Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
File:                     s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json)
Hash identifier:          mIfhqpLmi1B833Nq3mcmPifd5p1F9z3Gi6Cw/AdcSmM=
Subject key identifier:   72:F8:4E:CF:93:F3:2D:89:7A:05:AF:D7:76:81:92:32:02:D0:01:05
Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
Certificate issuer:       /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Certificate serial:       0196B634F7B3A8F232A4B0DF8B453353E2B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
Manifest number:          0BD5
Signing time:             Fri 09 May 2025 18:00:46 +0000
Manifest this update:     Fri 09 May 2025 18:00:46 +0000
Manifest next update:     Sat 10 May 2025 18:00:46 +0000
Files and hashes:         1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: y2MjaKy5NKRbySmz/YQ3s5dDBQDNmqjj8rW7IM66cVI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 18:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b6:34:f7:b3:a8:f2:32:a4:b0:df:8b:45:33:53:e2:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
        Validity
            Not Before: May  9 18:00:46 2025 GMT
            Not After : May 10 18:00:46 2025 GMT
        Subject: CN=72f84ecf93f32d897a05afd77681923202d00105
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:fd:d5:7d:fc:c1:2c:41:4f:2c:b6:db:c4:d1:
                    7a:e4:ff:96:75:43:78:fe:30:c4:1e:db:65:ea:08:
                    0b:d8:56:42:8e:cb:59:39:4e:17:68:4a:d7:f6:2b:
                    37:4c:3a:e3:cd:9a:55:b1:64:d1:6b:bd:27:f4:2e:
                    ea:ae:90:4c:36:f8:d1:14:f5:11:53:c4:35:76:c2:
                    ec:83:bd:02:9e:bf:40:c2:b7:2c:03:fc:e7:9d:a8:
                    a9:3d:2c:67:94:91:1d:fc:73:1b:2c:9c:bc:e6:02:
                    04:8b:bd:45:17:d2:87:d1:ff:a5:be:55:e0:46:11:
                    ee:4c:72:2b:80:b0:28:d5:7d:91:b3:b5:75:20:92:
                    ef:24:b8:3a:46:21:db:bf:e0:84:00:fe:4f:fa:67:
                    d3:9d:47:12:cc:9f:1c:98:f4:a9:69:2a:ad:20:8a:
                    4e:c1:df:11:fd:b3:dc:b7:d9:12:ba:a8:7f:10:64:
                    0f:03:af:b7:4c:88:c0:7e:4e:c8:a5:b7:6f:38:d2:
                    9b:00:a8:c0:3f:12:e5:1e:3b:90:5b:4e:eb:55:48:
                    63:ca:49:61:3c:7a:a2:35:d4:5c:1c:d2:d5:fe:02:
                    45:69:e1:c6:84:a2:bf:b9:f3:91:ce:09:62:d4:b7:
                    a5:58:df:a5:05:ca:97:53:ab:1e:e7:f2:41:93:b0:
                    0d:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:F8:4E:CF:93:F3:2D:89:7A:05:AF:D7:76:81:92:32:02:D0:01:05
            X509v3 Authority Key Identifier:
                keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:00:fa:e6:a5:96:81:e7:a7:71:7b:36:35:38:5b:bf:46:38:
         4e:47:2f:37:be:19:a8:f2:33:a1:a3:4d:74:c8:5d:03:9b:fc:
         81:93:5c:ca:d9:e2:ea:6b:01:ab:2c:95:ef:35:d8:24:b1:c2:
         01:49:5c:fc:88:2f:7b:9f:7e:be:61:6e:74:40:9e:35:b6:b5:
         dc:45:7a:bb:31:40:1b:a4:09:10:3e:30:85:2d:13:c7:cf:16:
         5a:4a:08:dd:5b:19:b3:94:46:29:0d:90:80:41:15:0e:df:3d:
         7e:f2:8f:fe:ca:fa:8b:55:97:c3:e5:3b:61:67:d2:44:90:f4:
         e0:8c:69:ae:52:1c:99:a2:3d:f0:bc:f5:74:e3:29:b9:9c:6a:
         06:ef:f2:80:4b:f8:95:d6:ae:c8:bb:b0:f5:8d:b8:05:3e:d3:
         27:36:bb:02:3b:4f:e7:a9:30:97:69:64:b2:06:ba:97:51:cc:
         75:f4:28:d0:59:6d:57:05:f9:70:3e:8e:d2:83:fe:09:05:3e:
         d6:47:82:a8:b6:8b:b3:d6:a0:8a:6a:52:c2:1e:3f:3f:e1:50:
         22:83:d8:8f:13:f6:42:06:80:7e:50:d2:cc:5d:0a:d1:0c:7b:
         33:0a:95:c2:fb:1c:54:bc:a3:1b:ff:02:fa:03:6d:70:17:01:
         91:6e:f0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----