Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          HUzHPXjtXnPIL/pnhsJqKOZG6COkYtI2ktpc/Nvh2xg=
Subject key identifier:   8A:B8:9A:E1:56:03:CB:37:03:7B:C9:7D:FA:33:39:20:6B:B1:B7:7E
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       0196AC1F6FED3A25955692FCDB94B2A2F371
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          02CB
Signing time:             Wed 07 May 2025 19:01:03 +0000
Manifest this update:     Wed 07 May 2025 19:01:03 +0000
Manifest next update:     Thu 08 May 2025 19:01:03 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: wHrTStY9yOStq4bmTIGZugr6DF9uMp90rJUiAJ/GXcs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 08 May 2025 19:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:ac:1f:6f:ed:3a:25:95:56:92:fc:db:94:b2:a2:f3:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: May  7 19:01:03 2025 GMT
            Not After : May  8 19:01:03 2025 GMT
        Subject: CN=8ab89ae15603cb37037bc97dfa3339206bb1b77e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:e9:6b:4d:8e:ff:21:ac:4a:e3:d3:4a:a2:4c:
                    7e:e4:25:a2:0e:5d:41:32:1d:64:b2:f1:25:51:1b:
                    13:0c:8b:5f:89:68:8f:94:53:a4:86:3b:16:ec:75:
                    46:bf:e6:e2:f2:0d:de:f3:72:f0:6f:b7:8d:14:b7:
                    7b:d4:85:17:31:74:c2:b4:05:84:b2:c7:3d:d4:59:
                    74:de:e0:48:e4:0a:80:db:a9:4a:91:07:ec:48:ab:
                    41:17:1d:0d:c5:cc:49:bc:88:f4:69:48:5e:72:fd:
                    da:48:99:9e:1e:49:c7:69:77:c9:0f:8a:59:8f:03:
                    c4:77:55:84:63:e6:6a:24:10:33:d1:6d:70:c1:73:
                    d9:1a:70:38:e2:05:f1:a5:4c:62:3c:a2:cc:a9:cc:
                    b4:a0:db:58:d7:ac:2e:47:2f:1b:68:e1:95:bc:41:
                    66:5e:62:fc:d8:f3:0d:f8:41:99:3d:80:d1:c1:38:
                    07:56:e1:1b:39:5b:98:a2:46:96:2c:1a:29:6b:37:
                    65:db:7e:60:2f:68:36:4a:8f:58:5e:27:aa:c3:45:
                    ee:fd:31:67:84:b2:1a:c8:46:4a:06:3c:86:4e:ae:
                    6b:26:20:8c:ca:2f:31:6f:37:cd:cf:8e:2d:45:dd:
                    46:2b:b0:fa:67:bf:a7:e6:74:a7:fe:bc:db:03:6e:
                    7b:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:B8:9A:E1:56:03:CB:37:03:7B:C9:7D:FA:33:39:20:6B:B1:B7:7E
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:8b:54:92:ca:35:36:f9:0a:51:7b:1c:d8:0a:91:95:75:41:
         2b:9a:a4:af:f8:84:97:4c:5c:3c:84:9e:8c:40:fb:c5:66:74:
         ad:cf:9e:1e:47:ba:e4:bf:b5:f5:c0:7f:38:96:ff:27:7a:94:
         5a:62:de:9c:21:98:68:b3:87:bf:bb:ed:12:34:1a:17:7b:03:
         36:e6:f8:2c:3c:d5:1d:8a:42:70:a3:23:87:24:fb:bd:75:1e:
         08:92:b1:63:c6:64:de:54:3f:64:33:d8:13:ed:f6:d8:27:cf:
         44:5b:b8:e6:14:cb:ae:b8:f2:26:f3:30:0f:11:e7:fa:1a:28:
         5e:89:b7:8e:d6:90:e2:d5:34:fd:dd:73:8e:1a:53:76:b6:5f:
         a4:11:e7:52:24:e4:fb:21:cd:b1:cb:cc:54:c0:52:34:9f:43:
         56:b5:cc:17:40:19:a1:fa:a0:8e:f5:69:7b:8f:bd:d8:69:21:
         4e:73:1c:5f:1c:0d:84:80:1a:a7:12:bb:ab:f5:33:b1:72:23:
         4e:79:3e:60:ba:34:bf:7c:6c:e9:10:77:75:16:7f:27:df:ee:
         05:16:de:97:26:8f:8e:57:b8:90:c9:7e:6b:3b:a2:af:4f:ad:
         0f:bf:10:c1:6f:21:7d:4f:d7:0d:1c:a2:8b:40:9a:a8:ff:10:
         a9:d7:68:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----