Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
File:                     cVYaucXzkpItp8rhgMMwc2XwI4Y.mft (raw, json)
Hash identifier:          N+dSfQTQnuXIaRDLqTm7fXfzqShaYr4LlKlrMfOrdRI=
Subject key identifier:   60:2F:14:AF:8F:C8:58:4F:0D:E0:9F:5E:82:2D:EE:5B:24:B8:9B:B1
Authority key identifier: 71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86
Certificate issuer:       /CN=71561ab9c5f392922da7cae180c3307365f02386
Certificate serial:       0196A276F49B6DEFC5EC1304BC6972C354EA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
Manifest number:          0E57
Signing time:             Mon 05 May 2025 22:00:26 +0000
Manifest this update:     Mon 05 May 2025 22:00:26 +0000
Manifest next update:     Tue 06 May 2025 22:00:26 +0000
Files and hashes:         1: cVYaucXzkpItp8rhgMMwc2XwI4Y.crl (hash: Hf9av973Wi5CNhWij/1689TJM/J/N9q0uZXDHVV0E6s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 06 May 2025 18:19:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a2:76:f4:9b:6d:ef:c5:ec:13:04:bc:69:72:c3:54:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71561ab9c5f392922da7cae180c3307365f02386
        Validity
            Not Before: May  5 22:00:26 2025 GMT
            Not After : May  6 22:00:26 2025 GMT
        Subject: CN=602f14af8fc8584f0de09f5e822dee5b24b89bb1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:f4:1e:a7:aa:fc:0d:5f:99:f9:fd:6c:c4:1d:
                    e4:a9:cb:2b:c2:4e:bd:86:b9:98:f7:7b:a9:80:9f:
                    99:8e:49:35:57:d4:2c:63:a5:94:87:92:9f:51:16:
                    35:a5:60:d9:00:20:5e:2a:97:2d:38:6b:10:d0:8b:
                    99:c4:95:ba:2a:35:4e:73:03:2c:c3:d1:59:1c:64:
                    be:6b:05:fd:cd:78:d3:e6:0d:56:b4:37:41:f4:80:
                    f0:7a:82:90:ba:41:d8:08:6d:0e:17:b0:89:26:ed:
                    f5:86:bb:db:fa:cd:d0:9b:49:30:28:11:15:f8:c5:
                    b4:b3:c2:a5:19:55:fc:df:2a:f4:15:5b:52:83:39:
                    c8:5d:2b:8e:06:dc:5a:46:66:ae:5a:62:0c:f5:49:
                    d7:e2:c7:e4:ba:9b:69:5f:9c:dc:ca:59:19:00:a7:
                    08:af:0b:d5:bb:3d:c8:08:ff:0d:a2:27:7e:04:83:
                    91:7f:4a:b1:a1:c8:2b:c5:82:b3:a4:9e:6b:2c:b6:
                    fc:ee:bb:ad:cb:b7:12:82:11:b2:c8:a9:57:6b:2a:
                    08:c4:8d:32:4c:38:a7:df:75:e7:43:c0:af:ba:61:
                    b4:cf:ac:26:b6:49:81:c7:9d:05:39:f4:9f:61:30:
                    cb:50:81:cb:ef:2d:98:b2:b2:a5:8e:41:fa:b0:bb:
                    64:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:2F:14:AF:8F:C8:58:4F:0D:E0:9F:5E:82:2D:EE:5B:24:B8:9B:B1
            X509v3 Authority Key Identifier:
                keyid:71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:15:a8:31:14:08:5e:7f:bb:28:f1:bd:21:98:8d:c1:b3:9f:
         43:29:2d:ae:e4:15:29:75:89:62:3e:2b:04:63:02:32:59:a2:
         ca:e2:3c:65:cc:2c:39:51:f8:80:73:06:49:7d:46:e7:a1:35:
         63:91:e6:eb:9f:d9:ce:62:9b:47:d7:35:0b:a1:ca:36:cf:b4:
         82:5f:0d:c9:92:fa:4f:22:e3:e2:e9:ea:7b:02:3b:a1:16:4b:
         63:b9:22:cc:5f:ce:b6:3a:a8:77:36:11:d6:90:76:98:57:6b:
         4e:0b:6a:c4:51:be:49:3c:34:5c:aa:44:82:fa:e4:1e:af:49:
         9a:f6:bd:4f:0b:67:32:e6:a1:5b:78:94:dc:82:dd:1c:33:db:
         d3:39:ee:70:2f:5a:92:ff:8f:55:00:79:04:6f:68:b7:c4:3f:
         4a:b0:0e:17:6a:89:77:fd:86:af:9a:af:20:f5:4b:40:be:ba:
         ee:58:44:1e:06:45:9f:03:4d:9e:8b:a8:3a:be:89:6a:98:15:
         b1:9e:be:32:2f:3a:e1:2a:11:bd:ea:db:38:f9:6c:ab:7a:dc:
         f6:45:04:8d:b5:b8:14:6e:92:39:79:df:df:81:ae:84:2d:15:
         9d:03:f2:c0:56:9c:64:c3:1c:f6:6a:15:b8:1c:31:8e:f9:85:
         c4:d0:d4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----