Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
File:                     Wy17v8Kblv03I3vOZ4bFO604D70.mft (raw, json)
Hash identifier:          tC+2RNHLaK/qoM7/mJdmT7qG9wxCWCeCGxzLKmzQL8Y=
Subject key identifier:   CD:68:F2:92:A3:EA:73:82:8A:27:00:33:EA:F7:97:4F:8D:C5:2B:53
Authority key identifier: 5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD
Certificate issuer:       /CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd
Certificate serial:       0196BC6E2C044AA4ADE1A3E10A3A84BD58E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
Manifest number:          0105
Signing time:             Sat 10 May 2025 23:00:58 +0000
Manifest this update:     Sat 10 May 2025 23:00:58 +0000
Manifest next update:     Sun 11 May 2025 23:00:58 +0000
Files and hashes:         1: Wy17v8Kblv03I3vOZ4bFO604D70.crl (hash: wYA7wGlAZPg9ZQtkQ5X6EVh6wv7L9WAvJklrnp54z24=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 22:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bc:6e:2c:04:4a:a4:ad:e1:a3:e1:0a:3a:84:bd:58:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd
        Validity
            Not Before: May 10 23:00:58 2025 GMT
            Not After : May 11 23:00:58 2025 GMT
        Subject: CN=cd68f292a3ea73828a270033eaf7974f8dc52b53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:25:3b:88:ca:63:a6:cf:6c:b5:56:b0:3e:b3:
                    8d:1a:03:ae:db:e3:f4:39:90:52:62:91:95:b4:62:
                    0e:91:d3:b2:64:93:bf:64:b8:64:7a:72:08:fd:5c:
                    fb:27:e8:e3:b2:3f:99:57:53:ef:29:b4:02:3e:e4:
                    a4:9e:f5:25:f4:f0:fd:00:5b:4a:66:01:d0:1c:aa:
                    29:22:94:81:c3:e7:01:bf:78:56:f3:88:7d:21:69:
                    a0:22:0a:ba:70:9f:e4:61:b7:78:b6:8b:50:34:9c:
                    d1:b3:c7:84:68:f0:c4:d6:cc:a0:da:3e:e9:f3:da:
                    22:bb:ff:b4:d3:54:7a:bf:7b:17:7a:17:85:37:ad:
                    f3:06:21:1f:90:c2:ce:b1:43:b3:2f:f2:c0:c6:2c:
                    75:a1:e5:77:3b:61:66:30:29:e4:08:ab:3d:10:1c:
                    6c:46:ba:1d:c9:77:a9:5a:ad:ad:62:d5:34:a8:b0:
                    55:57:83:07:80:34:f7:ec:b1:98:8d:e3:94:6b:e6:
                    a4:55:7d:47:8a:8b:2d:24:db:c0:64:75:ab:2d:4e:
                    82:a9:5c:db:a5:83:13:63:d6:91:b6:a0:fa:47:d0:
                    9d:67:76:91:07:19:4f:fb:ae:6e:20:6c:69:63:fa:
                    95:13:ca:54:7f:d7:86:38:f3:8e:d2:2c:16:8e:8f:
                    be:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:68:F2:92:A3:EA:73:82:8A:27:00:33:EA:F7:97:4F:8D:C5:2B:53
            X509v3 Authority Key Identifier:
                keyid:5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:a1:b7:f1:b5:59:d9:23:46:73:19:8f:ce:d2:dd:36:f6:2f:
         61:3c:77:bc:f2:8a:3c:74:a0:ff:a7:25:39:20:48:54:30:48:
         62:e6:a2:51:19:6c:fc:5a:3b:69:13:f6:c2:f0:0d:7d:62:d7:
         67:82:d7:10:e6:61:c9:53:1e:ec:58:0b:73:7b:c7:1d:5f:ae:
         f7:b1:5a:6c:43:55:9a:76:b3:b9:47:99:cb:47:c5:17:c2:76:
         2a:71:91:fe:3a:64:4f:91:c0:94:10:cf:0f:d6:e0:2a:bf:59:
         67:e6:d9:ce:7a:ca:26:66:6e:5c:63:1c:a9:46:8f:61:3c:58:
         11:c7:c8:bc:88:3a:a7:28:4a:9e:a1:9e:de:cc:39:46:3e:ec:
         db:b8:3f:aa:ed:89:a8:9d:26:d6:ca:f8:45:f5:35:80:02:bd:
         a3:8c:1d:30:df:c6:65:a5:ce:a4:af:46:a5:37:ee:c8:a9:0e:
         d0:fc:15:8d:d3:86:bb:c5:34:b4:e6:60:f2:18:2b:34:70:2c:
         6d:24:95:ef:4f:c1:c0:94:00:66:35:e0:31:9f:88:1d:a3:c0:
         43:ab:83:bd:4d:89:ea:6c:19:f2:6a:fc:a7:60:5b:79:cb:c7:
         48:fa:35:87:30:15:12:ea:ab:a6:83:bf:33:52:ef:d7:fc:72:
         d9:d9:45:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----