Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
File:                     B-pSPsf5N3oanl1vqGgX7T1sCoI.mft (raw, json)
Hash identifier:          Cxz/k+7W4TxblbiIx9kMoeR2qWxdX0FHYoEpHdQOaH4=
Subject key identifier:   7D:3B:26:4E:51:29:2B:25:29:E9:E1:9C:73:5B:38:E8:CF:33:67:6C
Authority key identifier: 07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
Certificate issuer:       /CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Certificate serial:       0196A24063FE814B54D9D41DFB7C92FB5BCA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
Manifest number:          1523
Signing time:             Mon 05 May 2025 21:00:50 +0000
Manifest this update:     Mon 05 May 2025 21:00:50 +0000
Manifest next update:     Tue 06 May 2025 21:00:50 +0000
Files and hashes:         1: B-pSPsf5N3oanl1vqGgX7T1sCoI.crl (hash: u6sz1xWN6j5fLjgIUQSYi9iT23wxlKb1kqSC7mDfVjI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 06 May 2025 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a2:40:63:fe:81:4b:54:d9:d4:1d:fb:7c:92:fb:5b:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
        Validity
            Not Before: May  5 21:00:50 2025 GMT
            Not After : May  6 21:00:50 2025 GMT
        Subject: CN=7d3b264e51292b2529e9e19c735b38e8cf33676c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:0d:bc:4d:45:d7:59:0b:03:d3:bc:a7:5b:dc:
                    01:16:1f:fd:0e:10:f9:48:0f:08:90:33:7a:c9:74:
                    9e:22:90:31:55:eb:c8:dc:71:d9:4a:23:e2:f4:b7:
                    4f:07:fb:ee:13:ab:61:f1:4d:59:c6:15:56:5c:0f:
                    17:6c:65:78:68:51:2b:b3:35:b3:7a:c4:38:d6:54:
                    fc:22:d2:7b:0d:e3:43:51:3a:af:2d:17:12:8e:d5:
                    94:f5:84:3b:d3:2a:da:3e:91:cd:b1:e0:f8:d8:d5:
                    62:ac:fb:9c:37:79:af:5a:27:63:d5:73:81:fd:35:
                    4c:4e:bc:70:f8:32:2a:2f:20:be:b9:74:db:d9:26:
                    71:4a:79:b1:7f:99:86:46:b3:67:22:0f:12:32:0e:
                    bc:55:21:a3:0c:e3:39:51:63:37:3f:b5:b6:6e:a3:
                    c6:82:de:78:e6:0e:96:2a:a3:53:b5:02:e1:c9:c5:
                    99:70:d1:b3:0d:32:d0:51:9e:67:dc:2a:a3:35:41:
                    91:80:17:79:f1:a0:b7:e5:02:30:5e:ca:c0:76:02:
                    ee:3f:7a:74:79:15:a9:87:52:aa:42:1a:ba:b2:39:
                    af:2a:73:d0:68:69:a0:43:43:4a:4c:72:54:eb:a7:
                    92:fe:61:dc:4a:bd:fa:73:92:03:96:e6:3b:eb:b0:
                    e9:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:3B:26:4E:51:29:2B:25:29:E9:E1:9C:73:5B:38:E8:CF:33:67:6C
            X509v3 Authority Key Identifier:
                keyid:07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:3a:84:f7:57:b6:98:45:3d:86:09:06:93:92:c6:ad:00:11:
         d9:b4:8f:98:65:5b:65:fd:97:bb:f8:1e:41:f6:9a:7b:b9:5c:
         a5:c6:cf:35:4b:6f:53:b3:22:00:ca:b8:ae:cf:78:0b:02:4b:
         e1:24:9b:45:6f:01:36:52:3b:07:4d:62:7b:84:3f:cc:5a:85:
         5e:24:a4:7f:ef:4e:47:9e:08:2a:89:3e:3d:a0:6b:bb:cc:24:
         51:37:92:80:da:bd:d4:fb:a3:48:38:d3:18:5b:68:5c:9a:8d:
         36:b9:74:be:4e:0e:86:42:2d:a0:5e:af:eb:de:38:56:e0:14:
         12:91:ee:91:91:f9:6e:cf:3e:e0:03:34:7a:c8:56:32:f5:db:
         32:55:89:28:06:dc:4c:2e:3b:2d:f1:6f:2e:bf:40:ae:37:7d:
         9a:c4:95:0c:5b:c4:29:56:26:6b:c9:e3:94:cd:01:97:39:61:
         92:e6:62:1f:22:e1:25:91:96:fd:59:a3:1b:82:4e:11:8e:fa:
         bb:5a:f5:e7:4a:cf:83:eb:f2:2f:20:3f:d6:26:18:00:9b:bb:
         f2:bb:09:7f:16:af:eb:87:c4:e3:34:90:fe:bb:46:3d:16:72:
         56:3e:d4:10:fe:44:5d:12:f7:ee:75:40:fe:3d:74:18:4d:c8:
         fa:9b:7c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----