Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File:                     TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier:          8jfVqpQUIAR+XIqHooXZBwjorszCqeFeL5JNvf4V8/4=
Subject key identifier:   2E:3D:2F:74:9C:81:AE:D5:D7:4A:ED:C7:0B:44:4B:41:53:FA:7C:F9
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer:       /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial:       01975D93A3A58FA816F60244A040C72647B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number:          1593
Signing time:             Wed 11 Jun 2025 06:00:46 +0000
Manifest this update:     Wed 11 Jun 2025 06:00:46 +0000
Manifest next update:     Thu 12 Jun 2025 06:00:46 +0000
Files and hashes:         1: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
                          2: RSXmGPfQ8mX6WcSR6Z2ZB6u7-VY.roa (hash: 9JPv5cClAHFEamsto3OfYBSv6xhBQ5Y12w+jE6Rhs80=)
                          3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: meqW1MsqK5hA7/iccXmf4OqlYL6ub6LTKjqZOtajV4E=)
                          4: pPV-duHwP_qg6dqtHXTIMJzGTZk.roa (hash: alNCRojVtM9rfP6fgcCwPL9ZC8lIXb9OD5QPFguw90Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 23:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:93:a3:a5:8f:a8:16:f6:02:44:a0:40:c7:26:47:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
        Validity
            Not Before: Jun 11 06:00:46 2025 GMT
            Not After : Jun 12 06:00:46 2025 GMT
        Subject: CN=2e3d2f749c81aed5d74aedc70b444b4153fa7cf9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:38:38:73:ff:43:9d:6b:fd:c1:93:99:8d:6b:
                    64:47:2b:e3:13:3e:87:8c:2b:cf:e3:8e:f8:51:58:
                    d7:8a:88:aa:9a:f4:9a:e4:92:52:35:7b:8d:22:34:
                    e8:5f:0e:b7:c6:ab:74:ee:e7:36:3a:7b:14:f8:05:
                    99:cc:8c:cb:44:4a:3c:e5:f0:f5:60:60:b0:b6:b1:
                    2c:41:18:2a:22:1f:57:e2:ec:86:02:3d:b1:1e:e4:
                    48:1f:b6:34:88:9f:01:b3:35:81:14:45:18:05:41:
                    03:da:13:ac:a0:c6:6a:a6:c1:3a:7b:99:c2:e1:d1:
                    e3:c1:3e:ad:f6:e0:a8:37:88:4f:e8:15:44:a8:76:
                    b0:f7:de:1e:3f:b7:cf:6f:9c:14:dd:d0:03:4b:9f:
                    a1:51:86:48:64:97:9d:fe:f4:d8:67:d1:26:03:19:
                    83:e2:0e:23:23:b6:ce:bf:43:95:ef:e7:69:c7:82:
                    fb:f4:11:bf:a4:6d:13:14:fd:69:25:b3:70:76:8c:
                    cd:f4:75:30:fa:05:6c:58:6b:16:40:3e:69:fe:43:
                    61:19:ff:c7:72:f1:a4:4f:95:19:0c:8b:39:52:cf:
                    96:22:55:4d:15:38:25:cd:99:8f:dd:35:29:6b:d0:
                    ee:8c:4a:4a:78:2d:dd:91:7f:48:ff:8f:90:46:94:
                    74:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:3D:2F:74:9C:81:AE:D5:D7:4A:ED:C7:0B:44:4B:41:53:FA:7C:F9
            X509v3 Authority Key Identifier:
                keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:ce:7d:53:7e:5a:a8:bc:ff:5f:6e:e7:8b:31:3d:e9:1c:7d:
         be:9e:a1:a7:8b:54:0b:3a:d5:a4:0c:14:08:a2:b9:31:f9:eb:
         ef:18:11:57:44:34:3f:e3:8f:5f:0d:23:e8:bd:e9:a2:bc:8c:
         e4:a5:16:39:ca:2b:e3:89:dc:fc:d0:7d:d9:39:e3:f8:bf:a1:
         d1:c7:18:56:8f:d1:b3:27:e3:eb:3b:d1:c4:28:f2:b6:d4:a0:
         23:c5:77:17:a4:75:aa:19:d2:1e:8e:ef:fa:bd:f1:19:f4:35:
         cd:04:72:eb:97:64:7a:a6:89:2f:5b:5c:f0:06:16:da:f9:00:
         ba:6b:a7:3d:e8:5a:73:29:0a:69:40:98:70:e7:18:5e:f0:a7:
         75:ce:f9:d2:ff:f7:b4:3c:80:8d:fe:5e:a2:02:ea:d4:39:a4:
         3c:74:16:09:c6:c2:e4:5d:e4:3c:10:7b:25:29:e8:ad:9c:ba:
         5d:71:09:36:88:56:5a:89:f7:c0:a2:d1:3a:3a:ed:4c:5e:8f:
         08:7b:89:a1:a2:fc:b2:b6:b9:1c:0c:85:a4:5b:21:e1:39:f5:
         ff:1a:b6:f9:31:77:4d:66:21:12:8e:9d:a4:d1:4e:e1:20:b2:
         a5:51:01:78:18:b0:4f:f5:44:81:4e:aa:6e:aa:70:c2:39:a0:
         a9:95:64:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 08:46:59 2025 by rpki-client