Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
File:                     yFiMcrJRDxd7g18gHjNl7PnkWh0.mft (raw, json)
Hash identifier:          HHgeIcKFYiz3ztKjiYGe4h7gTXuEYxXTRirHOgYZ8NE=
Subject key identifier:   72:6B:F2:C0:67:C9:BD:0B:D7:57:31:6C:75:A4:1C:CC:D0:7F:E2:15
Authority key identifier: C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D
Certificate issuer:       /CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
Certificate serial:       0195116BDBE90472003F08B318CE96FDD360
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
Manifest number:          0E07
Signing time:             Mon 17 Feb 2025 01:00:36 +0000
Manifest this update:     Mon 17 Feb 2025 01:00:36 +0000
Manifest next update:     Tue 18 Feb 2025 01:00:36 +0000
Files and hashes:         1: yFiMcrJRDxd7g18gHjNl7PnkWh0.crl (hash: jsvnp76K8xBKkvUuKa2IJJnM2FrqTIUWAqcjR5Dfo5A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:6b:db:e9:04:72:00:3f:08:b3:18:ce:96:fd:d3:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
        Validity
            Not Before: Feb 17 01:00:36 2025 GMT
            Not After : Feb 18 01:00:36 2025 GMT
        Subject: CN=726bf2c067c9bd0bd757316c75a41cccd07fe215
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:18:e8:5d:b5:c6:a4:c9:52:08:57:77:63:6e:
                    23:66:3f:9c:1d:74:9f:f4:e3:a3:86:9c:88:9f:72:
                    27:47:1a:09:e4:d4:e6:2a:a5:92:0a:f8:b6:36:cc:
                    c1:92:f2:0d:ad:0a:7a:b9:24:b5:11:23:ae:66:c2:
                    84:36:d3:21:cf:4d:30:38:95:45:75:68:d2:f2:b4:
                    a2:53:63:8c:8e:08:34:c8:4e:1d:fe:f1:8b:78:e7:
                    b1:99:cc:82:33:af:e6:74:2c:52:c7:07:09:89:6d:
                    bc:df:08:1e:1e:43:b8:2f:d4:27:dc:8d:af:de:b0:
                    6e:95:05:5a:2d:7e:fc:00:3a:7e:28:3e:71:81:1f:
                    a0:18:d6:8d:da:4b:4f:5b:3a:8d:29:d4:8f:e7:9e:
                    89:da:35:37:fd:97:6d:b7:60:ef:c0:6f:a1:19:f7:
                    58:cd:b9:10:94:23:c7:99:5e:5f:ee:1f:df:ca:84:
                    89:51:ba:ae:4b:7f:db:0b:15:67:b0:54:e2:19:c5:
                    3c:b0:4c:c5:10:bc:76:cc:de:2b:d0:13:de:6d:27:
                    23:19:26:0d:a6:0e:d7:f7:d4:d8:b0:59:60:08:75:
                    b8:b4:6c:57:53:25:d1:34:90:13:3a:ae:0d:bf:1c:
                    fc:ca:30:b1:c8:77:d3:9d:5b:0e:57:8c:b0:d9:42:
                    94:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:6B:F2:C0:67:C9:BD:0B:D7:57:31:6C:75:A4:1C:CC:D0:7F:E2:15
            X509v3 Authority Key Identifier:
                keyid:C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:92:52:fe:39:69:7b:6d:d2:40:56:70:71:55:4d:3f:9d:28:
         c7:8b:1e:ab:22:2e:3a:0c:f9:4d:ce:99:8b:7f:04:c1:b7:05:
         56:34:a1:d6:79:6c:72:11:5b:cc:aa:40:8f:b1:c6:b5:93:69:
         c4:09:f6:28:b5:a5:7e:60:af:e5:ef:fa:4c:08:e2:9e:d8:87:
         58:3f:28:56:50:f1:1d:94:66:c6:1b:1b:c7:fe:33:d1:58:66:
         97:3d:01:4a:f8:93:10:e2:d1:45:03:a0:2e:69:c3:3a:3e:16:
         a4:94:6d:7e:7f:c0:d0:60:44:02:f7:ad:1b:bb:6b:91:f8:31:
         0f:c3:5b:40:c8:3b:b7:15:8d:fb:32:32:c3:0a:a3:1f:40:16:
         36:25:53:7a:1f:f5:32:9b:37:ba:7e:21:1d:bd:7a:c6:79:da:
         d5:22:98:29:40:ff:3f:07:a1:c9:f1:e4:72:1f:37:e9:14:e9:
         c7:8a:2f:20:35:3c:f9:d4:1a:4d:8d:a4:b4:dc:58:bb:08:ca:
         50:48:e5:a9:11:d4:d0:02:27:9e:81:03:f8:08:6b:69:f2:af:
         01:ca:5d:18:26:fb:ef:e3:b4:ea:71:54:d0:89:46:a2:ed:23:
         5a:5b:fd:94:6d:3c:70:b0:d1:7f:39:fc:2a:56:ee:bf:1d:75:
         e7:93:c3:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----