Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          nt2jZgn0hM5atxrm4Q8ugRtUAuj3DkgwGg7p8nbljNA=
Subject key identifier:   0D:E5:B0:D3:D4:F0:C7:EB:A3:B1:47:96:5F:AC:DB:B9:28:08:A3:8C
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       0195116C217AD5C00AD58093FAFFAE53884B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          0E92
Signing time:             Mon 17 Feb 2025 01:00:53 +0000
Manifest this update:     Mon 17 Feb 2025 01:00:53 +0000
Manifest next update:     Tue 18 Feb 2025 01:00:53 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: wU4gNP/hk217HVUS2U6wM9FmkRtz4HrKEtHELqlpEvg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:6c:21:7a:d5:c0:0a:d5:80:93:fa:ff:ae:53:88:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Feb 17 01:00:53 2025 GMT
            Not After : Feb 18 01:00:53 2025 GMT
        Subject: CN=0de5b0d3d4f0c7eba3b147965facdbb92808a38c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:52:d1:da:a8:24:29:49:4f:ec:6d:1c:02:de:
                    c2:ca:ba:bb:d1:51:32:27:26:e9:bb:ae:e4:60:82:
                    89:51:ee:76:59:36:1f:8a:75:ea:3b:6e:7b:a3:69:
                    69:86:17:39:4e:ba:d5:0f:ea:27:e7:ec:e6:34:3f:
                    d6:d3:2f:1c:e0:c4:0c:4b:cf:bc:12:21:32:3a:63:
                    61:60:fe:43:1f:0f:06:8e:51:0b:fa:40:7a:fc:20:
                    64:13:a8:0d:5d:a1:a1:fb:6c:8c:9e:09:44:e6:8b:
                    69:f1:20:d2:52:e9:87:65:f4:84:ff:e1:df:4d:b1:
                    3b:e4:4d:9d:83:2e:ab:6d:e6:e3:cb:e5:a3:bf:3c:
                    71:1f:bf:df:e4:74:02:4b:63:d0:f1:9b:23:40:2c:
                    9c:8e:55:b4:3c:16:1b:96:1d:d0:99:b9:24:bc:45:
                    f2:23:31:91:66:d3:a2:c4:3f:a9:22:11:05:83:a2:
                    60:c3:a9:7d:ff:3a:38:9c:b3:4b:46:5a:66:c5:05:
                    35:64:3b:83:bf:ac:27:ab:ee:8c:5a:4b:2b:6f:01:
                    12:0c:eb:2d:b7:1d:55:09:72:e6:ef:72:17:74:8e:
                    7d:0e:f8:cb:bc:b2:9c:f6:18:b3:f8:9c:6a:34:0c:
                    f8:3b:8a:a2:8b:20:e8:b9:7b:b2:90:de:0b:d2:51:
                    79:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:E5:B0:D3:D4:F0:C7:EB:A3:B1:47:96:5F:AC:DB:B9:28:08:A3:8C
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:b7:0e:45:97:d8:64:95:2d:73:76:f9:36:30:31:c7:1c:45:
         37:96:60:8c:49:92:6a:09:6d:49:5e:f5:12:51:8c:fb:11:dd:
         38:06:2c:e7:d9:3a:d6:2f:9a:b4:76:8f:f9:49:3e:86:89:87:
         05:6c:f8:45:b0:07:1b:83:c3:90:75:85:c8:4e:52:fc:4f:e8:
         0f:2f:e1:0f:29:46:1e:c8:20:5d:4e:f8:5d:e7:ad:67:4f:e7:
         c1:be:49:7b:14:9c:cb:a1:3f:3a:9d:0e:1a:a3:f9:96:d2:9d:
         1c:32:01:3b:e1:0f:20:b5:f4:e3:04:d4:21:ea:20:41:71:fc:
         08:04:b6:9f:8b:89:6d:52:4c:df:3d:c3:2c:9b:11:51:05:b0:
         22:29:d9:8b:2e:25:42:93:94:b7:d4:67:06:df:25:e0:ed:04:
         37:a3:74:03:89:48:71:4a:13:08:11:50:8a:db:7c:b8:13:c2:
         f1:a5:86:5c:dd:68:26:e6:ea:d9:34:1a:59:8c:88:2c:a9:49:
         a5:5a:da:01:ef:af:87:bd:4d:e3:da:73:51:a6:27:d6:18:de:
         53:23:fc:27:c7:23:cc:5b:77:44:c7:fb:b1:ce:25:38:d9:58:
         8d:03:dd:ed:5c:95:22:cf:31:eb:2a:54:52:c6:9b:10:d6:2a:
         83:e8:83:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----