Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
File:                     PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json)
Hash identifier:          uotmVJShWePE1BRHx2QOm+1rfZmjgr8VpXDi7emNGSk=
Subject key identifier:   4F:42:08:BA:D7:45:F0:9D:EB:1A:E3:10:DD:85:F8:25:A9:A6:AF:25
Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
Certificate issuer:       /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Certificate serial:       0196B823789B5F766B0F0DE59D9AC11115D2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
Manifest number:          1352
Signing time:             Sat 10 May 2025 03:00:54 +0000
Manifest this update:     Sat 10 May 2025 03:00:54 +0000
Manifest next update:     Sun 11 May 2025 03:00:54 +0000
Files and hashes:         1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: dml0dzm2xF1s7iBVSwzea6+nrXaxdNRRjkyWHBP0LPM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b8:23:78:9b:5f:76:6b:0f:0d:e5:9d:9a:c1:11:15:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
        Validity
            Not Before: May 10 03:00:54 2025 GMT
            Not After : May 11 03:00:54 2025 GMT
        Subject: CN=4f4208bad745f09deb1ae310dd85f825a9a6af25
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:93:18:a9:f5:6c:8b:af:99:67:57:63:1a:3e:
                    43:8a:8f:79:6d:33:0c:a8:4c:fb:65:75:3a:f1:34:
                    c4:0c:a2:05:97:8d:03:b7:cd:c7:10:59:87:5b:7a:
                    93:ce:f0:54:af:0f:3c:21:0d:04:35:77:5d:03:69:
                    59:b6:f4:62:95:a5:03:82:07:3f:3d:d7:21:b9:b4:
                    b6:49:00:c1:68:89:35:2e:fe:49:1c:7e:7c:9b:41:
                    f9:2b:67:b4:43:93:bb:2d:be:93:92:50:3f:12:32:
                    4f:46:68:1e:c0:7c:4e:de:a9:5d:88:cd:07:56:b9:
                    e2:f1:41:e7:ce:9d:a6:f9:35:95:e0:d3:c3:3b:bd:
                    32:e1:88:73:4e:d4:20:a9:74:7e:84:b4:ea:fc:f7:
                    bc:5c:f7:db:31:8d:88:3f:05:1b:5b:ea:f7:3f:ab:
                    78:00:10:19:ec:11:73:44:ab:68:44:38:fb:eb:a2:
                    15:95:50:cc:1d:43:0d:9b:5d:23:00:13:fe:68:cb:
                    36:55:df:d6:a1:67:e6:fe:2e:22:f7:14:c0:e9:f6:
                    50:17:6d:b2:bb:56:66:40:80:6a:d0:00:62:b4:ab:
                    c0:90:ce:cd:06:26:41:e7:cc:3b:02:54:25:e5:18:
                    15:77:7f:3b:bc:94:f1:c2:21:fb:9d:b7:92:53:a0:
                    56:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:42:08:BA:D7:45:F0:9D:EB:1A:E3:10:DD:85:F8:25:A9:A6:AF:25
            X509v3 Authority Key Identifier:
                keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:7b:36:48:40:ce:05:2d:0d:84:4b:28:ca:1f:35:89:93:43:
         30:b9:e0:77:a2:0d:b3:b1:38:e5:8a:b3:d0:a5:03:43:71:fc:
         dc:d8:4f:cc:f5:2c:54:69:3d:cd:dc:d9:1a:20:24:36:60:7d:
         6b:98:9a:85:4a:9b:1b:27:8c:f0:9a:6d:fe:25:ad:f3:46:a8:
         2d:fd:f6:77:25:6a:4b:c0:d8:e4:9b:ad:6c:fa:62:58:e2:e1:
         7f:a5:89:9b:66:b0:da:1c:ee:1c:f7:f6:9e:b2:37:76:88:71:
         66:94:70:ba:3d:19:ef:c0:6e:f8:dc:23:53:c2:c0:e7:96:c3:
         7c:c5:53:12:da:f8:7f:a7:01:db:b8:4b:e9:7f:af:d2:cd:bc:
         01:ff:8f:bf:06:3f:a7:85:6d:18:23:ec:9b:a4:94:b5:97:ab:
         e2:c4:76:c2:a3:6f:ec:1b:da:0c:04:8f:53:8b:bd:37:0d:86:
         06:ae:44:be:f1:88:be:b0:50:d4:80:89:00:bc:64:67:f9:2f:
         64:bf:4d:72:47:52:24:80:b9:c9:7d:d0:4d:98:91:4a:8c:f0:
         24:e3:36:5d:20:91:06:49:d5:fd:38:55:ff:a5:df:8b:95:ca:
         7f:bd:72:fb:68:c8:bf:f9:c3:60:86:45:04:ac:84:ea:6b:17:
         10:23:02:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa4I3ibX3ZrDw3lnZrBERXSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjMzdhZDhiM2EyNjkwZTBjZjQ3MmRiMjZlOGZlMmIxNjgw
MTkyMjQwHhcNMjUwNTEwMDMwMDU0WhcNMjUwNTExMDMwMDU0WjAzMTEwLwYDVQQD
Eyg0ZjQyMDhiYWQ3NDVmMDlkZWIxYWUzMTBkZDg1ZjgyNWE5YTZhZjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pMYqfVsi6+ZZ1djGj5Dio95bTMM
qEz7ZXU68TTEDKIFl40Dt83HEFmHW3qTzvBUrw88IQ0ENXddA2lZtvRilaUDggc/
PdchubS2SQDBaIk1Lv5JHH58m0H5K2e0Q5O7Lb6TklA/EjJPRmgewHxO3qldiM0H
Vrni8UHnzp2m+TWV4NPDO70y4YhzTtQgqXR+hLTq/Pe8XPfbMY2IPwUbW+r3P6t4
ABAZ7BFzRKtoRDj766IVlVDMHUMNm10jABP+aMs2Vd/WoWfm/i4i9xTA6fZQF22y
u1ZmQIBq0ABitKvAkM7NBiZB58w7AlQl5RgVd387vJTxwiH7nbeSU6BWcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE9CCLrXRfCd6xrjEN2F+CWppq8lMB8GA1UdIwQY
MBaAFDw3rYs6JpDgz0ctsm6P4rFoAZIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2Njct
MmUyYjU2YjQxNWMxLzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi81NWNiZWYtNThlYy00MDE0LTg2NjctMmUyYjU2YjQxNWMx
LzEvUERldGl6b21rT0RQUnkyeWJvX2lzV2dCa2lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnXs2SEDO
BS0NhEsoyh81iZNDMLngd6INs7E45Yqz0KUDQ3H83NhPzPUsVGk9zdzZGiAkNmB9
a5iahUqbGyeM8Jpt/iWt80aoLf32dyVqS8DY5JutbPpiWOLhf6WJm2aw2hzuHPf2
nrI3dohxZpRwuj0Z78Bu+NwjU8LA55bDfMVTEtr4f6cB27hL6X+v0s28Af+PvwY/
p4VtGCPsm6SUtZer4sR2wqNv7BvaDASPU4u9Nw2GBq5EvvGIvrBQ1ICJALxkZ/kv
ZL9NckdSJIC5yX3QTZiRSozwJOM2XSCRBknV/ThV/6Xfi5XKf71y+2jIv/nDYIZF
BKyE6msXECMCXw==
-----END CERTIFICATE-----