Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File:                     4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier:          TfG8TYysB5wGfjSkL1kzqqcM+lXHCht0xgi3txwtHPk=
Subject key identifier:   D7:61:B5:A7:74:81:78:19:1F:7C:15:14:51:40:0A:C6:B2:1B:62:D9
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer:       /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial:       01975F81EE397618F674B81B8FD5A6A0AD8C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number:          12D0
Signing time:             Wed 11 Jun 2025 15:00:39 +0000
Manifest this update:     Wed 11 Jun 2025 15:00:39 +0000
Manifest next update:     Thu 12 Jun 2025 15:00:39 +0000
Files and hashes:         1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: tcgql7wdRuK4S3ZSXB46fuzY63RrLPHKE5n1KUdfyvk=)
                          2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:81:ee:39:76:18:f6:74:b8:1b:8f:d5:a6:a0:ad:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
        Validity
            Not Before: Jun 11 15:00:39 2025 GMT
            Not After : Jun 12 15:00:39 2025 GMT
        Subject: CN=d761b5a7748178191f7c151451400ac6b21b62d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:4c:e9:2d:0b:98:83:b0:1c:91:c0:c7:ed:eb:
                    12:32:67:46:7e:22:16:04:80:c0:ec:77:60:74:9a:
                    63:ea:4b:7a:6d:28:2e:c5:a5:7c:89:86:eb:cf:c6:
                    a9:76:81:07:11:52:76:b8:30:da:ba:62:c7:4a:68:
                    c5:a4:9d:14:82:24:3d:3c:76:a5:34:ed:9f:64:2e:
                    50:80:2a:6f:f8:14:19:97:37:ca:7b:26:63:08:3e:
                    48:79:0c:77:4f:d0:af:60:2a:6f:90:aa:71:a5:80:
                    70:da:05:25:92:9c:81:ff:0a:f6:b0:7b:cf:ae:00:
                    c2:56:f2:ec:17:9f:a6:f5:56:54:2f:3d:26:f8:e3:
                    1b:67:2c:87:33:17:5e:55:27:1a:7e:2c:ff:7b:fa:
                    29:d0:66:cf:ee:35:fd:96:05:40:e6:7e:58:f1:d2:
                    fb:f8:41:75:85:db:61:f5:56:71:c3:9a:61:89:f7:
                    b8:95:3d:7f:9a:fa:6c:79:df:5e:23:5f:7f:d7:d9:
                    5f:33:9b:0e:ea:b1:8b:2b:83:13:6b:11:4d:ce:b6:
                    0b:8d:e3:a1:84:1c:10:bf:2e:f7:3f:bb:d3:39:92:
                    07:23:8a:5c:cf:90:70:1b:ae:21:27:7c:0c:1a:2c:
                    28:76:03:5a:d2:03:79:c8:73:c6:dc:cb:eb:c7:18:
                    1a:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:61:B5:A7:74:81:78:19:1F:7C:15:14:51:40:0A:C6:B2:1B:62:D9
            X509v3 Authority Key Identifier:
                keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:e3:2a:66:6e:8e:77:69:26:90:54:6e:4b:31:df:d0:9b:f1:
         8a:15:08:72:52:f0:a4:3f:06:77:11:99:3a:b8:77:51:1c:ba:
         87:94:12:a9:dc:85:7c:c1:71:1a:52:75:12:d7:8a:dd:04:99:
         a3:54:a5:e2:fb:5f:55:b2:4b:f6:2a:36:c3:dc:6f:b6:8d:d6:
         9e:6d:03:45:fc:62:bb:da:51:55:63:69:d6:8e:c5:7a:12:13:
         3a:0a:e8:71:eb:d8:38:0d:2c:68:ec:9a:f9:eb:87:35:2c:18:
         40:e4:e9:76:82:01:69:73:9e:2c:fd:95:32:9a:69:8c:8f:e5:
         a2:df:3c:6a:fd:ee:c1:07:93:71:74:0a:76:c3:59:53:71:82:
         8d:dc:7f:7e:5f:4c:e5:f6:73:c5:4e:48:12:e7:cf:90:29:96:
         4b:8e:d1:44:3a:de:8e:f9:ee:80:2e:7b:f7:73:5a:d6:38:c4:
         12:87:27:17:5e:57:a8:40:e4:c5:ee:53:b0:6a:c6:3b:c1:e8:
         a5:5e:20:63:74:85:9f:cd:a7:58:d4:4e:30:1c:0b:56:47:0e:
         a4:1c:ff:b0:3d:de:0e:be:20:a0:d8:93:ae:b8:e5:b5:15:8f:
         1f:d8:75:87:77:2b:fd:b3:6e:ca:72:10:97:0d:b4:ad:f8:39:
         0f:db:93:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 21:56:30 2025 by rpki-client