Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft
File:                     i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft (raw, json)
Hash identifier:          IwEYFy9U+lBN5U6omXmU/wU2w8ZvT8mdFRuTqD8p77s=
Subject key identifier:   4C:1D:21:0C:23:E0:E3:0E:5C:91:BB:2B:5D:20:E7:C8:CE:D0:F7:19
Authority key identifier: 8B:D8:93:1F:63:57:94:28:BF:08:CC:B1:99:A3:A9:8D:CB:A6:B8:24
Certificate issuer:       /CN=8bd8931f63579428bf08ccb199a3a98dcba6b824
Certificate serial:       01951210783BC5D656DCD64BF78F4523E4EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft
Manifest number:          092E
Signing time:             Mon 17 Feb 2025 04:00:23 +0000
Manifest this update:     Mon 17 Feb 2025 04:00:23 +0000
Manifest next update:     Tue 18 Feb 2025 04:00:23 +0000
Files and hashes:         1: i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl (hash: Mnt5KDOgCMsUdlo38OySpG0eXwmxUQxcFgXODAX9iIs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:12:10:78:3b:c5:d6:56:dc:d6:4b:f7:8f:45:23:e4:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8bd8931f63579428bf08ccb199a3a98dcba6b824
        Validity
            Not Before: Feb 17 04:00:23 2025 GMT
            Not After : Feb 18 04:00:23 2025 GMT
        Subject: CN=4c1d210c23e0e30e5c91bb2b5d20e7c8ced0f719
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:b2:6a:cc:43:bb:80:b1:6b:68:fc:60:6a:41:
                    87:7c:a7:dd:00:54:07:18:0e:e8:8a:1a:88:da:35:
                    4c:de:b4:c4:7d:53:ed:f5:5b:a8:a9:48:96:37:b8:
                    d1:e7:fb:5d:69:2c:60:f3:74:16:2f:3c:4e:1d:29:
                    a8:18:63:bf:4b:65:a2:19:e2:df:3e:ef:c6:6b:d2:
                    72:42:a7:04:39:12:f4:64:c2:cb:da:94:c1:f5:d3:
                    34:f6:3b:c0:eb:05:35:68:27:e2:00:47:94:64:fb:
                    c7:4e:71:5f:6b:eb:b8:2a:80:f8:2b:91:09:d9:b4:
                    3c:de:92:eb:41:72:dd:f9:f6:ca:61:e8:fe:46:54:
                    f9:8c:a3:11:37:58:ac:2c:72:48:9c:9c:0f:53:07:
                    6f:dd:0c:18:34:f3:34:75:af:02:49:b6:53:8d:cf:
                    d5:4c:aa:0c:41:de:c4:a8:85:f2:58:31:20:f7:2d:
                    ba:5d:ac:0d:c6:fe:c1:2d:b0:eb:6f:00:4c:98:1b:
                    1c:bd:f7:bd:a2:5e:81:25:d0:3b:86:89:f0:5b:58:
                    04:68:28:d7:8f:7d:23:03:0a:52:f8:7e:db:a8:f5:
                    bc:b9:af:8a:ec:b2:30:a5:74:0f:0f:35:3e:2a:8e:
                    29:4a:07:31:82:44:99:b2:d5:79:84:25:42:16:ec:
                    15:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:1D:21:0C:23:E0:E3:0E:5C:91:BB:2B:5D:20:E7:C8:CE:D0:F7:19
            X509v3 Authority Key Identifier:
                keyid:8B:D8:93:1F:63:57:94:28:BF:08:CC:B1:99:A3:A9:8D:CB:A6:B8:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:9a:e3:97:e9:94:27:8d:18:8a:f9:16:16:33:3b:ed:fa:73:
         5b:c6:4f:76:fa:76:11:84:22:bc:f7:2f:6c:4c:f8:e7:2f:87:
         77:b9:57:c0:8c:64:be:60:ed:31:09:d6:05:ab:4d:bf:df:04:
         31:d4:95:af:3c:8f:72:7a:b2:66:66:da:26:5f:ac:5b:9b:9f:
         e0:95:35:c3:bc:db:1b:3e:8b:a5:4c:2e:44:d0:cc:3f:57:37:
         4e:0d:9b:65:83:26:d4:66:6b:bb:cc:71:dc:09:94:d9:07:2f:
         23:36:07:e0:fd:b6:e6:d0:4b:65:73:fd:a8:73:11:41:c4:47:
         aa:7d:ca:8d:63:2c:95:e4:f2:06:e1:61:b1:1c:cc:91:6d:df:
         aa:4b:61:10:9a:7a:18:61:9a:e4:cb:55:b6:bd:61:d3:7b:f4:
         63:79:1c:42:59:11:e2:b6:4b:06:88:de:b4:2c:dc:e9:e9:76:
         c0:d3:e8:0a:4c:90:e0:bc:55:80:87:bd:fe:5c:04:a3:74:97:
         11:e8:e8:1a:8a:55:89:6b:d4:6b:4b:80:eb:73:d4:4e:8d:99:
         ec:ff:6b:80:78:03:a8:4c:00:ad:78:e1:3f:4c:e8:d9:08:b4:
         9d:74:05:54:a2:d0:44:63:f6:67:80:38:8e:80:7c:bd:7e:10:
         f3:15:ec:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----