Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
File:                     A1mTnOHGqpvru2WA4VbuvYcd87I.mft (raw, json)
Hash identifier:          u9G1+3eg9sd6LkQemLJKdSQoWWJdPofQc+tqEwIKmHo=
Subject key identifier:   F1:2F:19:BA:7A:30:6C:52:12:BE:F0:A0:84:42:D0:F4:30:C4:0D:1D
Authority key identifier: 03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2
Certificate issuer:       /CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
Certificate serial:       0196D13E5DEBB7A51A971C5B2C5E59E83870
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
Manifest number:          0395
Signing time:             Thu 15 May 2025 00:00:47 +0000
Manifest this update:     Thu 15 May 2025 00:00:47 +0000
Manifest next update:     Fri 16 May 2025 00:00:47 +0000
Files and hashes:         1: A1mTnOHGqpvru2WA4VbuvYcd87I.crl (hash: 7aIL7u38N4cRrpNx8JPF+9TmMIccrar4VEn2qr5R/G0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 15 May 2025 23:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:d1:3e:5d:eb:b7:a5:1a:97:1c:5b:2c:5e:59:e8:38:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
        Validity
            Not Before: May 15 00:00:47 2025 GMT
            Not After : May 16 00:00:47 2025 GMT
        Subject: CN=f12f19ba7a306c5212bef0a08442d0f430c40d1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e0:0d:30:ae:c9:c5:14:06:3c:6d:83:af:95:
                    53:56:4d:24:c0:e4:55:fc:19:df:d1:6e:58:2c:18:
                    44:bb:0b:1d:aa:10:3f:9d:fe:13:2a:79:73:c1:f3:
                    9e:25:b4:fc:99:07:ef:80:a3:ad:fb:4c:27:3d:5b:
                    f1:80:4c:5b:9d:a9:15:09:85:b1:ef:b9:e5:4a:e0:
                    0d:94:e0:c1:f0:db:d2:50:7f:86:11:b3:c7:70:2c:
                    0f:c2:7b:46:d0:74:64:44:bf:d3:ba:33:4f:21:e0:
                    10:9e:2b:45:5b:2a:ce:51:14:38:fa:b3:e3:23:86:
                    6b:6c:b7:c7:5a:96:5b:db:d0:6e:fb:6c:bd:cf:6c:
                    70:3e:4e:00:41:bd:1b:91:8d:b8:69:c1:c5:01:36:
                    1b:78:2e:dd:21:d7:6a:b7:09:01:3b:bd:2a:b7:9f:
                    2c:b5:84:41:e6:f1:cb:82:98:41:1c:fa:72:61:62:
                    e6:da:45:b0:e3:b2:ee:98:fe:56:ac:a1:dc:5d:b3:
                    0f:7a:14:18:a9:1a:38:e2:9d:5d:ab:e1:e5:11:10:
                    4c:39:4a:93:5f:42:4f:7f:3b:b9:f2:8d:c5:92:c0:
                    76:f4:5b:87:0d:1a:0f:64:93:5c:39:eb:6d:f8:74:
                    84:26:b0:12:97:6a:bb:7f:66:6f:ff:48:59:d0:d9:
                    44:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:2F:19:BA:7A:30:6C:52:12:BE:F0:A0:84:42:D0:F4:30:C4:0D:1D
            X509v3 Authority Key Identifier:
                keyid:03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:76:e2:f5:4a:80:87:de:c1:1b:fe:fb:d0:d7:ad:0a:6f:3b:
         e1:0a:b9:8c:3d:61:60:b6:2b:3a:0a:db:4d:88:cb:4c:d5:8f:
         4a:60:2f:6f:4c:68:42:e3:e0:bd:de:23:a7:18:96:67:06:65:
         f4:48:97:45:e8:6d:38:66:4b:85:2b:64:eb:7c:d8:15:22:91:
         63:6a:87:c0:e6:93:0b:3e:8d:37:37:42:d9:a4:04:fd:44:63:
         2f:a2:47:17:fb:67:04:99:f2:a3:e6:5c:ef:9c:3a:40:a6:39:
         96:91:18:f7:72:76:aa:24:b6:0b:d5:b1:d6:19:d5:20:7c:43:
         9f:1b:01:dd:5d:9e:19:f2:85:fd:c0:3b:26:fa:ee:e4:5e:8c:
         1b:72:8c:97:83:ff:fc:5f:07:8f:4a:7e:ce:32:21:0c:d5:99:
         93:e8:d0:d0:b2:d0:a1:62:ac:39:91:06:06:a0:69:e1:35:5c:
         b1:1e:68:6c:83:53:5e:4b:55:7b:34:f4:33:de:e4:78:7c:e5:
         56:fe:db:2b:90:2b:32:1b:47:1c:0f:59:24:fc:2e:21:a3:65:
         b8:1b:2f:7b:70:8a:ab:3d:3b:cc:08:a6:34:6d:e4:f4:eb:30:
         31:cf:99:20:47:be:ad:78:e9:e4:8d:0f:c5:56:e6:e0:35:fd:
         a9:8f:d3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----