Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File:                     MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier:          dRaLAL/aubyfMMrBM4lh68qbV13ytLV9WQInOAvMX6A=
Subject key identifier:   5E:A1:56:C4:51:75:F1:65:E5:9D:17:A1:F4:7E:2A:89:7D:36:6E:9E
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer:       /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial:       0196BB922573F5D7175F28F397FA4BA6441A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number:          1483
Signing time:             Sat 10 May 2025 19:00:39 +0000
Manifest this update:     Sat 10 May 2025 19:00:39 +0000
Manifest next update:     Sun 11 May 2025 19:00:39 +0000
Files and hashes:         1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: oEah5Cta2WIZsGyRTzaKPsBHcpH242ZSLlI3AbEGfxk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 13:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bb:92:25:73:f5:d7:17:5f:28:f3:97:fa:4b:a6:44:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
        Validity
            Not Before: May 10 19:00:39 2025 GMT
            Not After : May 11 19:00:39 2025 GMT
        Subject: CN=5ea156c45175f165e59d17a1f47e2a897d366e9e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:92:61:d9:a6:59:ee:bf:ee:6b:1d:81:ab:ec:
                    c3:e2:4b:71:da:ae:d3:24:03:f6:d2:14:fc:02:fd:
                    09:db:d0:84:93:a0:67:67:02:88:c3:c1:b7:4e:e0:
                    3a:10:b3:ea:b1:61:68:a6:38:5e:fb:85:d8:8c:84:
                    4a:7f:69:a3:9d:29:db:07:b7:92:5e:8a:8c:02:a0:
                    3d:ed:81:e9:af:eb:9d:7f:9c:08:33:8e:d9:c3:cd:
                    e6:6f:e1:d0:b4:ac:d3:1d:56:78:4e:bc:8c:85:f1:
                    2b:a7:2f:b1:19:45:88:fe:e3:5f:41:e5:f4:bd:b4:
                    16:e5:5f:38:62:6d:f6:87:1e:fd:e8:95:4f:0d:e3:
                    9f:d1:26:97:5e:d4:8b:ee:ac:b9:ee:c1:02:45:cb:
                    72:16:78:f0:8a:15:a6:5b:de:c6:08:72:74:17:db:
                    f7:db:3c:6e:a4:51:09:43:3e:26:14:7d:15:96:1f:
                    9c:ef:fd:78:c3:a7:b5:c2:9e:8f:8f:20:8c:d2:48:
                    63:cb:3b:aa:4d:92:19:fb:33:3a:86:42:0c:5c:b8:
                    59:84:e5:1d:47:14:24:1b:57:c5:32:80:1a:37:a4:
                    af:9b:b0:3d:e7:5d:cc:60:9b:5b:07:39:f7:1e:48:
                    29:36:88:2b:4e:01:c7:fa:1f:40:3e:7b:c2:a1:f5:
                    09:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:A1:56:C4:51:75:F1:65:E5:9D:17:A1:F4:7E:2A:89:7D:36:6E:9E
            X509v3 Authority Key Identifier:
                keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:02:0a:9a:c5:a1:3e:f2:7d:ae:8f:bb:cc:1c:92:35:f3:c9:
         22:0a:ab:58:40:17:51:96:e9:cc:fc:c2:f8:41:a6:f2:64:92:
         c5:a6:80:f6:8d:83:39:5c:09:35:0e:02:6f:7d:56:13:1f:e7:
         2e:54:04:2c:e4:a5:d3:58:08:d2:00:c8:08:56:81:d9:f0:f8:
         be:dd:6c:34:8d:ab:88:c8:dc:3f:3f:12:da:0b:28:58:ac:62:
         4f:a5:4e:09:92:71:fd:ae:53:c4:c7:ca:31:7b:cd:ec:98:df:
         5e:5d:47:47:40:47:92:2c:c4:8a:04:c4:0d:74:95:1c:02:44:
         55:9c:a0:3d:82:4c:43:0d:3e:f4:1a:41:ac:f5:2c:5b:91:0b:
         67:53:6d:70:31:71:4c:b1:f8:ba:00:99:8d:80:00:9f:b8:47:
         fc:e8:41:1c:ed:3e:35:10:53:58:1d:fe:3c:8f:dc:25:0d:9a:
         39:75:05:55:7b:6c:6f:85:be:8a:7b:79:38:b3:d2:0d:da:b8:
         32:11:3f:1e:de:ba:e7:65:b0:17:17:c1:28:ba:ce:e7:f1:43:
         0d:c9:3b:e5:81:41:b7:43:78:e5:f6:98:9c:f9:9c:df:a1:bb:
         c1:51:02:85:37:33:08:d5:ad:75:0e:50:af:3e:88:e0:b9:04:
         08:f3:18:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----