Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
File:                     eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft (raw, json)
Hash identifier:          OO7B0MF/nwwHTRNp7rCCi9npbNyZkywLiyQdhn/RKJM=
Subject key identifier:   07:92:4C:00:FD:CE:74:27:A0:5C:28:03:CC:12:1A:43:D2:EE:9A:93
Authority key identifier: 78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C
Certificate issuer:       /CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
Certificate serial:       01964F6D0232B41CAD856EB40B201C630EE6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
Manifest number:          14F9
Signing time:             Sat 19 Apr 2025 19:01:06 +0000
Manifest this update:     Sat 19 Apr 2025 19:01:06 +0000
Manifest next update:     Sun 20 Apr 2025 19:01:06 +0000
Files and hashes:         1: eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl (hash: O+j9HbgSfcQw2BZ9jYIJ3CyHaZksCSpniTLxFopXl1I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 20 Apr 2025 16:41:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4f:6d:02:32:b4:1c:ad:85:6e:b4:0b:20:1c:63:0e:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
        Validity
            Not Before: Apr 19 19:01:06 2025 GMT
            Not After : Apr 20 19:01:06 2025 GMT
        Subject: CN=07924c00fdce7427a05c2803cc121a43d2ee9a93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:75:70:99:18:d7:46:70:09:e9:1e:02:ac:d3:
                    30:55:99:97:e7:b9:ef:e3:39:f9:56:ad:38:ac:52:
                    c2:b4:7b:ed:d4:2b:47:24:da:b6:3c:43:74:78:11:
                    8d:64:ba:9e:87:79:86:5f:c5:fe:e0:e7:69:c8:72:
                    92:48:05:92:9e:bc:71:33:d3:c8:66:63:95:6c:49:
                    12:f1:38:ba:6b:6f:2d:e0:d1:9d:63:ed:50:57:32:
                    1b:52:95:a7:a4:68:f9:95:6a:06:13:4b:b4:9e:3b:
                    e0:4d:22:51:f2:de:55:c3:6e:01:e3:30:c8:23:cd:
                    db:aa:d9:3c:e4:c8:56:5e:76:37:b7:7c:13:6a:ee:
                    f9:a2:91:fc:89:56:64:55:b2:6b:a6:35:96:c9:e6:
                    56:f7:1b:c2:95:1a:f7:eb:62:5a:70:63:b8:a3:0c:
                    8d:40:9d:9b:e5:8e:60:20:d2:22:d4:03:a6:cb:21:
                    05:b5:37:b8:0e:98:75:9a:44:13:d3:18:3b:23:92:
                    fe:97:97:32:28:95:27:f8:2f:e2:78:f6:b6:fa:95:
                    5d:a3:bb:da:12:04:9f:18:68:6b:7e:af:06:29:6b:
                    c2:2d:fb:23:61:03:29:d3:8f:a4:26:f3:20:d0:23:
                    43:95:6f:93:29:23:ab:43:29:40:8f:cd:8b:af:08:
                    9b:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:92:4C:00:FD:CE:74:27:A0:5C:28:03:CC:12:1A:43:D2:EE:9A:93
            X509v3 Authority Key Identifier:
                keyid:78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:94:d4:5d:a6:ba:a7:a0:90:72:fa:6b:40:a9:41:49:8b:27:
         fa:4e:56:83:41:df:ff:74:31:dd:f3:13:a1:32:23:f4:1e:65:
         56:7e:00:4f:5d:9d:14:da:c5:5e:46:45:9a:57:03:06:4a:fa:
         76:b2:8c:b4:bc:75:75:8a:06:ca:e5:67:6f:9e:80:6e:6f:4b:
         97:25:55:4d:15:56:77:f4:86:5f:b1:1b:48:79:fb:f2:06:09:
         e7:19:ed:97:01:b1:6b:8d:95:ca:4b:6b:e0:c5:63:6f:6b:dc:
         ac:c5:fd:64:14:e7:b3:3c:4f:61:90:ec:ed:d4:a7:ec:64:76:
         93:d9:74:b7:84:ce:3f:82:56:3e:fa:13:ef:a5:ce:83:22:9c:
         83:24:79:05:07:dc:af:c4:cb:92:2b:e4:45:7e:dd:92:d4:c6:
         45:06:88:94:0e:04:bf:ad:44:a0:a5:2e:e0:53:00:a2:67:21:
         d8:1c:f5:c7:a9:36:5a:8c:e2:b3:48:85:62:f2:00:0d:29:c0:
         2f:e6:0c:c7:ee:7b:fc:38:9f:ff:a0:65:06:bf:8f:55:a1:7c:
         53:f5:a2:d4:71:20:99:2e:b7:9a:b3:a0:27:cc:f0:4e:f8:f3:
         c0:20:18:2f:22:99:15:56:f1:ff:65:35:52:15:b1:9d:3e:5d:
         04:21:14:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----