Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e9c0b1-166a-4bea-bb53-13cf918f6cbc/1/HAqZUB52gfo8Z-H9PXNRKKIsYxc.mft
File:                     HAqZUB52gfo8Z-H9PXNRKKIsYxc.mft (raw, json)
Hash identifier:          MQapbmpzkAaia0KPSsNAp2IieG/6ATs5QDWv09pAGCA=
Subject key identifier:   EC:A2:00:3C:E2:80:30:AA:BF:28:EB:A1:E0:51:95:3F:55:EA:F7:B0
Authority key identifier: 1C:0A:99:50:1E:76:81:FA:3C:67:E1:FD:3D:73:51:28:A2:2C:63:17
Certificate issuer:       /CN=1c0a99501e7681fa3c67e1fd3d735128a22c6317
Certificate serial:       0196CBE1061A659FC36551216437B121A296
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HAqZUB52gfo8Z-H9PXNRKKIsYxc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8f/e9c0b1-166a-4bea-bb53-13cf918f6cbc/1/HAqZUB52gfo8Z-H9PXNRKKIsYxc.mft
Manifest number:          057B
Signing time:             Tue 13 May 2025 23:00:44 +0000
Manifest this update:     Tue 13 May 2025 23:00:44 +0000
Manifest next update:     Wed 14 May 2025 23:00:44 +0000
Files and hashes:         1: HAqZUB52gfo8Z-H9PXNRKKIsYxc.crl (hash: +rxfAsDzd0Kx7Xks2m3pRqHCEOUDYNKAc7hasISRrpk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8f/e9c0b1-166a-4bea-bb53-13cf918f6cbc/1/HAqZUB52gfo8Z-H9PXNRKKIsYxc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8f/e9c0b1-166a-4bea-bb53-13cf918f6cbc/1/HAqZUB52gfo8Z-H9PXNRKKIsYxc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HAqZUB52gfo8Z-H9PXNRKKIsYxc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 14 May 2025 22:19:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:cb:e1:06:1a:65:9f:c3:65:51:21:64:37:b1:21:a2:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c0a99501e7681fa3c67e1fd3d735128a22c6317
        Validity
            Not Before: May 13 23:00:44 2025 GMT
            Not After : May 14 23:00:44 2025 GMT
        Subject: CN=eca2003ce28030aabf28eba1e051953f55eaf7b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:b2:cb:6f:45:b6:37:75:ea:25:d4:6a:af:82:
                    09:b7:91:10:f2:d0:77:85:83:ef:76:d2:08:78:c4:
                    b5:37:91:65:a0:da:5e:1f:3f:82:bc:50:01:95:62:
                    8f:57:69:ad:25:e8:03:9c:74:28:fa:2a:9e:b3:b9:
                    1a:1f:92:76:d7:70:49:65:3a:95:c3:9e:ff:3b:af:
                    17:77:4d:43:5a:82:88:df:31:81:62:e2:44:5a:1a:
                    4f:3e:dc:5b:6e:23:91:04:b8:a5:e9:f1:15:02:7f:
                    17:fc:61:29:85:b3:ee:2c:33:81:dd:ec:b7:66:dc:
                    35:c1:33:fe:3e:cb:15:3e:62:a8:e0:4b:cb:4a:c2:
                    cf:72:8f:10:35:b6:2a:54:87:8a:06:fb:0c:a1:46:
                    08:09:ff:ef:3d:69:15:87:4c:f5:5d:d3:59:3c:dd:
                    f1:ff:b4:1c:b6:82:f4:69:e6:07:2f:35:80:c4:b0:
                    6b:52:98:3c:98:ff:26:36:e5:d0:18:d8:6e:c0:10:
                    34:8c:21:f4:e4:b8:9b:f3:ba:0b:38:c4:e5:c1:c9:
                    34:a5:5c:73:b9:a4:01:a2:b9:9c:1f:ef:90:97:86:
                    ab:34:e4:1e:83:f5:97:0c:6e:40:c8:1d:10:a4:6b:
                    dc:cf:75:f1:b7:df:8d:6e:c4:56:50:2a:65:36:20:
                    4e:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:A2:00:3C:E2:80:30:AA:BF:28:EB:A1:E0:51:95:3F:55:EA:F7:B0
            X509v3 Authority Key Identifier:
                keyid:1C:0A:99:50:1E:76:81:FA:3C:67:E1:FD:3D:73:51:28:A2:2C:63:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAqZUB52gfo8Z-H9PXNRKKIsYxc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e9c0b1-166a-4bea-bb53-13cf918f6cbc/1/HAqZUB52gfo8Z-H9PXNRKKIsYxc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e9c0b1-166a-4bea-bb53-13cf918f6cbc/1/HAqZUB52gfo8Z-H9PXNRKKIsYxc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:23:a0:72:08:2c:6b:f7:67:3a:c0:0c:48:14:2d:61:47:01:
         1c:ce:bf:8a:5c:c7:4f:d7:d4:b7:b5:47:06:a4:fb:8b:a0:c9:
         5a:25:29:2a:19:b2:0b:46:52:02:0f:e4:86:67:bd:10:68:f0:
         41:f4:4f:f9:48:7b:a7:d8:24:67:4e:99:18:1b:54:0f:e8:58:
         34:4c:d4:ac:33:21:84:1f:f7:90:2e:ee:70:15:fb:ad:5d:8d:
         51:95:3c:8a:47:17:72:3f:86:7b:e5:e7:d0:9a:ef:cb:61:89:
         20:13:0b:27:7a:8e:d5:24:ec:95:a6:e0:e7:88:3c:72:46:43:
         b2:64:fb:29:cd:1c:e5:83:b6:38:63:9e:26:9c:70:61:d7:b2:
         dc:6d:b8:7d:28:c4:fd:52:98:74:b3:16:19:f5:b6:2d:1f:34:
         a9:29:08:54:97:c3:32:21:c7:71:bc:a9:b5:7d:4a:d3:76:eb:
         bc:78:b4:2a:91:a2:34:8b:7b:e2:e9:75:34:f2:0a:50:65:d5:
         91:bb:6e:85:5b:47:4d:ce:5a:c1:64:1b:9f:6a:c5:46:2d:9e:
         61:25:cf:87:d3:31:c9:6a:41:f6:63:cc:c7:e3:b9:2d:84:bd:
         f2:81:ed:dd:af:5c:9e:a6:a8:46:29:b6:a6:70:88:47:fb:b5:
         ac:fe:48:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----