Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft
File:                     JCsEwxmbHrlpPUMg9702HtYXBTA.mft (raw, json)
Hash identifier:          CsPPPWzOWhudQt7BSjMdpz3iKc7nNzMdN7nPn23Z+xA=
Subject key identifier:   FB:52:9B:B4:1F:F1:85:23:7F:2A:E1:CC:BD:69:B9:73:F2:B7:0C:B3
Authority key identifier: 24:2B:04:C3:19:9B:1E:B9:69:3D:43:20:F7:BD:36:1E:D6:17:05:30
Certificate issuer:       /CN=242b04c3199b1eb9693d4320f7bd361ed6170530
Certificate serial:       0196BF6F67D21A9E7ABDA661863B2EBB1A53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JCsEwxmbHrlpPUMg9702HtYXBTA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft
Manifest number:          1532
Signing time:             Sun 11 May 2025 13:01:11 +0000
Manifest this update:     Sun 11 May 2025 13:01:11 +0000
Manifest next update:     Mon 12 May 2025 13:01:11 +0000
Files and hashes:         1: JCsEwxmbHrlpPUMg9702HtYXBTA.crl (hash: hPZ5gVs1CQUzZHsFNh+OlE7TCWxzpJmsqBT0eNRLyTM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JCsEwxmbHrlpPUMg9702HtYXBTA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 12 May 2025 13:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bf:6f:67:d2:1a:9e:7a:bd:a6:61:86:3b:2e:bb:1a:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=242b04c3199b1eb9693d4320f7bd361ed6170530
        Validity
            Not Before: May 11 13:01:11 2025 GMT
            Not After : May 12 13:01:11 2025 GMT
        Subject: CN=fb529bb41ff185237f2ae1ccbd69b973f2b70cb3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:db:d3:1b:8a:be:2d:dc:1e:70:50:c0:80:f9:
                    f7:83:e7:56:8c:10:d9:0c:5c:06:fc:a7:95:b1:7e:
                    16:33:e3:be:59:da:1d:8a:b5:f6:f2:a7:d2:eb:5f:
                    19:28:3c:7a:a9:10:34:e6:94:28:f9:52:ed:9f:73:
                    0c:7b:52:25:da:1f:f8:d8:0a:29:ff:27:93:6a:1a:
                    58:0b:c7:b4:d7:4c:66:6b:6b:e9:0d:3c:f4:57:a5:
                    10:62:af:63:0e:fa:74:b4:3c:91:a1:7d:40:c4:d4:
                    54:7f:5f:91:7b:4c:30:13:a0:f4:d3:cb:d9:45:f7:
                    24:e2:f8:49:be:9d:82:57:70:29:15:2b:70:06:b8:
                    5e:55:f7:df:2f:ac:9c:e2:e9:02:a8:c7:11:38:92:
                    30:2b:e4:0a:45:70:75:7e:d9:12:c9:39:04:01:93:
                    71:cd:b5:66:c6:65:50:68:69:9e:c2:66:05:eb:11:
                    aa:51:2a:e7:4e:6b:10:4f:a2:65:75:73:f1:a4:6e:
                    73:ec:4a:fb:b0:7c:aa:60:1e:1a:1c:f1:24:7f:96:
                    55:60:1c:da:5d:f1:26:ef:a7:35:03:c7:12:4c:6d:
                    96:42:38:ba:01:8e:9d:2d:48:47:90:c1:19:21:04:
                    35:43:6c:4a:61:c9:1b:93:15:88:ea:93:9c:16:49:
                    dd:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:52:9B:B4:1F:F1:85:23:7F:2A:E1:CC:BD:69:B9:73:F2:B7:0C:B3
            X509v3 Authority Key Identifier:
                keyid:24:2B:04:C3:19:9B:1E:B9:69:3D:43:20:F7:BD:36:1E:D6:17:05:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JCsEwxmbHrlpPUMg9702HtYXBTA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:2d:1e:10:76:dc:34:75:b3:cd:74:2e:46:e0:3e:20:79:1e:
         bc:11:89:50:54:e7:5c:0b:ea:3b:8b:09:1d:1f:8a:22:48:24:
         66:4b:22:5f:e1:5a:e2:e3:ba:47:9f:a8:60:09:24:6e:5c:75:
         18:f4:bc:41:ce:8c:45:e8:24:4e:66:6a:24:a1:34:2d:96:27:
         b6:97:5c:ae:9a:69:01:e6:72:cb:3d:95:75:71:48:5f:ae:88:
         c9:24:e5:5c:fa:41:f1:1d:23:de:07:39:53:59:d3:81:b7:22:
         bf:be:0e:64:5f:c5:06:13:ef:ba:9c:73:33:7a:33:54:d8:f6:
         6e:df:9a:4f:40:3a:5a:df:4e:42:03:71:80:01:59:d0:42:25:
         97:da:be:95:de:44:6b:b7:10:c0:1a:13:d4:22:24:59:a3:3f:
         36:af:02:5e:f0:2b:eb:cd:74:b0:c5:d0:10:42:9c:70:6a:cb:
         0b:81:6c:b9:69:cd:a2:ab:4f:50:c9:c3:8a:3a:d4:59:bf:01:
         32:72:83:d9:9e:83:e8:9c:22:97:93:39:be:9d:c8:63:fa:2e:
         60:8e:85:6c:bb:37:15:ff:c5:61:c8:d4:ca:f0:58:77:7b:19:
         0a:98:e2:45:89:e3:9e:78:98:b5:5e:7c:ad:56:99:a7:1b:fe:
         d9:a5:02:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----