Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
File:                     dCadQgSZl1rpNPNM45WTgRTJuns.mft (raw, json)
Hash identifier:          qXOrOQxWHqGTKxN5we1OzFkhQL/QLMXf4cZaRuxPlGw=
Subject key identifier:   05:66:93:33:DE:D5:56:7A:CC:6F:61:98:6A:B7:02:37:48:C3:14:79
Authority key identifier: 74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B
Certificate issuer:       /CN=74269d420499975ae934f34ce395938114c9ba7b
Certificate serial:       0196C917A23AB7B2AF5D9089BB0EA5AAB720
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
Manifest number:          108E
Signing time:             Tue 13 May 2025 10:01:31 +0000
Manifest this update:     Tue 13 May 2025 10:01:31 +0000
Manifest next update:     Wed 14 May 2025 10:01:31 +0000
Files and hashes:         1: dCadQgSZl1rpNPNM45WTgRTJuns.crl (hash: sCQX95eGPExmwjgF1KOaoBEABPV2G+j+MoOueKBxDgs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 14 May 2025 10:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c9:17:a2:3a:b7:b2:af:5d:90:89:bb:0e:a5:aa:b7:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74269d420499975ae934f34ce395938114c9ba7b
        Validity
            Not Before: May 13 10:01:31 2025 GMT
            Not After : May 14 10:01:31 2025 GMT
        Subject: CN=05669333ded5567acc6f61986ab7023748c31479
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:df:bf:f4:dc:4e:b9:c7:df:b9:70:fd:a4:fa:
                    48:b9:0f:9b:36:eb:18:db:83:f8:6f:e6:32:58:7e:
                    d3:72:4d:5b:ce:ab:ee:b1:67:82:76:0e:8d:1a:d1:
                    1f:b0:a2:38:51:a9:f8:13:f9:32:31:2b:e1:14:72:
                    04:b3:5a:a3:78:05:3a:9f:ab:cd:65:0f:5f:7f:ef:
                    63:1e:f5:d8:44:e5:43:85:a1:15:dd:25:3e:0b:5d:
                    0d:62:9f:50:c7:e6:9f:f9:a8:dc:9c:4e:91:36:0e:
                    35:46:0c:41:82:d5:89:a9:c3:d9:fa:c7:ba:30:68:
                    6f:9c:4c:41:dd:06:20:29:7f:75:71:a5:fd:85:d8:
                    48:4d:09:02:d5:ee:eb:7f:00:8f:a4:eb:c0:00:f8:
                    d0:aa:91:66:62:17:49:b2:d4:c1:15:ce:29:f0:57:
                    f5:2f:c9:fa:63:df:a4:33:5d:97:6c:4d:3c:fb:f7:
                    c2:91:a7:40:7a:4d:c7:e4:32:46:0a:4e:2e:de:86:
                    8b:8e:13:14:bb:88:b8:c7:d1:14:b2:bf:07:4d:5c:
                    77:41:a9:0b:4d:89:60:76:ed:b6:25:b0:dc:9c:34:
                    96:1d:c8:7f:db:17:2b:e1:d3:af:3e:7d:5b:db:18:
                    d2:e4:9b:29:7b:cc:95:1a:3a:88:b2:69:22:a8:3b:
                    d1:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:66:93:33:DE:D5:56:7A:CC:6F:61:98:6A:B7:02:37:48:C3:14:79
            X509v3 Authority Key Identifier:
                keyid:74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:33:29:4f:bb:65:da:91:47:d1:2e:c8:2d:31:55:80:54:8b:
         24:3d:4e:1b:41:8c:35:1a:e6:3d:08:96:fa:16:5e:00:8f:0c:
         60:60:28:59:ab:00:6c:50:d6:4f:7d:44:1d:77:cc:90:6b:b9:
         89:22:51:c1:03:43:2c:8e:42:b8:5d:a0:61:04:53:05:0c:95:
         ab:d8:c0:e0:7f:56:0a:61:e9:c8:67:4a:ac:4d:1a:00:7f:b3:
         23:aa:ed:2a:ee:ae:22:d3:25:16:c1:bf:2e:bc:be:05:4a:d2:
         e4:d0:61:9d:5e:1a:c5:13:ef:20:53:da:87:7d:94:38:b1:db:
         88:4e:36:f0:38:a3:c9:32:82:fe:65:20:9e:15:ce:61:df:89:
         d5:1e:60:26:d7:53:e4:b8:c9:2a:ca:71:3c:60:2c:8b:2b:aa:
         8e:82:4e:17:e4:df:0e:5e:9e:43:c0:4f:11:a4:28:b5:f8:c5:
         87:e3:4f:e1:27:22:ed:e1:5e:62:87:5a:6b:d6:43:ac:3b:41:
         4d:33:4d:db:c0:b0:f7:77:c2:01:ed:95:be:5d:c3:77:ae:b9:
         60:e5:00:76:bf:df:00:eb:53:fb:67:3c:38:24:11:15:8c:86:
         1a:29:44:4c:12:10:25:28:a7:5c:15:2b:40:a7:bc:7a:42:71:
         63:44:06:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbJF6I6t7KvXZCJuw6lqrcgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MjY5ZDQyMDQ5OTk3NWFlOTM0ZjM0Y2UzOTU5MzgxMTRj
OWJhN2IwHhcNMjUwNTEzMTAwMTMxWhcNMjUwNTE0MTAwMTMxWjAzMTEwLwYDVQQD
EygwNTY2OTMzM2RlZDU1NjdhY2M2ZjYxOTg2YWI3MDIzNzQ4YzMxNDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAid+/9NxOucffuXD9pPpIuQ+bNusY
24P4b+YyWH7Tck1bzqvusWeCdg6NGtEfsKI4Uan4E/kyMSvhFHIEs1qjeAU6n6vN
ZQ9ff+9jHvXYROVDhaEV3SU+C10NYp9Qx+af+ajcnE6RNg41RgxBgtWJqcPZ+se6
MGhvnExB3QYgKX91caX9hdhITQkC1e7rfwCPpOvAAPjQqpFmYhdJstTBFc4p8Ff1
L8n6Y9+kM12XbE08+/fCkadAek3H5DJGCk4u3oaLjhMUu4i4x9EUsr8HTVx3QakL
TYlgdu22JbDcnDSWHch/2xcr4dOvPn1b2xjS5Jspe8yVGjqIsmkiqDvRsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAVmkzPe1VZ6zG9hmGq3AjdIwxR5MB8GA1UdIwQY
MBaAFHQmnUIEmZda6TTzTOOVk4EUybp7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZENhZFFnU1psMXJwTlBOTTQ1V1RnUlRKdW5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80OWQ4MTMtMmQ5ZS00NGI2LTk3YmEt
ZWE5YzJjNTIyMmZiLzEvZENhZFFnU1psMXJwTlBOTTQ1V1RnUlRKdW5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC80OWQ4MTMtMmQ5ZS00NGI2LTk3YmEtZWE5YzJjNTIyMmZi
LzEvZENhZFFnU1psMXJwTlBOTTQ1V1RnUlRKdW5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnzMpT7tl
2pFH0S7ILTFVgFSLJD1OG0GMNRrmPQiW+hZeAI8MYGAoWasAbFDWT31EHXfMkGu5
iSJRwQNDLI5CuF2gYQRTBQyVq9jA4H9WCmHpyGdKrE0aAH+zI6rtKu6uItMlFsG/
Lry+BUrS5NBhnV4axRPvIFPah32UOLHbiE428DijyTKC/mUgnhXOYd+J1R5gJtdT
5LjJKspxPGAsiyuqjoJOF+TfDl6eQ8BPEaQotfjFh+NP4Sci7eFeYodaa9ZDrDtB
TTNN28Cw93fCAe2Vvl3Dd665YOUAdr/fAOtT+2c8OCQRFYyGGilETBIQJSinXBUr
QKe8ekJxY0QGpw==
-----END CERTIFICATE-----