Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
File:                     MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft (raw, json)
Hash identifier:          MklaLaHtxtnJnjJjYSfcO1pCTf5dPJaycuACNHnEdJI=
Subject key identifier:   01:CD:9A:B2:A4:0E:55:45:25:0A:FB:20:DE:B6:88:0B:B1:60:1B:B1
Authority key identifier: 31:4C:E9:5B:A2:3C:DC:9D:60:99:7C:23:0D:63:59:AD:31:C1:A5:9D
Certificate issuer:       /CN=314ce95ba23cdc9d60997c230d6359ad31c1a59d
Certificate serial:       0196440D2158FF3C437B42D966A9986DB96D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
Manifest number:          0441
Signing time:             Thu 17 Apr 2025 14:00:33 +0000
Manifest this update:     Thu 17 Apr 2025 14:00:33 +0000
Manifest next update:     Fri 18 Apr 2025 14:00:33 +0000
Files and hashes:         1: MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl (hash: sWcSCR0NymZfjznknUmOxT9ZQz7VZ//F4KhmDQwxWgM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 14:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:44:0d:21:58:ff:3c:43:7b:42:d9:66:a9:98:6d:b9:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=314ce95ba23cdc9d60997c230d6359ad31c1a59d
        Validity
            Not Before: Apr 17 14:00:33 2025 GMT
            Not After : Apr 18 14:00:33 2025 GMT
        Subject: CN=01cd9ab2a40e5545250afb20deb6880bb1601bb1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:83:52:fc:f0:39:f0:77:ab:ca:5d:17:06:ff:
                    9a:c6:db:b1:b3:cb:f0:2a:a4:53:c1:f3:68:6d:28:
                    b1:a5:a4:1a:c8:f4:13:1f:c3:f0:29:e0:e9:c4:3e:
                    7a:b3:28:85:05:d4:96:06:5f:8b:70:e8:c7:d2:99:
                    74:4a:19:f4:86:35:b4:5d:29:b1:68:01:c3:4f:49:
                    3e:9e:3a:81:99:f0:9b:5e:07:72:4d:b1:70:c3:3b:
                    98:00:07:f7:43:f2:5a:40:74:30:e8:f4:b9:10:80:
                    d3:fa:f5:4a:08:07:c6:da:79:64:4e:e2:db:3f:95:
                    d9:70:9e:22:42:76:ea:87:a2:44:23:33:4f:fb:33:
                    24:86:33:89:68:2c:bf:b0:88:3e:64:e2:be:ee:bf:
                    9d:a4:95:88:1f:0a:1d:88:58:d9:b5:34:c2:b4:4d:
                    e7:d4:c0:77:08:ef:5f:ea:9b:8c:b1:34:83:58:3b:
                    f8:ce:c1:a7:7f:27:ab:88:5b:09:83:2c:fd:08:e3:
                    5b:c3:19:5c:d2:37:7e:84:e2:49:cd:39:64:2d:dc:
                    12:f0:ad:00:0a:16:7d:09:ec:b8:97:b8:91:e1:8c:
                    93:9c:67:c7:aa:05:b2:30:f8:ba:73:71:63:1a:27:
                    52:94:d5:82:a7:6c:59:14:08:86:38:eb:32:91:da:
                    4f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:CD:9A:B2:A4:0E:55:45:25:0A:FB:20:DE:B6:88:0B:B1:60:1B:B1
            X509v3 Authority Key Identifier:
                keyid:31:4C:E9:5B:A2:3C:DC:9D:60:99:7C:23:0D:63:59:AD:31:C1:A5:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:35:e7:94:e1:a1:17:4b:28:45:23:cf:c0:37:97:e1:9c:03:
         47:c7:13:d9:90:72:6a:73:69:22:5c:e6:ab:e2:40:44:70:90:
         7f:56:84:5f:b2:6d:5b:5b:92:61:42:98:c1:d2:1d:df:da:df:
         74:7b:6b:3f:f8:c9:70:84:16:d8:45:1a:68:89:04:1b:f3:eb:
         8a:5c:4f:ae:7a:5d:91:cf:95:67:0e:80:7a:3f:2d:c0:1f:0a:
         46:18:14:2c:81:bc:5b:1f:c7:cb:bf:ce:db:a1:8c:86:4d:58:
         5d:60:74:54:6d:1d:20:9a:65:df:67:cb:21:78:54:87:db:0b:
         1f:ee:a4:17:c6:5f:79:2d:e3:0d:25:b8:e5:16:6e:e5:a1:77:
         05:40:7b:2a:d1:bb:75:98:fc:9c:6e:6f:c8:07:a5:b7:1a:61:
         12:26:a9:01:64:4f:c1:e8:78:78:31:c9:1f:78:e7:ba:7d:a9:
         74:3e:62:97:ea:2e:af:58:f3:4f:e3:2c:ee:58:14:35:77:e9:
         96:3c:b9:b5:aa:da:51:f7:29:b7:af:5a:48:92:85:f9:e4:68:
         63:88:34:1e:5b:08:2d:b3:28:cb:15:77:5a:db:1b:7a:d0:df:
         74:2d:f2:09:ab:e2:12:c2:7e:d9:aa:72:3f:50:d0:63:aa:ed:
         a9:2d:92:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----