Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft
File:                     IM56QQse-G8hrSE9PXNmhvdwjrk.mft (raw, json)
Hash identifier:          qZB5J9NMQ+2Aq1Jr5gKrm6drNbNWz3PlrEI2PWrw7hs=
Subject key identifier:   7E:36:AB:19:FD:01:A4:6B:A6:54:0D:8C:BE:A8:A6:F1:B4:E2:08:DA
Authority key identifier: 20:CE:7A:41:0B:1E:F8:6F:21:AD:21:3D:3D:73:66:86:F7:70:8E:B9
Certificate issuer:       /CN=20ce7a410b1ef86f21ad213d3d736686f7708eb9
Certificate serial:       019511D9746E2130C190C30CB8335ABAE20D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IM56QQse-G8hrSE9PXNmhvdwjrk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft
Manifest number:          03E8
Signing time:             Mon 17 Feb 2025 03:00:18 +0000
Manifest this update:     Mon 17 Feb 2025 03:00:18 +0000
Manifest next update:     Tue 18 Feb 2025 03:00:18 +0000
Files and hashes:         1: IM56QQse-G8hrSE9PXNmhvdwjrk.crl (hash: j6ABEaY91RWL7FR/MK6hvtXtqCIsmyDkw13Ndu/tXAw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IM56QQse-G8hrSE9PXNmhvdwjrk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:d9:74:6e:21:30:c1:90:c3:0c:b8:33:5a:ba:e2:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=20ce7a410b1ef86f21ad213d3d736686f7708eb9
        Validity
            Not Before: Feb 17 03:00:18 2025 GMT
            Not After : Feb 18 03:00:18 2025 GMT
        Subject: CN=7e36ab19fd01a46ba6540d8cbea8a6f1b4e208da
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:8a:d0:70:78:43:ec:17:4e:bb:a7:07:15:87:
                    e0:70:ac:e8:a7:0f:3a:da:01:94:90:68:b5:9f:36:
                    09:c1:32:a4:e2:88:8a:21:50:dc:39:f8:c0:34:2f:
                    6b:31:4e:3d:ea:ae:d0:e9:d3:29:51:ff:c3:2b:f0:
                    b7:19:db:37:fa:83:a6:a8:33:83:6d:25:48:8a:ce:
                    cf:cb:da:d9:83:a6:3f:9f:d3:9d:2b:0c:06:12:3c:
                    05:a0:a4:8e:14:5f:3f:e9:41:d4:a4:c9:7c:44:d7:
                    d1:2c:0b:5c:7f:79:04:57:b9:b7:bd:a4:dc:c8:e4:
                    5e:5a:25:b3:40:c0:59:de:a3:b2:94:1d:21:7f:b1:
                    cb:ab:94:c0:36:e8:96:04:18:64:c6:34:8c:1c:5f:
                    69:95:39:85:c5:c3:e8:10:3e:10:f4:e9:cf:7f:bc:
                    ee:be:9b:de:b1:af:c1:89:ab:e2:df:77:7a:6b:8f:
                    31:3e:4f:61:22:1c:23:70:08:39:25:ef:33:51:3c:
                    8f:9e:c8:dd:8b:c8:fa:91:d5:25:bb:b0:96:17:19:
                    b1:10:c0:6c:cd:c5:59:77:32:a6:8a:0e:2c:41:2a:
                    a2:d4:f0:e5:99:fe:a3:69:6f:35:dc:7d:b3:c8:96:
                    bc:b0:c4:c7:c0:38:7f:59:aa:54:f1:1f:21:d0:66:
                    e2:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:36:AB:19:FD:01:A4:6B:A6:54:0D:8C:BE:A8:A6:F1:B4:E2:08:DA
            X509v3 Authority Key Identifier:
                keyid:20:CE:7A:41:0B:1E:F8:6F:21:AD:21:3D:3D:73:66:86:F7:70:8E:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM56QQse-G8hrSE9PXNmhvdwjrk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:53:1f:f9:20:29:43:dd:7f:4c:52:c9:ff:ba:94:3d:68:a9:
         70:cc:7d:5d:79:9f:99:c4:41:53:cb:ed:78:49:35:39:28:43:
         e9:85:9c:c4:4b:dc:41:9e:9a:67:e6:78:98:b2:e8:52:a9:dd:
         8e:ad:57:7a:47:f6:ad:7c:28:0e:e3:9d:ae:bd:a7:16:76:df:
         a0:05:41:ca:c8:95:08:09:52:ed:c6:61:17:48:3c:c8:39:57:
         98:17:3c:f2:fb:ce:5b:ae:54:e5:eb:e4:b6:6a:07:72:c2:17:
         b5:e4:ca:bb:8f:71:d0:2e:da:e1:fb:d6:89:96:b9:95:74:db:
         bc:2e:d0:a3:ed:fc:06:31:6e:d1:cb:11:c1:fb:5f:90:f4:6c:
         5a:c5:e5:56:ea:f4:9b:9c:fd:4e:58:70:54:64:03:08:2e:b1:
         28:85:d5:14:e1:31:d7:6d:6a:f4:68:ef:7c:8f:05:76:35:83:
         1d:3b:f8:9c:7d:15:6f:69:c5:c6:5b:3d:4d:2b:55:c7:20:16:
         ee:69:80:c5:a5:89:86:ee:fe:8a:41:95:01:10:2f:01:2e:63:
         1f:eb:2a:48:0b:62:64:8d:1d:2a:f7:24:5f:b4:49:da:2c:a6:
         bc:b3:c5:5d:c0:4e:22:af:69:af:cb:df:2d:36:37:2e:62:ee:
         5a:ae:5e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----