Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
File:                     VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft (raw, json)
Hash identifier:          J3tWKAMhDB/86TxkFAAWd7YFR3zU8U2FHa648PnstSA=
Subject key identifier:   A9:EF:06:27:53:06:F0:8E:A2:CC:AC:CD:F5:F1:70:A2:DA:08:74:68
Authority key identifier: 54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
Certificate issuer:       /CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Certificate serial:       0196CD61CA25C19DD8119443F9FCCD3D23D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
Manifest number:          09B2
Signing time:             Wed 14 May 2025 06:01:00 +0000
Manifest this update:     Wed 14 May 2025 06:01:00 +0000
Manifest next update:     Thu 15 May 2025 06:01:00 +0000
Files and hashes:         1: VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl (hash: cERn0YL9omPlMI9lPf3FC5Nia4pbyoGwo8fbYTndF1A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 15 May 2025 06:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:cd:61:ca:25:c1:9d:d8:11:94:43:f9:fc:cd:3d:23:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
        Validity
            Not Before: May 14 06:01:00 2025 GMT
            Not After : May 15 06:01:00 2025 GMT
        Subject: CN=a9ef06275306f08ea2ccaccdf5f170a2da087468
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:29:ea:70:17:c2:87:e2:b5:11:7f:5b:fc:9e:
                    38:74:00:f7:5e:59:b1:c0:98:ae:3e:26:9f:dc:df:
                    70:d6:c5:28:5e:86:22:51:59:e0:73:fa:8d:26:eb:
                    7f:5a:b8:49:49:7a:a8:ce:32:b4:0d:f1:a4:a6:2f:
                    f0:85:dc:8a:62:2e:09:e8:cd:76:0d:63:57:be:05:
                    b3:85:66:e8:2f:c9:81:fa:64:a8:1f:1d:25:cf:59:
                    7a:d6:cb:c0:1f:d4:75:a3:0a:ee:b8:da:2b:1f:17:
                    b6:c7:c4:36:7f:b7:4b:e5:a4:af:91:1e:10:41:61:
                    e4:64:ff:d8:af:78:c3:f2:0f:37:5e:fa:2b:de:ab:
                    3d:3f:4d:f5:f4:c9:a9:08:00:3b:eb:4b:a2:cc:ca:
                    dd:56:83:38:ec:e0:a6:b5:12:90:7b:7b:80:73:8c:
                    e0:6c:37:c2:8c:4d:59:fd:69:22:26:6f:4a:de:5c:
                    fb:0e:90:c2:63:f7:d0:50:d5:10:a6:a7:cb:04:f7:
                    43:27:37:c3:82:e7:4d:ff:8c:36:2a:16:b6:96:4c:
                    9c:d3:9e:7c:e1:a4:9e:eb:80:ef:fd:b2:10:9e:13:
                    70:75:de:a4:b5:f5:40:95:3f:63:5b:2e:ee:95:89:
                    1a:db:35:bd:7d:f9:ac:61:66:c8:d4:99:88:4a:0c:
                    1e:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:EF:06:27:53:06:F0:8E:A2:CC:AC:CD:F5:F1:70:A2:DA:08:74:68
            X509v3 Authority Key Identifier:
                keyid:54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:34:55:be:a3:6d:b9:bb:f3:e8:64:2c:fd:69:69:55:53:d3:
         10:fa:66:ce:07:26:69:4b:06:e6:7e:bc:1c:08:7d:26:d9:75:
         d8:50:c6:b6:30:d9:33:07:1a:b3:d9:5e:49:2b:ee:61:75:9d:
         84:db:d1:6a:4f:ac:f4:0e:16:f5:c4:78:9f:d6:64:d9:3f:55:
         69:b0:0b:88:e9:f3:66:b5:68:8f:25:70:c9:50:30:c1:20:72:
         ed:4f:52:c6:32:a5:e1:dc:74:07:de:13:f5:29:7b:17:d8:47:
         bc:d1:9a:84:31:a1:a8:e4:19:ba:d4:ff:30:9a:b6:f9:94:f6:
         8f:38:6d:77:e0:97:7d:40:62:d6:b1:3d:d4:da:21:8f:65:f2:
         0d:40:21:f0:71:57:ab:df:48:19:d7:4e:50:a1:e3:45:3e:95:
         f1:03:d9:b8:03:e3:68:29:8c:88:3e:e5:20:c2:90:6b:47:e2:
         f3:9b:34:e9:48:a0:1b:44:e7:6a:aa:dc:cb:34:9c:0b:bf:08:
         04:d4:f9:7e:43:5d:e1:80:35:9d:55:b3:f8:bd:d3:cb:48:ed:
         1f:d6:75:50:86:6c:23:76:7e:66:62:33:77:c6:2f:09:3e:80:
         a4:86:94:ca:68:b1:df:7c:3c:8d:e7:e1:c5:f0:51:32:a8:44:
         92:3a:f1:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----