Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
File:                     yFiMcrJRDxd7g18gHjNl7PnkWh0.mft (raw, json)
Hash identifier:          +ym6YUv60lwYYXdR9r/Ic7WpwJyFW5UJvtefquQM+54=
Subject key identifier:   8C:99:CA:43:9B:4E:4F:1E:00:F9:6B:9C:8B:08:55:2A:2B:0A:B8:10
Authority key identifier: C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D
Certificate issuer:       /CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
Certificate serial:       0196B85A39C4403343E1F9593E3EC97E8B5F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
Manifest number:          0EE2
Signing time:             Sat 10 May 2025 04:00:42 +0000
Manifest this update:     Sat 10 May 2025 04:00:42 +0000
Manifest next update:     Sun 11 May 2025 04:00:42 +0000
Files and hashes:         1: yFiMcrJRDxd7g18gHjNl7PnkWh0.crl (hash: djAURaFjB8cVdwR5aeb9i0FMVs+RxV5FX/tXBn7tzJg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 04:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b8:5a:39:c4:40:33:43:e1:f9:59:3e:3e:c9:7e:8b:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
        Validity
            Not Before: May 10 04:00:42 2025 GMT
            Not After : May 11 04:00:42 2025 GMT
        Subject: CN=8c99ca439b4e4f1e00f96b9c8b08552a2b0ab810
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:f4:9b:70:85:26:fa:66:5e:78:d1:aa:9a:43:
                    db:a9:ce:40:d6:da:e8:87:d3:97:91:82:45:76:c5:
                    d6:e9:c2:2c:90:36:a3:b9:e9:5f:d5:f1:95:d7:04:
                    1c:e4:33:59:2b:6c:d6:95:f7:e6:5d:d7:4a:be:21:
                    50:d0:95:97:32:4c:20:1e:64:ed:16:5c:0d:62:5f:
                    2a:8f:99:7c:dd:aa:49:da:2e:0e:92:63:cf:13:13:
                    fe:c1:bb:4d:6d:26:56:2c:3f:40:bc:8e:32:7e:bb:
                    55:31:33:ea:c5:00:8e:22:63:e6:48:28:3c:b6:83:
                    c7:b5:2e:11:65:89:99:9a:14:58:1f:3b:8a:9d:b8:
                    cb:ce:69:b3:16:4d:35:c8:32:c0:6b:c3:94:cb:6e:
                    d1:4e:61:54:80:84:f3:2e:76:9e:99:4f:6e:a4:b6:
                    08:82:d9:e8:5f:84:cb:a6:12:d0:18:9b:94:85:d8:
                    57:5e:45:72:80:76:e4:a7:ec:98:84:e2:24:2f:af:
                    f6:24:db:b8:ea:68:34:ea:15:5a:5a:a2:11:ed:b1:
                    b8:10:28:b4:b1:7d:a4:2c:14:1c:6c:15:fa:dc:db:
                    2e:ef:53:c1:e6:89:d8:fc:78:8c:e1:82:ad:a7:be:
                    71:d2:c4:62:59:26:63:06:45:0f:76:82:2e:66:c6:
                    2d:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:99:CA:43:9B:4E:4F:1E:00:F9:6B:9C:8B:08:55:2A:2B:0A:B8:10
            X509v3 Authority Key Identifier:
                keyid:C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:73:48:4b:8f:86:43:dc:59:22:bb:72:19:d5:9e:51:e4:72:
         2b:96:51:90:81:92:cb:d7:c4:b8:17:e9:3e:4d:fe:e1:84:5c:
         69:ea:53:a7:57:7a:75:e7:e9:be:f9:fb:b0:8d:d8:fd:ae:8d:
         cf:04:76:94:73:85:95:4b:13:25:fc:68:b7:b4:8d:0e:af:b5:
         0e:d0:aa:47:27:e7:b3:b3:95:c4:4a:76:53:5f:4d:1e:62:b6:
         ae:d8:df:30:63:56:9e:4d:41:26:18:90:36:a8:e6:91:9a:e5:
         ce:f2:66:05:fd:4f:2d:24:09:72:01:99:ea:6f:dd:65:5d:23:
         3d:ef:f0:f4:ae:79:5f:52:4b:49:bc:f0:ff:fa:53:9f:de:da:
         7e:7e:e3:a3:4f:80:ac:ad:59:31:de:ae:c5:0e:4e:91:71:ff:
         7a:c0:b4:28:15:12:2b:8d:4a:85:cb:85:3a:f4:8b:8d:bd:d0:
         d5:91:4d:d7:90:f1:82:85:a3:89:20:9b:63:8b:fd:f7:b8:6f:
         83:fd:f4:df:ed:bd:91:cd:75:ef:d5:51:0c:84:66:ef:35:f6:
         f6:03:86:51:1f:31:54:b2:9e:ff:a9:96:1e:5a:15:e3:57:61:
         43:a1:48:24:41:08:a3:9d:1c:da:8c:a4:47:45:0b:69:f9:29:
         72:a0:55:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----