Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/916742-51f9-4eb4-a195-29fd80ba4bf1/1/u8v1S15m1hoXV2yMc2vyZy47mho.mft
File:                     u8v1S15m1hoXV2yMc2vyZy47mho.mft (raw, json)
Hash identifier:          TUfuR6+lLzb+AsBaCkTwgj7NLX4pxbuV+lAwLRM2nbg=
Subject key identifier:   E2:AB:F9:D7:34:BD:D8:4E:06:45:E7:64:75:EF:94:41:F3:02:D5:ED
Authority key identifier: BB:CB:F5:4B:5E:66:D6:1A:17:57:6C:8C:73:6B:F2:67:2E:3B:9A:1A
Certificate issuer:       /CN=bbcbf54b5e66d61a17576c8c736bf2672e3b9a1a
Certificate serial:       019654253C3E3CF5A10389B7863308FC3A0D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/u8v1S15m1hoXV2yMc2vyZy47mho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c8/916742-51f9-4eb4-a195-29fd80ba4bf1/1/u8v1S15m1hoXV2yMc2vyZy47mho.mft
Manifest number:          065F
Signing time:             Sun 20 Apr 2025 17:00:48 +0000
Manifest this update:     Sun 20 Apr 2025 17:00:48 +0000
Manifest next update:     Mon 21 Apr 2025 17:00:48 +0000
Files and hashes:         1: u8v1S15m1hoXV2yMc2vyZy47mho.crl (hash: TQtxNO7pfUQNa7bXD0We2fZVbXv95Udri+BmB9uDMhI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c8/916742-51f9-4eb4-a195-29fd80ba4bf1/1/u8v1S15m1hoXV2yMc2vyZy47mho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c8/916742-51f9-4eb4-a195-29fd80ba4bf1/1/u8v1S15m1hoXV2yMc2vyZy47mho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/u8v1S15m1hoXV2yMc2vyZy47mho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 21 Apr 2025 16:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:54:25:3c:3e:3c:f5:a1:03:89:b7:86:33:08:fc:3a:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bbcbf54b5e66d61a17576c8c736bf2672e3b9a1a
        Validity
            Not Before: Apr 20 17:00:48 2025 GMT
            Not After : Apr 21 17:00:48 2025 GMT
        Subject: CN=e2abf9d734bdd84e0645e76475ef9441f302d5ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:40:c0:f1:e3:06:55:94:65:51:89:d9:30:81:
                    f3:9c:09:51:9b:88:ec:93:c8:ce:88:98:ad:bb:9c:
                    de:3d:eb:3c:db:a5:17:73:f7:10:8a:21:b4:a1:8a:
                    7f:d7:2d:3f:4b:b2:45:5d:90:21:8a:dc:1e:78:e1:
                    58:3e:5f:de:99:37:d7:36:38:98:65:79:cb:27:6c:
                    5c:d9:f1:be:73:e0:e7:79:7f:83:ca:86:13:1d:66:
                    39:b6:c5:c0:ca:e9:1f:bf:35:a5:43:dc:b8:b6:48:
                    62:41:3a:3a:68:3a:80:46:05:c6:c5:33:8d:ac:28:
                    f6:bc:8f:66:72:26:38:f6:4d:16:34:39:2d:12:e1:
                    2c:eb:a6:52:a0:5e:86:82:82:47:22:88:9e:63:7e:
                    2c:a1:50:ca:a0:2d:31:fc:c5:e8:13:26:e9:eb:cd:
                    ed:74:f6:14:1d:30:5c:76:ec:84:eb:3e:11:41:b3:
                    01:1f:da:11:a5:93:4a:72:0b:80:dd:46:30:42:e2:
                    3d:97:86:cb:83:82:65:c6:9e:74:bf:8e:c0:89:a3:
                    a9:79:bd:ce:a8:ba:1f:65:11:1e:f8:85:95:f6:62:
                    b7:a4:d4:03:8d:32:ce:d5:fa:66:a1:95:6b:47:dc:
                    6d:9a:3b:de:42:c9:23:d2:be:11:f3:4c:a9:b9:37:
                    0b:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:AB:F9:D7:34:BD:D8:4E:06:45:E7:64:75:EF:94:41:F3:02:D5:ED
            X509v3 Authority Key Identifier:
                keyid:BB:CB:F5:4B:5E:66:D6:1A:17:57:6C:8C:73:6B:F2:67:2E:3B:9A:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8v1S15m1hoXV2yMc2vyZy47mho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/916742-51f9-4eb4-a195-29fd80ba4bf1/1/u8v1S15m1hoXV2yMc2vyZy47mho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/916742-51f9-4eb4-a195-29fd80ba4bf1/1/u8v1S15m1hoXV2yMc2vyZy47mho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:6b:83:77:a3:3d:1d:1c:1e:2e:5f:d5:90:f7:e1:15:54:f7:
         0f:98:fe:f9:16:d6:3a:91:49:0b:4d:e6:3c:c2:cb:d7:70:93:
         b7:0e:15:d4:e2:ae:d5:00:80:0c:07:2b:21:83:9b:c8:80:1d:
         02:02:43:f4:29:8a:1a:b6:db:b3:eb:f1:6f:5a:87:4c:79:7d:
         fa:43:41:b1:99:e8:ad:fc:95:78:d6:40:68:b0:16:81:23:e1:
         37:e8:b0:b6:b6:7d:07:b9:f9:b7:ed:71:e9:5f:87:17:e2:8a:
         78:f0:74:a1:93:06:91:25:7e:f3:9b:1a:7d:99:75:3c:bb:ce:
         a1:96:81:f4:28:f3:a1:e9:75:33:02:ba:fd:e2:71:aa:13:a8:
         ce:8f:bb:53:97:77:2c:3a:72:41:0e:58:81:45:01:91:f6:45:
         4c:24:af:d6:15:7b:13:40:69:39:78:ac:10:0e:f2:3a:4c:bd:
         65:0c:b2:d2:a8:c4:23:60:31:fd:ff:a4:26:df:c1:69:10:03:
         45:40:cf:b8:10:e7:95:e9:78:21:e0:04:50:c7:0d:a0:c7:84:
         62:9a:39:0a:07:96:94:48:fb:f1:b4:c3:7d:8e:fd:6c:2b:eb:
         2b:00:44:25:2b:e7:71:11:62:e3:38:11:4a:3f:cc:53:5f:fd:
         1e:77:ef:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----