Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File:                     KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier:          dXKuKF4JM4+hkNU1aCD23stKxoSD5NUbTpcQoe8+1vM=
Subject key identifier:   97:60:DB:F0:80:15:2D:9E:32:FE:24:4C:8B:94:C9:DC:FD:A8:97:AF
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer:       /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial:       019754FE0AEE5F2D3A3A3FBC3F2D8F898CEC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number:          1584
Signing time:             Mon 09 Jun 2025 14:00:24 +0000
Manifest this update:     Mon 09 Jun 2025 14:00:24 +0000
Manifest next update:     Tue 10 Jun 2025 14:00:24 +0000
Files and hashes:         1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
                          2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: EvzHG8QP4+HHbOtL3vVLCZdLKdr6WPIqikUcXcwZXeM=)
                          3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 14:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:fe:0a:ee:5f:2d:3a:3a:3f:bc:3f:2d:8f:89:8c:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
        Validity
            Not Before: Jun  9 14:00:24 2025 GMT
            Not After : Jun 10 14:00:24 2025 GMT
        Subject: CN=9760dbf080152d9e32fe244c8b94c9dcfda897af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:d5:65:72:67:1a:8b:79:9b:b0:4b:b2:6b:97:
                    70:c4:9e:e2:7c:52:9f:03:10:6f:1c:08:7f:46:20:
                    ee:84:aa:cb:70:d9:5c:c5:f6:a2:07:7b:df:2d:12:
                    0b:b9:38:8c:f0:e8:4e:76:4d:c0:c5:16:97:c4:d9:
                    1b:5c:70:e3:a8:6a:90:e1:30:24:cd:f0:11:41:f5:
                    fc:10:e0:17:ff:1a:07:01:f9:a3:22:31:c9:a4:80:
                    cd:37:8f:2a:c6:e3:8a:04:b5:1d:14:b2:63:db:cc:
                    15:10:67:c4:ed:61:0e:2e:ba:fe:8c:4e:d7:f1:12:
                    f2:83:0a:e1:d4:27:e8:8f:ca:e1:4d:ca:8a:ba:27:
                    bf:6b:6f:a6:73:17:8e:cb:ce:2e:64:02:1e:1c:66:
                    4f:ec:12:08:cf:65:a3:4c:e3:f1:bf:1d:00:82:ed:
                    51:ee:bb:3f:a7:93:da:61:ee:e7:5a:38:65:f3:65:
                    83:3f:58:bf:2d:16:b0:e5:b0:14:0d:0d:fc:92:cf:
                    16:8a:7f:24:41:47:f9:b9:1c:b6:45:f6:75:a4:ac:
                    84:a9:3d:a5:ad:a9:c0:32:95:ed:34:6c:17:b4:82:
                    8c:f4:99:77:56:76:b5:41:13:2e:44:d8:82:7c:ed:
                    8f:9a:45:1b:d2:6b:28:0c:92:b9:58:8b:96:c2:29:
                    cc:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:60:DB:F0:80:15:2D:9E:32:FE:24:4C:8B:94:C9:DC:FD:A8:97:AF
            X509v3 Authority Key Identifier:
                keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:12:d5:2b:21:4a:0b:2d:3d:83:8f:19:9b:4d:73:06:88:26:
         7f:8c:a3:13:6a:e1:bd:2e:7f:f9:d7:7e:2f:75:b2:71:fa:56:
         d2:27:bb:75:81:f6:99:66:5b:1d:a0:79:02:b8:60:c7:af:25:
         43:f3:4c:16:e4:27:be:c6:d9:d9:fe:9e:ba:99:fb:1e:e9:cc:
         99:8a:3e:e7:7f:15:65:b9:d3:c4:94:33:c8:4d:37:5d:b7:33:
         a7:b3:33:81:92:1c:26:61:8e:8e:a2:09:bf:2c:45:d5:d8:cb:
         fe:cf:5d:42:a5:b8:3f:b4:b0:8c:6b:7a:1b:b1:2e:f7:85:f4:
         2a:29:04:8b:f1:5c:43:5b:27:b4:97:62:de:0a:42:c1:e7:dd:
         f7:e8:12:11:c5:55:43:90:62:69:91:d1:63:b8:3c:22:a3:d5:
         b1:1b:66:91:68:71:8e:ba:b0:25:e7:76:f1:f0:5c:36:44:98:
         d2:43:40:a1:2a:76:e3:88:55:73:af:e3:70:33:66:e8:2c:78:
         d2:e9:6b:93:b5:ef:68:f0:96:db:b3:84:ac:0f:44:8e:31:32:
         0e:c2:42:89:75:9c:7d:e9:92:dc:b4:fa:da:52:ec:fa:39:37:
         bd:2f:1e:14:a9:ad:1a:78:94:b2:8b:c1:58:2d:df:cc:92:20:
         a0:d6:b2:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:07:31 2025 by rpki-client