Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
File:                     AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft (raw, json)
Hash identifier:          cjiAoNM4UIVMxIk9Gx3beWBCSmBhOuOYPWPG4GT5qpo=
Subject key identifier:   0B:2E:1C:6E:B9:CF:6E:C9:DF:7D:F7:42:4D:4C:C1:54:CB:64:E5:B1
Authority key identifier: 02:55:85:09:E1:C0:EC:16:0D:E2:E0:74:17:72:13:DE:30:61:5D:6F
Certificate issuer:       /CN=02558509e1c0ec160de2e074177213de30615d6f
Certificate serial:       019655DCCBF215C6AC310DA43948E8767785
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
Manifest number:          1404
Signing time:             Mon 21 Apr 2025 01:00:55 +0000
Manifest this update:     Mon 21 Apr 2025 01:00:55 +0000
Manifest next update:     Tue 22 Apr 2025 01:00:55 +0000
Files and hashes:         1: AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl (hash: AfWugfxz4wOj8SvafJNKamgkgD4d2i41Q9u7MHnHdUM=)
                          2: kSz4LlQ62tJYPQQ8qxacl2uxsCY.roa (hash: 8GdPcvKpfPL7jxJZaxJa9Y6MJqoF7wYY1b8gzsfXwWY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 22 Apr 2025 01:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:55:dc:cb:f2:15:c6:ac:31:0d:a4:39:48:e8:76:77:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=02558509e1c0ec160de2e074177213de30615d6f
        Validity
            Not Before: Apr 21 01:00:55 2025 GMT
            Not After : Apr 22 01:00:55 2025 GMT
        Subject: CN=0b2e1c6eb9cf6ec9df7df7424d4cc154cb64e5b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:9e:b6:e7:cf:85:5d:15:06:c3:95:ee:0d:46:
                    92:ba:85:e1:fa:0c:04:36:1b:e4:ca:02:4f:ca:e4:
                    6b:ef:b3:fe:fd:b8:2b:2a:d2:22:a0:8d:84:be:b9:
                    c4:33:da:bd:5f:58:9a:63:f1:aa:25:9e:68:94:a3:
                    a7:ae:f2:4c:18:5c:b1:0c:d3:ba:ca:99:6f:a9:f7:
                    25:ea:c4:07:93:34:4d:88:28:f1:77:05:e5:0f:3a:
                    7d:2d:83:66:52:7b:a7:a5:b1:d9:95:a3:9f:a8:01:
                    12:a3:f2:c5:5f:dc:59:33:e5:40:54:1b:b7:55:ba:
                    e4:ab:30:8a:bd:f2:05:81:b3:b4:f8:0a:03:a0:56:
                    59:22:3f:f2:00:ad:2c:76:4f:e9:88:dd:12:af:fd:
                    34:e7:98:07:0f:8d:a3:80:a1:ee:93:85:c0:89:f4:
                    80:c7:d8:ba:57:ef:9b:b9:4a:20:d5:c4:ef:10:83:
                    83:d6:e4:42:81:b9:30:22:d3:37:b9:7e:6d:86:df:
                    4f:1d:26:77:2c:a3:d0:d1:f8:b0:0a:46:d7:db:47:
                    82:f7:29:86:47:9a:9b:5d:e6:3b:54:4d:7e:60:3b:
                    f0:34:80:89:aa:37:20:50:77:de:92:0f:c1:e1:75:
                    e2:11:15:f4:30:3a:ca:81:2c:fa:5a:da:37:01:c3:
                    55:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:2E:1C:6E:B9:CF:6E:C9:DF:7D:F7:42:4D:4C:C1:54:CB:64:E5:B1
            X509v3 Authority Key Identifier:
                keyid:02:55:85:09:E1:C0:EC:16:0D:E2:E0:74:17:72:13:DE:30:61:5D:6F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:6b:6f:4a:26:de:ca:c8:7f:f6:e3:40:36:e1:c6:ba:07:74:
         e5:bf:3b:6c:65:96:36:8a:3d:e5:5a:9a:34:58:05:1b:b8:de:
         74:ad:76:6c:d3:b9:8a:97:b4:e0:76:ad:60:2f:6d:f8:84:ce:
         1d:d2:c1:e3:39:09:91:2a:3f:59:86:78:d9:6d:d9:75:d3:a3:
         2f:bf:05:da:66:db:b6:09:93:a6:74:d0:51:6c:39:ba:80:28:
         e0:7a:4a:e4:02:96:48:51:9b:91:db:7e:82:27:b0:4e:fe:f3:
         c9:b7:73:6c:a3:af:62:16:91:83:0b:77:e2:08:1f:16:78:53:
         5d:fd:cc:69:1b:c7:dd:91:42:73:f8:05:ac:10:00:5a:43:df:
         28:ce:27:fc:1d:fc:55:e8:f1:72:aa:72:ae:34:9d:38:c0:4f:
         d8:13:d7:f5:6b:c6:5e:05:55:c2:9c:81:76:25:0c:c3:0e:d7:
         3e:f8:97:90:1e:5d:e4:f3:67:3d:26:ab:6e:7a:24:8b:d8:3c:
         0c:79:90:92:bd:20:21:f6:e5:24:33:dd:26:82:08:59:0d:12:
         16:4c:90:a7:be:bc:76:b0:6a:d9:c9:49:85:20:58:89:cb:b1:
         82:42:95:9c:34:86:d9:97:78:f3:0e:db:19:22:8e:03:a9:59:
         aa:09:84:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:49:30 2025 by rpki-client