Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File:                     QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier:          ii6X2iLfaA80wBUDQw9+OaRJ4p+Hopi3aC58gi//J5E=
Subject key identifier:   A4:A0:7F:45:19:43:1B:44:9F:79:40:9D:C8:5B:DE:61:B5:37:41:BD
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer:       /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial:       019510C6CF8D926C073D6159C555EA97E91D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number:          0A42
Signing time:             Sun 16 Feb 2025 22:00:19 +0000
Manifest this update:     Sun 16 Feb 2025 22:00:19 +0000
Manifest next update:     Mon 17 Feb 2025 22:00:19 +0000
Files and hashes:         1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: QaxC3DEc7Nnhnmu8kww8O/QRbBQpw2klpuI3bT0bavw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c6:cf:8d:92:6c:07:3d:61:59:c5:55:ea:97:e9:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
        Validity
            Not Before: Feb 16 22:00:19 2025 GMT
            Not After : Feb 17 22:00:19 2025 GMT
        Subject: CN=a4a07f4519431b449f79409dc85bde61b53741bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:f7:a8:90:ec:c6:1f:d3:7a:c3:9b:d8:6f:9b:
                    2a:96:ec:7e:28:3e:62:83:ab:2e:4f:ac:18:f8:38:
                    e6:5b:e5:55:d3:09:19:f3:07:26:55:23:3b:30:a4:
                    85:0c:72:df:90:16:63:69:74:51:5a:e2:ca:16:82:
                    cd:2b:69:a7:0b:c4:f8:3e:0d:bb:4a:07:23:c2:f4:
                    55:21:e6:8b:31:93:20:9d:04:55:bd:54:73:10:9a:
                    85:ab:5a:9e:73:8b:2a:7f:69:44:ff:fc:89:5b:b0:
                    a7:48:0b:10:b1:6d:d9:f5:77:7d:aa:14:47:09:a7:
                    1a:26:79:97:44:49:7e:a2:ff:d9:fe:dc:fd:e6:50:
                    ae:d3:a0:0c:d0:43:33:f5:03:9f:12:0f:35:6c:26:
                    89:ab:ea:2c:46:44:02:d0:74:45:f8:2d:71:b6:e2:
                    ee:d9:de:a7:a4:f1:5b:d0:6d:00:c3:16:ca:5f:ff:
                    75:01:3a:df:da:58:a9:00:5e:76:3d:77:3f:09:c8:
                    bf:70:ac:98:9c:0a:62:d4:4a:97:f2:14:4e:31:83:
                    ef:99:6e:4b:0e:b2:12:f1:b9:c0:21:5c:38:99:34:
                    c9:e8:a0:34:76:1d:dc:ae:fd:bd:00:d4:d3:29:ab:
                    11:41:45:3f:4e:2f:ff:f6:32:6d:e1:bb:b0:40:76:
                    f8:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:A0:7F:45:19:43:1B:44:9F:79:40:9D:C8:5B:DE:61:B5:37:41:BD
            X509v3 Authority Key Identifier:
                keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:6b:c7:28:29:9b:47:a1:8c:48:cf:1c:64:1c:b9:61:9e:0c:
         1c:04:c7:c6:76:84:57:3e:ef:06:5f:22:8c:dc:81:60:fe:3d:
         93:10:61:e5:16:94:90:17:cf:d4:4d:15:fe:8c:e8:39:b1:54:
         b2:e5:94:1b:f2:64:71:7a:1e:5f:58:b4:9c:f9:c1:14:58:bd:
         be:e7:d2:d1:a2:f4:3e:42:9f:9b:9a:96:ba:69:e0:81:c2:2f:
         2d:20:02:da:e7:21:6d:b7:37:ef:c5:ae:88:62:e7:7f:df:d8:
         37:13:65:78:06:aa:d8:dc:17:18:ea:97:2b:46:80:cf:e9:36:
         f4:9c:95:f8:90:6e:86:bf:5b:5a:58:aa:2f:81:d5:61:af:64:
         a3:21:80:a6:b8:33:67:e8:8b:b6:bc:bb:b4:96:2c:75:13:3a:
         36:9c:2f:c6:93:8c:78:d9:2b:d8:7c:d9:3b:34:44:d8:99:a7:
         a3:dd:1e:76:5d:3a:b8:84:99:e2:b3:2b:fb:4f:42:39:68:38:
         49:5d:bd:54:30:34:1c:d4:2b:b0:5a:86:cf:82:c0:73:7a:50:
         4f:ec:75:e7:d4:18:53:36:1a:d2:11:da:50:77:b9:e3:9a:eb:
         33:1c:ef:4a:82:ef:a2:7a:a1:c8:e8:c0:65:02:12:39:39:f0:
         3d:3a:77:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----