Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft
File:                     yfcvcKzNptLmEzWoFzDm9u5RPMU.mft (raw, json)
Hash identifier:          mYrJ1EfAztLLjdbXJ61rQ9IgxQnCI+WN0yJRy2m4lGY=
Subject key identifier:   AD:C0:AA:1B:59:8E:E5:3D:31:01:74:FA:8F:B3:10:78:F6:2F:9D:47
Authority key identifier: C9:F7:2F:70:AC:CD:A6:D2:E6:13:35:A8:17:30:E6:F6:EE:51:3C:C5
Certificate issuer:       /CN=c9f72f70accda6d2e61335a81730e6f6ee513cc5
Certificate serial:       0196AE0DB1F8F1EF18349AFA0F742DD63D0B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft
Manifest number:          1528
Signing time:             Thu 08 May 2025 04:00:55 +0000
Manifest this update:     Thu 08 May 2025 04:00:55 +0000
Manifest next update:     Fri 09 May 2025 04:00:55 +0000
Files and hashes:         1: yfcvcKzNptLmEzWoFzDm9u5RPMU.crl (hash: 4yglukqNhH+03MWFlyX0+KZMFaecg8cwV5Yyx8V05R8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 09 May 2025 04:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:ae:0d:b1:f8:f1:ef:18:34:9a:fa:0f:74:2d:d6:3d:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c9f72f70accda6d2e61335a81730e6f6ee513cc5
        Validity
            Not Before: May  8 04:00:55 2025 GMT
            Not After : May  9 04:00:55 2025 GMT
        Subject: CN=adc0aa1b598ee53d310174fa8fb31078f62f9d47
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:5d:d9:26:70:72:0b:d4:a8:8c:ed:14:f6:4c:
                    e7:db:1a:86:c2:53:36:8e:dc:f2:ce:7f:8a:eb:7f:
                    1f:9f:d6:e0:fb:c9:c6:81:b4:36:54:9f:21:6e:9c:
                    2d:97:a2:d2:ba:3d:81:95:bd:7a:59:d5:dc:97:14:
                    ca:a6:76:0d:5a:65:42:cc:2a:29:86:30:25:7b:97:
                    fb:87:3e:ec:82:72:32:ef:1b:16:a1:86:a3:fd:f8:
                    55:47:11:33:e1:3a:64:a7:e9:e0:a9:fa:af:81:a0:
                    4f:50:44:53:a4:5a:f7:27:9e:1b:e8:62:1f:e5:c2:
                    20:98:c3:15:92:22:a3:40:6a:28:8e:d2:9b:ce:cf:
                    7c:7d:6e:88:93:b7:c8:7b:2f:f3:e0:96:0a:f2:2f:
                    c0:88:58:06:4d:86:bd:4a:c1:ae:19:50:a0:7d:98:
                    e7:8d:46:1e:59:2c:43:84:56:ec:b7:1f:a9:75:42:
                    db:7a:d1:37:c6:89:90:20:2d:b4:e4:73:2d:9e:09:
                    11:54:d0:32:3f:c5:b0:08:db:f0:dc:ff:bf:cd:9e:
                    37:30:58:60:90:ca:c2:ad:14:c3:16:c1:88:1d:34:
                    5e:c6:1a:54:9e:74:c7:6b:1b:22:e6:91:de:c6:3e:
                    c2:a3:58:93:a5:13:5d:24:13:30:79:88:c0:a9:ba:
                    9b:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:C0:AA:1B:59:8E:E5:3D:31:01:74:FA:8F:B3:10:78:F6:2F:9D:47
            X509v3 Authority Key Identifier:
                keyid:C9:F7:2F:70:AC:CD:A6:D2:E6:13:35:A8:17:30:E6:F6:EE:51:3C:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:02:0b:5d:e1:7d:2f:39:bd:76:60:de:b6:1c:23:e9:8d:5d:
         cf:80:ff:99:16:9b:a3:05:9f:47:e7:51:fa:ee:e1:7d:9c:46:
         49:2b:ab:ff:c6:92:b0:db:f2:eb:53:ff:f4:20:e2:0c:04:04:
         29:6f:03:1d:ff:95:9c:1f:3c:ac:15:b7:24:91:22:88:cb:15:
         49:00:10:0c:12:03:a1:88:c6:8e:9f:82:b3:1b:4e:ed:97:3f:
         db:39:a3:fd:e0:b5:d8:d3:53:81:b0:08:ee:0c:3c:9b:9b:b6:
         fc:32:92:dc:34:de:94:ec:7a:36:e7:67:6a:e2:41:d2:d4:54:
         be:56:6c:de:e0:4a:2a:6c:d9:60:e4:d0:e6:de:78:3a:52:a1:
         41:86:34:d8:5e:7a:38:e3:fa:fb:ba:f2:5a:a4:d2:44:e4:de:
         7f:0e:92:9d:ef:cc:c9:24:a9:ca:1d:4d:95:1b:8e:2b:8b:48:
         16:90:76:9d:1e:3d:65:ce:dd:34:f7:a1:91:c3:f4:52:79:4d:
         ab:7f:12:d8:8b:36:dc:17:3d:d1:f9:38:5c:2c:1a:87:51:6f:
         ca:56:ca:21:dd:bd:1b:21:81:b7:6b:30:1f:37:e4:12:d8:c4:
         c9:7e:06:24:3b:38:40:47:81:80:5b:54:0a:bc:80:ff:35:5b:
         75:a7:79:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----