Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
File:                     mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json)
Hash identifier:          uoNvEiipuaEXntMmnk2596aqPBiLgkvcK3iUpunJY/M=
Subject key identifier:   C1:9E:E0:97:29:8B:55:ED:49:B1:0D:E9:B0:3B:C1:8F:20:1E:8A:9E
Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33
Certificate issuer:       /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
Certificate serial:       019645C4BE15D738E5F50F22519E78515984
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
Manifest number:          118B
Signing time:             Thu 17 Apr 2025 22:00:43 +0000
Manifest this update:     Thu 17 Apr 2025 22:00:43 +0000
Manifest next update:     Fri 18 Apr 2025 22:00:43 +0000
Files and hashes:         1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: xA4BL225OGYoG6cEmrDxM7JSx54X3nJcjqsb2KpPRWo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 18 Apr 2025 22:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:45:c4:be:15:d7:38:e5:f5:0f:22:51:9e:78:51:59:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33
        Validity
            Not Before: Apr 17 22:00:43 2025 GMT
            Not After : Apr 18 22:00:43 2025 GMT
        Subject: CN=c19ee097298b55ed49b10de9b03bc18f201e8a9e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:90:1f:08:9b:30:44:ba:b3:ed:a5:5f:7b:5e:
                    e8:db:d0:21:78:c0:fc:b6:4f:e1:2e:05:19:46:9f:
                    8d:9b:b1:28:16:75:18:f5:5f:58:5e:a7:1b:fd:49:
                    60:9d:be:c2:95:50:f8:39:ed:ed:67:a0:93:83:b9:
                    91:42:ed:9d:20:2c:6e:c4:5e:38:d1:57:22:29:5f:
                    b2:79:81:3e:03:0e:79:7e:1b:4a:a7:f2:45:33:23:
                    c1:01:6c:bb:56:2a:31:aa:c3:01:6d:16:50:fc:4c:
                    00:e7:52:8a:65:f2:14:22:e4:ea:92:42:68:2c:53:
                    b6:9e:51:51:e1:c2:b8:35:15:6d:1e:8a:66:97:14:
                    9a:3b:2d:03:80:83:50:89:16:73:10:c7:e3:75:75:
                    87:23:d1:65:fc:0c:52:52:e9:61:14:9b:16:d1:a8:
                    94:cd:c9:13:40:74:b2:33:d6:08:51:a1:9c:01:ca:
                    b0:61:c5:c7:06:0f:8c:de:bf:9d:bb:7f:5d:a3:1c:
                    d2:4e:83:75:1e:55:ae:45:68:0b:28:f0:93:b4:32:
                    3f:08:89:00:52:bb:87:36:2d:01:99:e2:12:a0:d8:
                    f3:0e:10:10:54:26:b8:66:11:08:69:ee:7f:c2:7d:
                    10:f8:59:a7:a7:e7:b4:f4:07:bd:f8:74:9b:12:17:
                    11:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:9E:E0:97:29:8B:55:ED:49:B1:0D:E9:B0:3B:C1:8F:20:1E:8A:9E
            X509v3 Authority Key Identifier:
                keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:3b:36:5d:e6:e1:9e:ea:78:08:8b:39:61:d8:22:99:c9:3a:
         e9:26:dd:ee:3d:f9:2c:bf:5e:47:44:80:f6:ef:48:4a:f8:84:
         4e:16:fc:d8:bd:15:ee:cc:53:49:49:33:24:28:ca:be:d5:88:
         2a:89:43:27:3a:02:2a:e0:71:28:29:be:b6:9a:45:ef:f1:af:
         81:aa:21:3d:5e:92:3e:a1:7b:f3:9e:b8:09:e0:b6:3d:ee:0d:
         c2:0e:96:f1:0d:b7:65:ca:53:a4:b8:e9:ed:d9:19:c7:72:24:
         39:c8:f5:ac:08:f7:68:39:63:fa:6a:e0:06:97:d5:e1:27:2a:
         05:30:4b:4a:19:f4:f7:2d:fb:b0:1e:89:6b:e4:94:95:26:8d:
         66:73:30:a8:b7:12:84:32:5e:23:6d:0f:40:dd:79:f5:d5:2e:
         5f:cc:9c:18:39:62:a7:02:97:90:b6:aa:5a:50:ec:91:07:6b:
         5a:27:8f:e2:6a:19:28:81:aa:77:27:04:94:c0:d4:db:90:e3:
         95:f6:f5:eb:d9:02:71:8b:7d:61:9e:ee:c8:bf:a2:96:49:fb:
         50:fc:a9:48:44:18:64:c9:e4:1e:1c:ab:c8:fc:41:e9:c9:6e:
         1e:9c:30:37:60:92:23:58:c8:de:22:70:ae:48:d0:3a:6b:0b:
         56:bd:ab:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----