Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft
File:                     bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft (raw, json)
Hash identifier:          1d9XubSclTCF2CKBi7ibigNeLNnIbwm0MZWQmtoiM+8=
Subject key identifier:   6F:F0:F7:04:54:6A:CB:3C:B6:FD:E9:ED:B7:C0:D0:CD:2A:EB:31:3F
Authority key identifier: 6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54
Certificate issuer:       /CN=6d5700916f90983bd8e89cd05fe629ec183bfa54
Certificate serial:       0194C38856FD9FF12DCD2714DADEFEB90A98
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft
Manifest number:          0898
Signing time:             Sat 01 Feb 2025 22:01:19 +0000
Manifest this update:     Sat 01 Feb 2025 22:01:19 +0000
Manifest next update:     Sun 02 Feb 2025 22:01:19 +0000
Files and hashes:         1: bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl (hash: cuWRaYiW77n+vyfinIKm8DOgsU7PrOPrUlO3hurCulI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 02 Feb 2025 22:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:c3:88:56:fd:9f:f1:2d:cd:27:14:da:de:fe:b9:0a:98
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d5700916f90983bd8e89cd05fe629ec183bfa54
        Validity
            Not Before: Feb  1 22:01:19 2025 GMT
            Not After : Feb  2 22:01:19 2025 GMT
        Subject: CN=6ff0f704546acb3cb6fde9edb7c0d0cd2aeb313f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:c1:cd:3c:5d:7d:a2:e5:cf:a6:8e:4f:9c:45:
                    6f:86:f1:81:2c:d7:90:30:f0:77:66:72:e2:f9:de:
                    7d:9a:75:5b:c9:04:38:fa:76:cb:6b:fb:03:3b:5d:
                    69:1d:f9:71:14:09:9f:4a:d9:ca:40:75:3c:85:8d:
                    c6:9b:1d:b4:a5:5d:f3:9d:99:8e:76:47:04:32:78:
                    e8:06:74:4d:a8:37:ad:fc:fa:80:62:a4:1c:27:eb:
                    ee:ad:45:64:96:15:07:fd:9d:cc:69:1a:d0:ae:a7:
                    b0:b3:e7:8d:0b:f9:7e:12:30:29:eb:36:d7:28:7e:
                    21:1c:8d:92:1c:d7:ff:a6:77:4f:ba:2e:82:2c:31:
                    3d:82:a2:41:96:5b:8f:38:3f:06:22:a3:c1:be:98:
                    47:42:d3:71:37:90:67:52:ac:2b:8f:4d:af:41:db:
                    18:b0:fc:fe:67:4d:ee:57:39:b3:3d:3d:5e:63:6f:
                    ad:e2:f5:4b:45:84:af:f2:9b:8f:0a:de:65:d2:5a:
                    42:89:6d:0a:c0:29:04:e8:3e:b4:b8:ca:19:20:ee:
                    ec:9c:b5:37:c7:ca:d8:1e:e6:db:a0:ff:38:b5:1d:
                    c2:8b:a7:ed:f7:c9:68:7a:ff:d7:14:c8:1c:00:b9:
                    9d:f2:0e:4d:f7:f6:f5:2a:5d:49:30:6b:ab:b2:40:
                    8b:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:F0:F7:04:54:6A:CB:3C:B6:FD:E9:ED:B7:C0:D0:CD:2A:EB:31:3F
            X509v3 Authority Key Identifier:
                keyid:6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:8d:56:cd:84:8b:d9:d8:d8:e1:fb:c5:e4:74:a7:93:79:05:
         63:e6:d0:d6:b8:8b:51:e3:bf:b5:c2:ef:0a:60:15:52:fb:b4:
         6a:58:36:6c:e1:00:fe:1f:cb:47:6d:4d:68:01:fa:12:1e:b5:
         16:9e:82:67:14:8d:82:de:c5:4f:9d:af:7a:56:df:3f:34:90:
         eb:4e:37:19:a9:87:a6:4c:21:9b:14:2c:93:95:9f:a5:a3:58:
         99:51:87:f3:07:23:2c:d7:fc:1c:f2:5e:08:c5:c2:83:3f:7e:
         4b:f7:d3:f5:1a:08:04:fe:d8:b0:15:f8:d5:9f:e9:0e:15:24:
         58:ce:a4:b0:fa:c9:e9:2e:e5:d6:ab:1e:4c:89:af:28:71:a9:
         0c:d1:7b:4a:3a:a3:b4:b3:c3:30:23:13:f1:55:ef:e6:08:3c:
         60:a5:17:a4:85:42:b9:ce:fb:63:5b:0b:a6:cd:1b:7a:13:72:
         85:46:ef:74:ae:ba:e8:0e:92:82:8e:5f:c4:7b:3d:22:54:5f:
         33:6c:f1:9b:a7:4e:37:dc:e8:cf:2a:f1:1c:6a:32:63:ae:0b:
         15:34:70:23:9f:32:e3:af:ad:cf:88:ee:d9:33:77:15:e0:e3:
         31:d8:75:a8:2c:8f:50:76:14:6c:d1:68:4f:ac:ef:c2:e0:0a:
         42:3d:37:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----