Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
File:                     K5Ro565AOUbluk3mHMHEej2b794.mft (raw, json)
Hash identifier:          WXneAk+J5JbSzN5PkSt0+nqwbcwMAfN10BfUO9UotAQ=
Subject key identifier:   A4:66:54:D4:45:3A:90:2C:27:32:41:B2:E6:03:82:54:96:21:40:A2
Authority key identifier: 2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE
Certificate issuer:       /CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde
Certificate serial:       0195127E0E371521CD7630D584F9577AF04B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
Manifest number:          0910
Signing time:             Mon 17 Feb 2025 06:00:05 +0000
Manifest this update:     Mon 17 Feb 2025 06:00:05 +0000
Manifest next update:     Tue 18 Feb 2025 06:00:05 +0000
Files and hashes:         1: K5Ro565AOUbluk3mHMHEej2b794.crl (hash: w4DfKCUeLPI4U9fH1ymtUNZF/ReN9XVx3j9w/Us9fn0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:12:7e:0e:37:15:21:cd:76:30:d5:84:f9:57:7a:f0:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde
        Validity
            Not Before: Feb 17 06:00:05 2025 GMT
            Not After : Feb 18 06:00:05 2025 GMT
        Subject: CN=a46654d4453a902c273241b2e6038254962140a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:7e:51:35:54:26:f7:b0:ed:51:2f:c1:26:3f:
                    c7:63:ba:46:d3:9f:a1:19:d5:39:58:63:d8:30:63:
                    d5:3e:b0:a5:d0:a4:e3:b5:d4:a5:ce:54:ae:fb:26:
                    d6:f0:84:d4:27:6b:17:c9:76:1e:cc:11:44:01:10:
                    7e:dc:b7:48:82:9b:3c:9c:3b:7f:25:aa:01:dc:ee:
                    39:c1:9c:2a:bc:e4:ef:e8:b8:eb:8e:5d:a5:ed:08:
                    a3:af:d4:82:2f:26:1b:cb:73:2e:2e:b8:3b:58:6e:
                    b9:4f:8b:f8:c2:fc:c7:52:ec:ab:ee:c5:b4:84:b6:
                    8d:ea:8c:c1:ad:cf:30:9d:3d:f1:e0:f8:ee:2a:93:
                    b2:2a:be:b8:95:fc:51:1e:03:79:ad:bc:97:7f:23:
                    63:a4:7d:bd:d7:05:f1:e9:1c:c7:c7:af:57:6c:34:
                    f5:83:e9:11:90:61:c7:2c:f3:f4:04:22:3b:04:ac:
                    be:c7:b4:ed:39:72:25:c9:5a:f5:7c:76:62:74:5e:
                    8e:3e:3f:09:04:62:5b:6d:0e:45:73:44:a2:05:97:
                    2f:85:5d:38:fc:86:82:7d:21:a4:69:99:38:6d:9d:
                    9a:fd:79:18:76:d4:22:29:ab:27:23:14:ed:a0:cf:
                    c0:ad:51:c1:de:07:db:00:70:c5:b9:88:3e:b6:b3:
                    53:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:66:54:D4:45:3A:90:2C:27:32:41:B2:E6:03:82:54:96:21:40:A2
            X509v3 Authority Key Identifier:
                keyid:2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:42:e9:ef:af:6a:75:5b:95:6a:d6:df:e6:2a:3c:73:66:de:
         a7:43:40:f8:44:10:fe:b8:a0:59:51:e3:55:b6:84:f6:72:c1:
         5e:fa:16:84:fd:2d:4d:93:da:28:f1:a3:1a:f1:0d:3f:61:37:
         a3:07:8a:67:73:c4:3e:6b:10:0a:68:6f:7d:3c:75:f1:3f:8b:
         1c:a5:da:47:46:2b:fe:4c:ed:f8:dd:50:c4:c1:93:c2:ab:df:
         8f:53:c6:b2:8f:86:26:c7:07:6a:49:f0:c4:04:56:16:d1:63:
         91:30:51:b2:77:aa:8c:1b:d6:47:4a:76:2e:b5:8b:d5:56:95:
         f6:53:71:a6:19:27:34:2d:07:06:13:3b:2a:cd:15:f1:b3:39:
         52:9e:34:da:61:49:38:b6:f7:53:da:70:9a:8b:d6:ab:cb:04:
         f0:75:d6:08:e6:67:ae:68:a4:12:ea:43:9b:f6:ed:84:e0:20:
         fb:3a:bf:e5:36:69:b4:23:27:4b:9e:10:98:17:49:58:81:0c:
         2a:8a:21:ac:78:ca:2c:72:cc:fc:4d:1b:89:32:a8:02:14:07:
         da:18:11:c4:69:a0:2a:8d:b1:ae:67:d7:90:7d:89:86:d0:65:
         9a:39:bb:a1:ea:7e:2a:37:37:be:9a:7f:02:98:d2:fc:17:fd:
         59:5c:55:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----