Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
File:                     71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json)
Hash identifier:          Yphq0T/OgZGtzcpDiH4b5rJ6zhnKbpxcBnRWwpXCalo=
Subject key identifier:   77:F2:F4:67:12:3F:12:27:C4:44:2B:5F:9C:6E:8D:77:28:C0:1F:16
Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
Certificate issuer:       /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Certificate serial:       0196B333995A056550691E2EA66295BF656F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
Manifest number:          AA
Signing time:             Fri 09 May 2025 04:00:25 +0000
Manifest this update:     Fri 09 May 2025 04:00:25 +0000
Manifest next update:     Sat 10 May 2025 04:00:25 +0000
Files and hashes:         1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: JehrQrXdKxZgnPpPKvDhoPiD+F0Jbt9TUwE5aBRhtgE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 01:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b3:33:99:5a:05:65:50:69:1e:2e:a6:62:95:bf:65:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
        Validity
            Not Before: May  9 04:00:25 2025 GMT
            Not After : May 10 04:00:25 2025 GMT
        Subject: CN=77f2f467123f1227c4442b5f9c6e8d7728c01f16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:dd:bc:5d:0e:d0:31:fc:a0:ae:65:fd:d5:bb:
                    77:9a:ca:dd:e9:67:ee:a7:63:89:ba:7e:c9:e7:be:
                    20:bc:4d:2a:7e:56:5f:56:e2:d8:04:99:54:7c:96:
                    68:19:81:b2:06:80:33:9d:fc:98:8d:a1:6d:d6:f8:
                    f1:64:88:2d:f8:2c:8c:b1:f8:af:65:8e:f3:38:ad:
                    5c:10:66:46:83:ad:3a:05:50:12:4c:0d:f7:ad:a1:
                    a0:6a:ef:39:3c:89:3f:a9:8d:6f:aa:d3:99:de:3c:
                    aa:6e:26:91:3a:fd:ba:56:e6:d2:81:c7:5e:54:7c:
                    cb:cf:38:97:f9:18:42:41:31:88:29:3f:2f:34:90:
                    74:dc:5a:ba:ae:5a:71:c6:a8:85:24:20:56:67:c6:
                    6b:0f:84:08:5d:bb:bd:3c:a8:4f:2f:33:bf:06:d9:
                    8e:b4:0c:86:ed:e7:5d:d0:37:c7:71:25:99:46:ce:
                    1c:50:4b:3d:7b:30:34:77:f6:0f:27:c7:14:f6:53:
                    cb:50:be:8d:80:ba:56:99:2a:c1:d1:b8:c2:e5:8a:
                    03:36:99:f3:6e:45:79:91:06:06:8f:29:37:a6:9e:
                    0a:73:b1:7b:39:35:af:9d:79:64:5e:12:f4:7b:a8:
                    70:9c:6c:06:ec:2f:77:f5:34:4e:a0:b5:d8:5c:18:
                    35:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:F2:F4:67:12:3F:12:27:C4:44:2B:5F:9C:6E:8D:77:28:C0:1F:16
            X509v3 Authority Key Identifier:
                keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:90:30:8d:62:5b:29:98:ac:ed:31:a2:e4:a0:d0:77:86:65:
         b4:d7:40:4c:a7:da:92:ae:4f:65:f9:07:1b:7b:3d:e2:ad:f9:
         dc:bd:29:56:0d:15:3c:7b:e7:d2:8b:9e:83:32:b2:f0:2d:46:
         70:67:61:7d:a4:c8:56:c7:c4:ad:73:c2:b9:be:fa:83:9c:ab:
         9b:30:21:e2:0d:d2:c3:9f:4b:eb:02:40:c3:c9:f6:ee:df:93:
         af:be:15:11:0e:83:08:83:28:8c:29:a4:18:71:ea:da:d8:bc:
         cc:d0:64:01:08:00:6e:6f:4f:25:8c:cb:6c:49:7e:a3:26:af:
         f4:93:f4:db:ca:44:5d:82:ff:3d:94:1d:50:48:42:9b:dc:0b:
         85:9f:9a:dd:5f:99:98:bb:09:eb:f3:fa:d1:e7:c7:32:19:ac:
         2a:ba:2d:ed:aa:6b:c1:ee:a9:5c:87:8a:4b:0f:42:c9:6d:68:
         bf:2d:55:aa:26:65:41:97:0e:b3:7f:2e:52:a7:e6:ff:5a:c1:
         08:fa:78:20:30:77:5b:1f:06:89:63:67:7f:42:38:9c:d5:15:
         38:9b:78:37:99:e6:4e:ef:85:b1:4b:89:57:33:7e:02:4a:4a:
         83:55:dc:1d:3e:c1:13:a5:fe:5a:4d:71:d5:6d:66:8b:97:36:
         92:18:3d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----