Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
File:                     xorAnHI17TE4Ph_ThzkY3RgzNCo.mft (raw, json)
Hash identifier:          05FUNvPw+RBfTckM1zNjBXFGcVtaZjRMRIjyTz2j7TM=
Subject key identifier:   AC:16:DC:2F:B1:A1:56:2E:7C:09:52:E2:8E:F6:15:0A:D1:FE:F2:C4
Authority key identifier: C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A
Certificate issuer:       /CN=c68ac09c7235ed31383e1fd3873918dd1833342a
Certificate serial:       0196C08158B72994A9405CEA887BD07B0B32
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
Manifest number:          0505
Signing time:             Sun 11 May 2025 18:00:24 +0000
Manifest this update:     Sun 11 May 2025 18:00:24 +0000
Manifest next update:     Mon 12 May 2025 18:00:24 +0000
Files and hashes:         1: xorAnHI17TE4Ph_ThzkY3RgzNCo.crl (hash: zflsqr+FuhjH7B+ROND1cus79sEqdXVVmnKmsMtnwoY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 12 May 2025 16:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c0:81:58:b7:29:94:a9:40:5c:ea:88:7b:d0:7b:0b:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c68ac09c7235ed31383e1fd3873918dd1833342a
        Validity
            Not Before: May 11 18:00:24 2025 GMT
            Not After : May 12 18:00:24 2025 GMT
        Subject: CN=ac16dc2fb1a1562e7c0952e28ef6150ad1fef2c4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:48:88:16:62:da:85:5a:66:32:6e:44:e1:2c:
                    74:06:ad:86:1c:a1:84:f4:54:d8:eb:92:b4:8e:c2:
                    7a:03:f5:09:05:f3:5a:54:d4:95:b3:8b:09:64:cd:
                    50:9a:7f:fa:f6:f4:0f:76:70:b9:7b:5c:83:54:e3:
                    a3:70:d3:a8:1d:17:f5:9c:66:7e:74:85:bb:09:0f:
                    0d:c0:97:4b:17:06:79:d6:8c:36:28:f2:a9:f6:77:
                    10:f8:75:ec:cc:02:56:48:05:80:7b:88:4b:8b:37:
                    ee:5f:79:6e:6d:e7:c8:40:f0:82:bf:9b:8d:7e:9f:
                    c8:d3:a0:d0:c1:ad:47:10:13:d1:88:66:22:c3:fa:
                    40:87:b0:f2:1e:68:38:40:59:b1:76:9b:b9:77:90:
                    99:ed:df:3c:56:0b:be:6d:71:85:6b:67:f8:c2:7b:
                    6f:03:0c:37:12:f7:c0:0e:5d:f9:e7:f4:ef:b9:f6:
                    d4:47:3c:7d:77:0e:e0:ba:4d:f7:42:06:62:58:c3:
                    74:ae:ec:0e:9f:78:54:6d:38:a3:f9:50:8c:fb:87:
                    6c:d1:2e:d4:36:58:58:5d:43:bc:b4:50:39:3d:79:
                    35:ef:55:97:69:67:fa:60:6a:05:2f:72:8c:61:a8:
                    6e:3c:42:ba:99:9f:03:d8:06:d4:a2:0b:a4:57:3c:
                    33:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:16:DC:2F:B1:A1:56:2E:7C:09:52:E2:8E:F6:15:0A:D1:FE:F2:C4
            X509v3 Authority Key Identifier:
                keyid:C6:8A:C0:9C:72:35:ED:31:38:3E:1F:D3:87:39:18:DD:18:33:34:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xorAnHI17TE4Ph_ThzkY3RgzNCo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/492bd0-993b-476e-8fac-9de48d43b1db/1/xorAnHI17TE4Ph_ThzkY3RgzNCo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:2e:aa:1b:d5:aa:74:99:9b:88:93:12:22:d6:94:6c:64:eb:
         7b:1b:52:8a:64:0f:ea:c4:03:24:8c:b3:d6:88:a0:88:00:a9:
         87:ab:8d:2a:7d:d6:ef:86:a3:d7:ec:66:89:1d:9e:a2:68:4a:
         f2:4c:7f:96:7e:42:8b:f2:a5:ee:5c:f4:79:2c:1e:3b:cc:46:
         95:f2:58:a1:50:f4:f9:5f:78:29:2b:58:c4:26:e9:70:00:08:
         83:5d:e8:da:56:8c:d9:dd:c7:f7:63:6f:8d:dd:04:b6:e3:2d:
         0e:01:0b:e4:a1:ef:31:20:53:52:a1:d0:15:b0:75:58:18:7a:
         48:91:01:21:f6:66:fa:77:f0:42:66:cc:e8:ce:c7:71:c3:87:
         03:1b:95:76:eb:e7:4a:f2:c8:b6:9c:5a:3b:57:20:c7:14:68:
         b6:54:63:61:e6:04:30:b9:69:49:df:00:cd:71:ba:bb:75:1d:
         78:7e:8b:45:cb:21:98:62:06:5d:64:09:71:22:41:21:d0:57:
         52:c2:8b:91:bc:18:28:df:de:9f:28:ad:fa:b5:1e:d3:a1:f0:
         01:c8:6f:01:e4:8a:c9:0f:26:ad:74:76:e1:0c:6d:49:e8:4c:
         18:a2:e6:c6:73:40:f0:06:01:54:71:ce:a1:18:22:f7:cf:f6:
         b8:50:99:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----