Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File:                     4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier:          4qlt1+K1THMPd+RcNLCdw4LxiVlFlbWKfbsExHsJ2go=
Subject key identifier:   B4:D8:6F:41:F7:8E:CA:FD:B6:4A:D7:50:6B:77:6B:FF:7D:46:65:44
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer:       /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial:       0197635EF4FBCF90E6383240583D2EDDCDA5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number:          12D2
Signing time:             Thu 12 Jun 2025 09:00:56 +0000
Manifest this update:     Thu 12 Jun 2025 09:00:56 +0000
Manifest next update:     Fri 13 Jun 2025 09:00:56 +0000
Files and hashes:         1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: /q86yK9TcI7fiwojiDlCGokuqoUoj6luMs+cTphX1yY=)
                          2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:5e:f4:fb:cf:90:e6:38:32:40:58:3d:2e:dd:cd:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
        Validity
            Not Before: Jun 12 09:00:56 2025 GMT
            Not After : Jun 13 09:00:56 2025 GMT
        Subject: CN=b4d86f41f78ecafdb64ad7506b776bff7d466544
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:3e:f6:70:1a:bd:16:e4:13:56:32:53:51:a1:
                    b3:4d:33:e7:a9:10:6e:17:46:78:97:24:29:76:e2:
                    81:b4:6a:77:44:5c:48:19:42:3d:c8:b2:26:74:50:
                    d1:6e:66:48:80:f0:13:e3:f6:af:87:dd:30:6a:9c:
                    23:94:c1:69:ed:c2:5e:35:6e:d2:af:91:ea:56:d0:
                    72:ce:2a:e0:f2:bf:cd:e6:88:c2:e5:89:5f:89:67:
                    72:0b:55:31:53:43:1e:d4:e3:0f:83:48:16:5b:f0:
                    ad:65:08:9c:69:63:fd:bb:5c:41:f4:70:3a:87:21:
                    cc:06:69:a7:e8:a9:23:20:63:b1:95:87:05:6a:50:
                    7f:d3:f7:1d:4e:4e:b9:5d:0a:b6:bc:56:a4:a6:27:
                    b8:9c:f1:74:6f:eb:1d:9c:22:24:7f:43:0b:96:8d:
                    6b:a4:e1:04:64:a9:a3:3d:c3:33:b1:22:41:00:15:
                    2e:80:b2:9b:60:00:a8:7c:b2:8b:63:95:ba:43:2e:
                    f1:7a:89:b7:52:7c:b3:cc:a5:d0:8c:1a:c5:65:20:
                    40:86:f0:99:88:12:8a:3f:bb:a7:18:3e:5b:e0:7f:
                    6a:4b:96:8e:0c:b1:14:b3:9a:a9:4e:e8:9f:0a:6a:
                    c9:50:56:ed:75:fd:86:49:d4:7a:cf:fb:4d:22:ab:
                    86:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:D8:6F:41:F7:8E:CA:FD:B6:4A:D7:50:6B:77:6B:FF:7D:46:65:44
            X509v3 Authority Key Identifier:
                keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:6a:52:3c:68:85:5e:32:78:bd:20:bb:e2:3e:78:32:3a:ae:
         2b:47:f2:a0:39:7f:f6:61:5e:85:16:b6:1e:a9:8c:97:8f:15:
         20:4e:0a:bf:c0:c8:a0:b0:4e:a9:7a:c8:80:5e:05:90:9e:4d:
         a9:84:74:00:c1:aa:ca:29:7b:bd:84:9d:5b:23:14:34:c5:29:
         a0:05:de:f9:4f:3d:47:4f:b0:ee:e9:64:bc:92:48:1e:1c:e3:
         bf:ac:39:36:c6:7d:44:00:b8:b9:02:c7:b5:8b:f0:97:80:f4:
         8f:51:97:dd:67:a3:d0:47:a4:28:18:39:2c:ae:8c:34:c8:ed:
         fc:2e:ef:9a:e7:42:2f:58:8f:2d:d8:a3:74:06:91:28:6d:48:
         7a:0c:22:64:40:ec:94:5d:ab:6a:fd:e1:20:8d:a2:a2:60:b6:
         03:aa:ef:20:48:72:f0:57:af:58:33:a5:88:10:4d:c3:43:08:
         b4:67:fb:63:f4:d4:a6:7c:61:18:17:7a:db:ec:bf:29:7a:47:
         1d:a1:ad:5e:20:7d:98:70:32:b8:ac:99:44:a3:81:56:49:18:
         28:d0:dc:de:d4:df:0e:d1:55:f0:d7:5e:1c:56:1a:30:b1:21:
         44:c8:75:d7:39:25:09:ba:32:cb:60:ee:a4:cb:40:18:3b:cd:
         43:61:11:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:55:10 2025 by rpki-client