Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
File:                     fXrxi3mJleFLOBNhoGu2aEm36Fo.mft (raw, json)
Hash identifier:          i0OfpCLVc242zGZh/BCq5XEuhKfaBcZVYKaP0U5iIoY=
Subject key identifier:   C0:C3:6D:3E:CC:5C:37:1F:94:76:E2:EC:D7:7F:7D:77:94:4E:1B:7B
Authority key identifier: 7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A
Certificate issuer:       /CN=7d7af18b798995e14b381361a06bb66849b7e85a
Certificate serial:       0195116B9C8966DA6AE38B7B48CB4AEE4EBC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
Manifest number:          0581
Signing time:             Mon 17 Feb 2025 01:00:19 +0000
Manifest this update:     Mon 17 Feb 2025 01:00:19 +0000
Manifest next update:     Tue 18 Feb 2025 01:00:19 +0000
Files and hashes:         1: fXrxi3mJleFLOBNhoGu2aEm36Fo.crl (hash: JNdT6K3tDYFpgU/JhMisGuE2lPp82lTO7VCW8PyDLbc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:6b:9c:89:66:da:6a:e3:8b:7b:48:cb:4a:ee:4e:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d7af18b798995e14b381361a06bb66849b7e85a
        Validity
            Not Before: Feb 17 01:00:19 2025 GMT
            Not After : Feb 18 01:00:19 2025 GMT
        Subject: CN=c0c36d3ecc5c371f9476e2ecd77f7d77944e1b7b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:61:fb:d3:a8:03:12:28:01:a5:67:b4:7f:97:
                    62:63:cc:7a:31:bc:20:4f:4d:f5:75:ff:ab:37:b3:
                    ac:b2:7e:49:e9:72:cb:b3:b5:81:bc:f6:43:67:99:
                    ea:51:d7:70:96:b9:dd:cc:2e:66:d2:e6:bf:15:4b:
                    82:22:0b:32:90:16:f4:e2:c7:a2:cf:70:78:86:4c:
                    9c:58:e2:44:8f:26:d3:47:61:bf:8c:74:06:6e:5b:
                    97:7c:6a:ef:71:77:9c:da:d5:e1:9c:f2:4b:7c:8d:
                    5b:3e:8a:62:28:98:3b:6c:fd:18:db:c1:95:32:4c:
                    d9:b4:30:eb:39:f9:01:90:2a:8e:ac:bb:b3:05:9c:
                    b1:c7:df:3b:49:e2:75:18:37:f9:e6:2b:26:db:a9:
                    26:20:d0:59:9b:c0:2d:8c:de:ed:95:b5:4b:bd:ac:
                    7d:72:1a:44:f3:d0:f8:2b:71:75:8e:89:3f:bc:45:
                    6c:e0:9e:fd:bc:7d:e9:ed:3f:1f:63:9e:21:bf:7b:
                    2c:4c:6a:96:97:2b:de:09:bd:95:c5:f7:70:1b:6d:
                    a9:db:a8:7a:8f:44:cc:c9:ab:73:27:d2:70:e5:04:
                    00:2f:7c:04:37:31:41:55:1b:c1:64:4f:9f:e3:e8:
                    08:1b:ca:f9:ae:f3:19:b4:ab:b7:19:7f:e7:4c:25:
                    48:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:C3:6D:3E:CC:5C:37:1F:94:76:E2:EC:D7:7F:7D:77:94:4E:1B:7B
            X509v3 Authority Key Identifier:
                keyid:7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:87:de:5e:62:30:4c:7f:16:b9:34:1d:f8:af:a7:f7:1d:4a:
         0e:0e:56:5d:4c:db:7d:f4:57:97:18:35:75:91:91:8d:04:0e:
         01:72:3c:85:90:b7:b1:c7:f2:e5:2f:7d:e1:6f:87:76:d7:82:
         14:82:77:7a:2d:62:83:66:2e:4d:b5:fb:09:60:73:8c:25:9c:
         69:6a:7e:a1:4b:92:5f:85:6a:3e:ab:70:35:0e:d3:72:f8:f6:
         03:f8:be:d2:c7:0e:5c:63:71:07:af:9a:51:68:91:82:c7:86:
         fc:a1:dc:e4:42:a4:a0:f3:40:f8:84:06:dd:ec:eb:8c:55:ad:
         0e:91:1e:a8:7a:fb:35:e2:36:2e:20:9a:23:28:42:4e:a6:65:
         ea:1a:16:cb:73:82:48:4b:7d:b2:e8:69:4a:a8:b0:4b:0e:b6:
         2a:f7:f1:d8:3d:4d:0f:29:13:bc:eb:24:ff:c0:82:20:1a:d1:
         03:04:95:48:3f:4b:4f:d8:9e:fa:71:b3:cd:0a:ff:fa:16:e5:
         fb:1d:6d:da:93:91:dd:40:52:a7:cf:f8:68:20:6e:dd:15:b4:
         70:d7:57:9e:85:a2:14:a7:78:8c:7a:eb:93:37:d9:4b:59:f9:
         26:06:a2:b9:b7:ad:6d:98:1a:cf:c5:32:90:75:44:a6:6a:29:
         9b:78:b4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----