Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
File:                     5_y3rNVfY0m52BRheGwSRY-G9y4.mft (raw, json)
Hash identifier:          qV9AFD06t8RmXKZkGu2BMKrk0QKbKwXmlI88KOsRNqU=
Subject key identifier:   76:E3:98:F2:9B:12:59:11:B1:26:97:99:04:53:95:64:B7:39:33:8C
Authority key identifier: E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E
Certificate issuer:       /CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
Certificate serial:       01958BBB93F50C2C6B2C1ABFAD2DD89AD266
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
Manifest number:          1492
Signing time:             Wed 12 Mar 2025 19:01:20 +0000
Manifest this update:     Wed 12 Mar 2025 19:01:20 +0000
Manifest next update:     Thu 13 Mar 2025 19:01:20 +0000
Files and hashes:         1: 5_y3rNVfY0m52BRheGwSRY-G9y4.crl (hash: d4XCZ9xARYXMrzYGiqzFf5dRqlckClLD7+/votU8PwQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 19:01:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8b:bb:93:f5:0c:2c:6b:2c:1a:bf:ad:2d:d8:9a:d2:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
        Validity
            Not Before: Mar 12 19:01:20 2025 GMT
            Not After : Mar 13 19:01:20 2025 GMT
        Subject: CN=76e398f29b125911b126979904539564b739338c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:9a:e6:d1:de:7b:94:b8:99:f8:6d:51:2e:22:
                    2d:56:bc:03:ed:02:a2:96:89:05:9e:a9:83:91:aa:
                    0e:e6:2e:bc:d8:1b:89:ac:7b:7f:a2:f5:f6:fd:65:
                    2c:c5:72:6d:f4:b4:5f:18:2d:11:87:24:e3:36:ec:
                    2b:10:89:66:40:1d:ea:20:8b:1f:1b:bb:80:65:4c:
                    b5:f3:b3:42:ed:75:d8:ef:45:ca:c6:30:70:73:80:
                    ee:9c:99:75:44:e0:fc:62:e1:b1:31:e7:1f:f4:61:
                    ed:66:a5:30:e6:fb:69:d3:1a:a3:9a:60:3d:eb:18:
                    35:85:0b:29:7d:6a:5f:e6:e2:36:23:c9:a2:0d:90:
                    a3:18:4b:2e:c8:89:48:a6:1a:d2:a2:6b:60:48:11:
                    84:10:51:ac:c1:71:12:ce:90:7e:d7:05:e9:07:bf:
                    30:0c:12:06:fc:70:89:cd:9c:23:11:a4:d3:a7:72:
                    e2:4b:fa:89:2f:a6:de:d1:62:a4:e9:ed:66:af:16:
                    b6:e3:06:c8:ce:df:55:6a:cf:37:35:38:e5:9f:c2:
                    3c:d6:fd:9f:47:1c:d1:71:d1:a8:0f:6b:67:ff:8a:
                    75:36:59:3f:1f:42:43:0c:a8:0e:9b:f1:7f:c8:8a:
                    e2:b5:6a:46:7a:45:54:7d:2e:25:13:b3:67:8a:ba:
                    1e:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:E3:98:F2:9B:12:59:11:B1:26:97:99:04:53:95:64:B7:39:33:8C
            X509v3 Authority Key Identifier:
                keyid:E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:9c:37:57:9e:7f:e4:5d:ab:9c:e7:60:db:51:f7:e8:40:22:
         a7:2e:82:39:40:20:fd:49:88:9e:11:bc:55:52:d0:09:2b:4b:
         d4:7c:f3:f8:61:4d:f3:a9:90:38:49:21:a3:bd:c4:ca:eb:32:
         b6:94:4c:79:75:7d:e8:b8:b4:75:45:4c:62:e3:fa:23:62:8e:
         59:0a:ef:1a:d2:3d:c9:cf:5f:1e:a5:24:7d:af:f4:61:b0:0c:
         71:a6:23:f0:02:3c:4f:01:80:f4:26:5e:2b:25:ab:de:10:95:
         b7:6c:c9:87:09:2a:14:41:a6:ab:9e:d9:71:be:03:b9:92:9f:
         b2:cf:cf:0a:15:1e:18:2e:08:70:10:ed:95:24:9a:40:7c:76:
         14:d9:05:9e:94:65:b3:af:97:1c:4e:00:bf:5b:32:ad:e0:d6:
         d4:d6:bf:d6:6c:db:de:85:b0:6f:87:cc:f2:01:ad:2a:dc:ab:
         1c:84:24:5b:0a:a0:8e:3e:dd:d0:e1:ac:66:40:14:7b:81:92:
         ba:82:01:47:e6:ce:4f:ae:4d:c5:ac:11:6d:fd:63:d4:91:24:
         99:1b:19:23:59:59:2d:68:81:85:9b:21:60:11:0f:b4:77:a2:
         48:3d:63:5f:a1:c6:b0:e3:aa:57:08:79:8f:a9:13:64:20:26:
         95:a7:be:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----