Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
File:                     K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft (raw, json)
Hash identifier:          RhgDD/Tt6iPsPV6Kf3sN0J8ZaaMs8pcE+bsRHwc43J8=
Subject key identifier:   6F:86:75:8A:4E:71:E6:26:99:28:0B:F2:16:7B:65:99:FD:48:C5:CD
Authority key identifier: 2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
Certificate issuer:       /CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Certificate serial:       0195903CC0BED74FB4584C8738718D9D86E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
Manifest number:          1493
Signing time:             Thu 13 Mar 2025 16:00:55 +0000
Manifest this update:     Thu 13 Mar 2025 16:00:55 +0000
Manifest next update:     Fri 14 Mar 2025 16:00:55 +0000
Files and hashes:         1: K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl (hash: jrdToZXdv0HiAq1iBltb8/lPZVFUHslWT64LiGtBuIY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 14 Mar 2025 15:28:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:90:3c:c0:be:d7:4f:b4:58:4c:87:38:71:8d:9d:86:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
        Validity
            Not Before: Mar 13 16:00:55 2025 GMT
            Not After : Mar 14 16:00:55 2025 GMT
        Subject: CN=6f86758a4e71e62699280bf2167b6599fd48c5cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:10:be:d9:dc:a1:5a:df:85:a3:a4:e1:22:19:
                    89:5f:26:01:a1:a5:10:ef:98:07:8b:c6:ad:53:34:
                    9a:dd:f7:41:1d:a0:89:4d:e2:1a:b1:a8:1c:6b:27:
                    42:6f:6a:a0:0c:b5:4e:78:e0:1f:c0:e7:b9:ff:7f:
                    49:e7:33:94:1d:b7:21:90:28:23:a9:b8:9d:e8:c8:
                    d4:27:9a:11:ad:f8:de:2a:56:ac:e3:23:82:6b:4a:
                    af:6f:a1:96:00:ef:79:05:66:f8:9e:af:3e:f0:9e:
                    d9:d6:25:91:52:67:f9:a5:92:8a:a0:2b:b0:0e:89:
                    b4:b4:a2:32:39:27:06:5f:80:ea:15:e0:05:56:95:
                    50:3c:2c:8d:4e:71:b2:9e:fe:7d:83:e6:41:43:9f:
                    6b:5e:ed:d2:80:66:ec:f0:33:d0:4a:25:f1:eb:ed:
                    9a:11:c2:c8:1b:d8:e8:64:4f:41:e3:a0:8a:e5:ab:
                    66:7d:47:93:3e:10:09:05:b4:bd:ad:ef:4b:83:2f:
                    0e:22:d5:4e:9a:7f:b3:81:03:32:a7:ec:35:13:68:
                    3d:51:1e:76:af:92:a1:00:9b:05:f5:2b:88:58:00:
                    96:8b:8b:86:16:8f:29:05:04:2a:ea:c6:55:8e:0d:
                    1e:31:31:d2:79:1a:2f:94:f0:9c:e6:50:e0:f0:89:
                    fb:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:86:75:8A:4E:71:E6:26:99:28:0B:F2:16:7B:65:99:FD:48:C5:CD
            X509v3 Authority Key Identifier:
                keyid:2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:0c:f0:f0:d7:a3:51:89:d2:83:b6:7f:78:f8:c0:ad:10:b0:
         25:fc:39:9b:e2:82:83:3b:eb:95:48:a9:a8:13:1b:1f:33:a0:
         4d:50:e9:52:6c:b4:64:3f:fd:c5:06:79:4b:c8:e1:0e:b3:93:
         8e:9a:a6:f9:6e:e1:48:ff:c8:1a:d7:00:5d:07:82:56:83:10:
         0e:6b:fe:48:0d:fc:e8:82:41:c3:2b:5f:bb:aa:b2:ec:5f:04:
         35:3c:60:76:38:f3:ee:d3:a8:23:7a:2f:a7:92:b2:08:dd:e5:
         68:85:e7:d0:2b:64:a4:77:5b:f3:28:7a:ab:27:78:4a:13:e5:
         16:0f:03:a4:92:a4:15:14:a5:9a:6b:35:3f:78:97:22:f8:ce:
         3d:f7:3c:53:2d:fd:9e:0a:42:35:7b:9b:31:2c:97:b4:25:63:
         d3:da:ed:6a:08:db:a1:0b:30:36:38:0f:00:56:80:25:af:29:
         a4:c5:66:0b:66:ea:42:b1:d0:40:ed:5f:50:1a:ad:18:0b:00:
         8c:6f:ad:37:8a:90:5d:7d:82:b0:0f:d2:e7:d5:1a:16:35:a5:
         b9:68:fb:a3:9e:db:b6:37:fc:c4:ef:d5:15:fa:18:48:61:1e:
         d8:3d:77:a2:ae:2c:df:d1:54:90:4a:17:2b:b5:41:90:b8:d0:
         f0:95:4d:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----