Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File:                     aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier:          omB/nxQOqpYuethuL06gaz5x6fKB9OgCrW9lga81W+o=
Subject key identifier:   76:FA:01:E9:EA:DA:C6:D5:D4:5C:02:C4:CD:0D:A1:3F:38:00:7E:6A
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer:       /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial:       01976D3D9AB9FD9D5CE5E9F58BB1A08EADBE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number:          1591
Signing time:             Sat 14 Jun 2025 07:00:43 +0000
Manifest this update:     Sat 14 Jun 2025 07:00:43 +0000
Manifest next update:     Sun 15 Jun 2025 07:00:43 +0000
Files and hashes:         1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
                          2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: qjMCew9GChHVv0y4Xx9nepdB1lpo8DrGf+97gRtgpCA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3d:9a:b9:fd:9d:5c:e5:e9:f5:8b:b1:a0:8e:ad:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
        Validity
            Not Before: Jun 14 07:00:43 2025 GMT
            Not After : Jun 15 07:00:43 2025 GMT
        Subject: CN=76fa01e9eadac6d5d45c02c4cd0da13f38007e6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:41:c2:ad:ae:8e:81:53:3b:62:7d:71:bb:aa:
                    b6:9a:7a:11:02:d3:a8:e3:bc:4b:13:13:01:53:7f:
                    10:72:da:88:80:0c:6a:4d:a5:2d:98:f1:32:29:22:
                    9a:b0:90:3d:29:be:8d:a6:a9:1e:1b:f3:ae:78:e6:
                    ca:dc:91:c8:0a:f4:44:9e:b3:42:99:59:b6:3d:b0:
                    c6:17:60:36:8f:6e:10:d4:fc:25:3c:60:3d:66:a9:
                    31:c0:65:fc:7f:26:1c:7d:c5:01:49:76:47:29:ab:
                    87:c2:f2:1a:20:88:9e:41:51:9d:3d:3a:03:20:39:
                    fd:05:11:ac:62:de:f0:f5:b6:4c:a1:54:a0:6b:c9:
                    44:e6:e8:38:98:90:2c:33:8e:55:3f:94:4c:90:d1:
                    3a:ca:05:13:a9:b4:ca:a1:d0:48:06:a1:88:c0:64:
                    c6:1a:18:ab:28:48:71:d9:3d:69:a5:40:f0:6c:1a:
                    4b:82:8d:a6:1e:7c:56:8f:43:bf:ba:b5:38:bd:53:
                    d2:fe:62:20:63:e7:94:6c:71:05:26:61:21:95:e8:
                    bc:18:a0:57:db:6b:64:25:46:9d:b2:5b:cc:c9:61:
                    44:04:bd:58:70:30:e6:6a:0e:ca:91:8a:fe:99:95:
                    b6:40:15:ab:f2:5c:96:b8:f5:ac:f9:b9:aa:95:b6:
                    52:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:FA:01:E9:EA:DA:C6:D5:D4:5C:02:C4:CD:0D:A1:3F:38:00:7E:6A
            X509v3 Authority Key Identifier:
                keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:33:cb:53:4d:f7:42:5b:f0:ed:93:bb:94:43:6f:f5:61:01:
         59:92:bb:35:4e:39:cf:45:d4:36:ed:ef:d7:e9:fc:08:2f:f9:
         9c:07:4b:d0:13:87:f8:74:fc:87:62:2b:4f:e0:cb:8c:16:7d:
         d5:57:df:9d:eb:52:f9:dc:92:15:05:de:59:69:0e:5f:a9:a1:
         24:e0:1b:f4:1a:c9:2b:8d:3d:1d:59:df:b8:46:72:de:60:c8:
         ba:db:a7:0d:f4:05:a0:58:d6:9c:a0:2d:ca:17:56:ef:72:74:
         be:e1:f4:c7:a9:08:b9:74:ce:e7:12:f5:be:97:78:7d:34:de:
         cb:eb:9a:02:80:bb:b9:43:09:a5:35:72:db:64:0d:65:76:9c:
         d1:4f:2b:80:2a:df:1d:91:1e:35:f9:36:b0:59:60:3f:bb:51:
         66:a9:35:60:79:b8:0a:33:c1:4b:70:79:a7:ba:9d:4b:6d:e4:
         ef:e0:12:91:00:3b:bd:af:fc:9a:5f:c6:59:15:e6:e5:5d:6a:
         81:c0:6a:5b:ce:83:66:77:80:fb:ef:40:9a:53:81:4c:6f:f0:
         e7:c1:dd:20:eb:c7:70:3b:3d:8f:15:8d:04:7f:d2:23:bf:c8:
         3c:07:a6:a6:a8:da:89:42:41:f8:0f:df:cb:6c:94:4d:7f:ed:
         be:79:7b:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPZq5/Z1c5en1i7Ggjq2+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NGU1MTVjYzViZTRlMjdlOWQzZDEzZTVlMWMxMWRjNzUy
OTI3NGIwHhcNMjUwNjE0MDcwMDQzWhcNMjUwNjE1MDcwMDQzWjAzMTEwLwYDVQQD
Eyg3NmZhMDFlOWVhZGFjNmQ1ZDQ1YzAyYzRjZDBkYTEzZjM4MDA3ZTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0HCra6OgVM7Yn1xu6q2mnoRAtOo
47xLExMBU38QctqIgAxqTaUtmPEyKSKasJA9Kb6NpqkeG/OueObK3JHICvREnrNC
mVm2PbDGF2A2j24Q1PwlPGA9ZqkxwGX8fyYcfcUBSXZHKauHwvIaIIieQVGdPToD
IDn9BRGsYt7w9bZMoVSga8lE5ug4mJAsM45VP5RMkNE6ygUTqbTKodBIBqGIwGTG
GhirKEhx2T1ppUDwbBpLgo2mHnxWj0O/urU4vVPS/mIgY+eUbHEFJmEhlei8GKBX
22tkJUadslvMyWFEBL1YcDDmag7KkYr+mZW2QBWr8lyWuPWs+bmqlbZStQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHb6Aenq2sbV1FwCxM0NoT84AH5qMB8GA1UdIwQY
MBaAFGlOUVzFvk4n6dPRPl4cEdx1KSdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYt
NTFjNzdjYzQ5MTQ2LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYtNTFjNzdjYzQ5MTQ2
LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJTPLU033
Qlvw7ZO7lENv9WEBWZK7NU45z0XUNu3v1+n8CC/5nAdL0BOH+HT8h2IrT+DLjBZ9
1VffnetS+dySFQXeWWkOX6mhJOAb9BrJK409HVnfuEZy3mDIutunDfQFoFjWnKAt
yhdW73J0vuH0x6kIuXTO5xL1vpd4fTTey+uaAoC7uUMJpTVy22QNZXac0U8rgCrf
HZEeNfk2sFlgP7tRZqk1YHm4CjPBS3B5p7qdS23k7+ASkQA7va/8ml/GWRXm5V1q
gcBqW86DZneA++9AmlOBTG/w58HdIOvHcDs9jxWNBH/SI7/IPAempqjaiUJB+A/f
y2yUTX/tvnl7aw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:09:28 2025 by rpki-client