Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
File:                     BcojF2aaRo1QmoqhkGvvp1v5wgE.mft (raw, json)
Hash identifier:          nv7e7kwKmaCNV/yjSNX3BimrgM8Z4uPy4r+WdErkqE8=
Subject key identifier:   22:E5:D1:6C:88:34:F2:F9:14:89:58:E7:58:24:71:62:A9:B2:06:5A
Authority key identifier: 05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01
Certificate issuer:       /CN=05ca2317669a468d509a8aa1906befa75bf9c201
Certificate serial:       0196BB92905FEFBEC26ED6481B09CA052FE4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
Manifest number:          0C6B
Signing time:             Sat 10 May 2025 19:01:06 +0000
Manifest this update:     Sat 10 May 2025 19:01:06 +0000
Manifest next update:     Sun 11 May 2025 19:01:06 +0000
Files and hashes:         1: BcojF2aaRo1QmoqhkGvvp1v5wgE.crl (hash: GgTpdrxkWxqHS+hNG6/rTooz9R+D48PdrwtdQ5SJQYE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 13:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bb:92:90:5f:ef:be:c2:6e:d6:48:1b:09:ca:05:2f:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=05ca2317669a468d509a8aa1906befa75bf9c201
        Validity
            Not Before: May 10 19:01:06 2025 GMT
            Not After : May 11 19:01:06 2025 GMT
        Subject: CN=22e5d16c8834f2f9148958e758247162a9b2065a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:6d:ef:4a:f1:42:e1:42:4e:db:16:f8:86:94:
                    30:b6:42:77:fa:d8:52:fb:5d:e3:38:45:5c:23:26:
                    0c:b4:57:fb:1d:f4:c9:53:bf:40:6d:a2:5f:ad:d8:
                    a6:c3:ee:6f:27:29:cc:1f:1a:5a:e9:5c:de:9c:08:
                    d5:05:8a:fe:db:9c:e3:89:2e:02:11:6b:df:19:42:
                    9e:1f:52:21:68:89:53:da:f6:e4:7e:4c:d6:af:a7:
                    0c:32:71:1f:d8:d7:90:85:d8:a9:5e:5f:06:df:6e:
                    2d:bc:ab:18:80:56:e9:35:81:a0:2c:29:16:91:73:
                    76:cb:2f:16:40:69:71:4b:90:62:ed:dc:4c:52:7d:
                    b5:4c:c1:96:82:91:ee:b4:4c:69:b5:ad:f7:94:1a:
                    63:51:37:28:c4:5b:ec:d8:4a:be:d2:f6:ea:40:43:
                    ce:8a:c9:05:d7:f8:1c:7e:fd:7b:c7:0e:9b:1c:40:
                    01:5c:3e:d9:ed:71:66:18:7c:a2:a6:68:67:30:a3:
                    56:3b:f0:7d:32:8a:4e:45:05:81:04:13:81:5e:80:
                    fc:7d:35:27:9b:d4:0b:a0:5e:9e:28:8f:7f:33:fd:
                    68:18:6d:1a:52:50:08:08:bd:f1:c7:88:d8:8a:68:
                    ef:0a:46:d3:7d:f9:42:0c:e1:07:d2:40:87:3a:a1:
                    1a:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:E5:D1:6C:88:34:F2:F9:14:89:58:E7:58:24:71:62:A9:B2:06:5A
            X509v3 Authority Key Identifier:
                keyid:05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:ef:2e:2e:97:be:ea:55:e3:23:d4:6c:8c:bd:ff:0e:c0:a3:
         3b:95:ee:5f:32:81:81:b8:9d:62:22:dc:48:9e:ed:a6:6f:fd:
         37:a8:3f:b4:ac:39:45:a6:45:d0:af:c8:26:08:dd:ca:cb:ee:
         d5:ad:dd:1b:3e:10:8b:f3:65:18:aa:75:22:0e:2b:7e:a2:68:
         6d:50:d3:c3:db:1f:4b:4b:05:9a:78:20:d5:b1:b6:e0:51:d1:
         2a:b9:94:55:0e:d3:98:58:0f:03:76:5a:d1:e1:d5:c6:70:3e:
         e6:9c:66:b0:8a:a5:31:d8:af:ec:5c:0b:bb:3f:42:71:45:c3:
         01:d9:10:79:ad:58:a3:22:92:94:c3:f4:b8:aa:4e:8b:b7:28:
         4f:50:8f:a2:cc:89:d6:59:09:6d:c7:cc:99:01:10:3a:29:b9:
         7b:25:7d:c7:e6:38:58:4f:77:48:62:5b:6b:68:53:25:6c:4e:
         0a:f2:87:c9:f4:e9:b7:8c:53:15:ae:79:e5:9d:88:0a:2d:9a:
         cd:ff:3d:48:86:30:3a:b1:da:f0:90:b0:8a:7b:96:4b:2b:8a:
         26:9b:32:2a:09:b2:21:d6:83:52:e6:d8:39:85:92:25:0a:0c:
         d2:26:0c:25:65:e0:fa:51:96:fd:5b:9f:67:1d:cf:c3:e5:da:
         04:f3:cd:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----