22:
                    9a:ba:aa:c2:95:e3:2f:7a:46:75:fc:fa:cb:82:b5:
                    de:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:96:B6:88:4F:AA:0B:C2:49:F7:1C:A8:71:A2:4E:40:8E:AA:F2:42
            X509v3 Authority Key Identifier:
                keyid:4C:71:E9:F2:3E:EA:CA:68:C7:21:CB:E4:28:06:10:0B:75:E1:57:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:f5:5b:f2:54:b0:0e:f4:23:3c:47:cf:71:e5:bd:69:61:30:
         69:61:6f:10:79:7e:c1:1c:78:3a:9d:b6:ea:02:5b:30:a8:ec:
         12:ea:14:25:1b:74:85:01:89:02:3b:f9:db:55:f5:f2:10:70:
         50:a9:df:10:fc:51:1f:2a:7f:76:fb:4b:f5:40:14:d1:d6:8d:
         f6:cd:49:a4:05:c7:ae:fc:34:51:d7:79:ac:90:e0:c6:2f:ec:
         43:bc:a0:52:f7:f4:9b:ad:9a:b6:a5:a7:18:2b:69:63:6e:60:
         c8:39:ef:48:ff:0d:44:91:05:e3:a8:e4:5d:4e:00:12:8b:67:
         c5:8c:f2:ed:d2:ef:6b:f4:73:3c:5b:1f:dc:a9:43:4b:95:36:
         5f:76:53:39:7c:ac:dd:fd:d4:5b:ff:b3:b8:e0:28:5f:36:c9:
         46:70:d6:9c:ac:c3:2e:7a:d6:ce:cf:ad:e4:6c:54:9c:83:4e:
         52:22:6e:94:84:61:18:8a:53:f7:85:f5:d6:09:31:3a:60:6f:
         27:d8:7b:56:6a:5f:a9:3d:4f:0e:d4:07:61:25:ed:99:b0:31:
         c1:25:30:d2:5f:c5:30:eb:a3:63:30:5c:33:7f:4c:8c:fa:62:
         21:ce:2f:e1:dc:2c:ea:26:be:2d:97:3a:6c:15:93:7c:55:c9:
         25:90:f8:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZcTF0yuAeiDp1XVtZo0pT/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNzFlOWYyM2VlYWNhNjhjNzIxY2JlNDI4MDYxMDBiNzVl
MTU3NzAwHhcNMjUwNDIyMDcwMDMwWhcNMjUwNDIzMDcwMDMwWjAzMTEwLwYDVQQD
EyhjNTk2YjY4ODRmYWEwYmMyNDlmNzFjYTg3MWEyNGU0MDhlYWFmMjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxQCqNT2xQa4GG3RcCWXLyOuhelA
lYUFk/lG0ZmAaENujkMiEGP3IoTvFBuEeXV5MIXEZGW0CDk9jUws07Kjd4gScFVY
VmgdvXwIb8M0KIXLfQyVWllbIjIkzl6ItohO0Dbp3OJdJ1jLPgY2+nuXpHNjVxBE
39XcRoqKlWhoduFIWoJf9730S7fBHnoRu76gjEWoEoUwx2D6NDwT7kkT2epnV+XE
U6ye8bcSX9tvIwQe8kld4xD/6wuQo9Fgp3VowlfQmTaJL4w2EZUC3k9OiJpQy1xh
i2lpy1y0dGutLYWvtI+59qKK+XXHeekJLSKauqrCleMvekZ1/PrLgrXeIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMWWtohPqgvCSfccqHGiTkCOqvJCMB8GA1UdIwQY
MBaAFExx6fI+6spoxyHL5CgGEAt14VdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEhIcDhqN3F5bWpISWN2a0tBWVFDM1hoVjNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85NGY2NjItNTA2Yi00ZWM5LWE3YWEt
YzliN2ViMmNlYTU3LzEvVEhIcDhqN3F5bWpISWN2a0tBWVFDM1hoVjNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi85NGY2NjItNTA2Yi00ZWM5LWE3YWEtYzliN2ViMmNlYTU3
LzEvVEhIcDhqN3F5bWpISWN2a0tBWVFDM1hoVjNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUfVb8lSw
DvQjPEfPceW9aWEwaWFvEHl+wRx4Op226gJbMKjsEuoUJRt0hQGJAjv521X18hBw
UKnfEPxRHyp/dvtL9UAU0daN9s1JpAXHrvw0Udd5rJDgxi/sQ7ygUvf0m62atqWn
GCtpY25gyDnvSP8NRJEF46jkXU4AEotnxYzy7dLva/RzPFsf3KlDS5U2X3ZTOXys
3f3UW/+zuOAoXzbJRnDWnKzDLnrWzs+t5GxUnINOUiJulIRhGIpT94X11gkxOmBv
J9h7VmpfqT1PDtQHYSXtmbAxwSUw0l/FMOujYzBcM39MjPpiIc4v4dws6ia+LZc6
bBWTfFXJJZD4kA==
-----END CERTIFICATE-----