Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
File:                     j7phV8tS0RaPUIRsXlB5IkDt8-A.mft (raw, json)
Hash identifier:          TBq1Q5Oc6xj0XVczYVWF8mpEuzPj/LHcyEaJvHjlE44=
Subject key identifier:   9F:14:3B:C1:69:AA:15:41:CF:92:36:C1:A6:84:D5:3E:E3:BF:ED:72
Authority key identifier: 8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0
Certificate issuer:       /CN=8fba6157cb52d1168f50846c5e50792240edf3e0
Certificate serial:       01951134C8F9354F9511858435140B0881C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
Manifest number:          0786
Signing time:             Mon 17 Feb 2025 00:00:26 +0000
Manifest this update:     Mon 17 Feb 2025 00:00:26 +0000
Manifest next update:     Tue 18 Feb 2025 00:00:26 +0000
Files and hashes:         1: j7phV8tS0RaPUIRsXlB5IkDt8-A.crl (hash: kG47fKT9Jh3gWOvlp3j3SXcOWopbnnOrvgKnHWJuDxQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:34:c8:f9:35:4f:95:11:85:84:35:14:0b:08:81:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8fba6157cb52d1168f50846c5e50792240edf3e0
        Validity
            Not Before: Feb 17 00:00:26 2025 GMT
            Not After : Feb 18 00:00:26 2025 GMT
        Subject: CN=9f143bc169aa1541cf9236c1a684d53ee3bfed72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:d7:7a:58:05:d1:e4:15:e8:0c:b6:ec:44:bd:
                    ac:30:52:9b:0e:bb:ff:ad:46:d1:8a:5a:3b:48:1c:
                    3c:2c:3e:80:a5:39:cc:25:95:46:66:ed:09:8b:c5:
                    70:5c:05:36:f4:3f:d5:6d:75:ea:89:03:a5:fa:5b:
                    31:4e:40:72:5b:c8:9c:c5:67:b3:81:87:1d:1c:c8:
                    d6:1f:78:31:97:ac:22:ad:6d:50:b6:c0:83:4a:57:
                    fb:8a:43:42:4e:ab:03:07:e7:13:c8:a2:7b:d4:15:
                    a4:b2:96:9d:95:63:02:6a:92:80:97:ef:99:dc:4b:
                    ad:8a:35:b5:c9:26:45:4a:61:3e:c7:73:9c:d0:b9:
                    59:4d:b8:33:be:70:bf:ff:a0:98:2a:39:25:cc:25:
                    e1:2d:80:54:9d:89:c8:ea:74:a2:d5:39:46:bf:59:
                    86:c4:75:e9:4a:30:bb:db:37:79:2f:02:22:b5:46:
                    76:bc:b5:fd:7b:6d:c7:5f:f4:fd:6c:24:b4:84:29:
                    f2:1b:d0:fe:e2:97:4b:39:0f:36:9f:6e:80:23:7e:
                    19:43:39:cc:57:9b:32:94:6c:f2:02:26:20:ea:42:
                    a3:5a:5d:96:01:55:2e:3d:38:c0:22:56:d0:49:10:
                    30:d9:1f:2b:36:a5:24:97:7c:60:2a:35:c8:d2:41:
                    b4:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:14:3B:C1:69:AA:15:41:CF:92:36:C1:A6:84:D5:3E:E3:BF:ED:72
            X509v3 Authority Key Identifier:
                keyid:8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:d7:54:5f:61:18:f5:86:15:08:6b:bb:52:fc:db:53:b5:0b:
         f5:95:f1:e7:7d:65:e2:2c:e0:2d:9b:a5:ea:18:73:ad:1e:cb:
         96:d9:db:c7:55:ed:4a:28:3c:77:2d:f9:0a:59:c6:c5:4d:d7:
         47:46:a8:6b:59:47:db:cb:f0:4a:00:ab:42:64:78:1c:4f:7c:
         6e:2d:ab:38:ef:78:5e:13:cb:7b:b3:43:eb:31:16:3a:39:d6:
         67:f4:b1:9f:5d:fd:93:82:6b:81:44:77:5c:61:30:a1:af:c7:
         ff:a0:63:4f:00:f2:f5:9f:42:4a:72:ff:2f:eb:4a:fa:dc:bf:
         6e:a9:0c:9e:48:d9:22:cd:82:85:dc:ef:65:78:e3:63:b6:18:
         47:74:7c:fa:ed:d6:85:4d:b1:14:75:2e:8e:0c:54:ca:6e:28:
         d5:99:48:be:4d:29:54:85:e7:0f:99:b7:8b:fb:b5:2a:05:55:
         ba:3a:31:fa:aa:16:4c:d5:f7:c4:1f:ab:fd:05:ee:fe:03:e2:
         54:29:8d:34:5f:29:8b:60:c2:5c:0b:00:39:78:8d:6e:e9:7f:
         af:5a:c0:d1:f8:4b:55:5e:d0:0c:b3:8e:98:b4:a0:a1:1d:c9:
         b5:d0:49:bc:d8:28:4e:3d:3a:d1:9c:72:3c:13:8f:70:b8:74:
         e7:08:22:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----