Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File:                     fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier:          YYhuvEHQ90qVvOy7aB6T+P56sBPtV45hE7wJbGO8Qcg=
Subject key identifier:   44:AE:62:3E:86:FB:21:5D:0F:A3:70:94:93:09:A3:03:04:19:14:DC
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer:       /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial:       019754C72FED3108D664800F593013894741
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number:          03CB
Signing time:             Mon 09 Jun 2025 13:00:29 +0000
Manifest this update:     Mon 09 Jun 2025 13:00:29 +0000
Manifest next update:     Tue 10 Jun 2025 13:00:29 +0000
Files and hashes:         1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
                          2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: z0U0J5IUSjn8UwodtofnoJL23LQ0dkgbtLZ/cq8INXE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 11:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:c7:2f:ed:31:08:d6:64:80:0f:59:30:13:89:47:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
        Validity
            Not Before: Jun  9 13:00:29 2025 GMT
            Not After : Jun 10 13:00:29 2025 GMT
        Subject: CN=44ae623e86fb215d0fa370949309a303041914dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:58:ee:f8:32:22:de:03:62:93:50:60:0f:c8:
                    5a:da:25:4b:04:35:f1:ba:43:30:10:91:75:1f:61:
                    a9:d3:0f:54:1c:41:2d:2d:c2:a3:ab:f4:78:ad:64:
                    4f:71:4e:87:89:2d:71:bf:09:e1:d3:be:83:2f:d8:
                    92:07:88:7d:c3:28:18:e7:a0:49:80:cc:ab:d1:78:
                    ab:7d:2c:11:fb:bf:80:a9:03:1f:29:1c:fd:84:eb:
                    91:5b:32:1a:a1:7f:17:42:6c:6f:7e:57:6f:2e:fe:
                    c5:3f:ef:a3:d2:84:76:ef:c5:30:46:8d:88:f8:fe:
                    d0:68:ad:d3:16:ea:b0:b3:de:84:c6:98:54:0b:25:
                    79:a5:d2:55:30:25:1a:f2:c8:b7:6a:5f:88:c7:4d:
                    dd:39:a6:e5:66:b1:a7:dd:ca:50:b7:38:a7:7f:1a:
                    ae:d3:35:53:17:65:26:cf:f2:a8:c9:0e:16:34:13:
                    d6:2c:4b:d7:5d:51:0a:fd:51:37:8d:c5:96:9e:01:
                    d6:bd:37:48:ae:6c:a2:d1:5f:d0:14:9b:1d:e1:4d:
                    00:f0:f5:8c:27:3c:d8:27:dc:37:cf:23:71:62:26:
                    0a:78:58:a8:e6:c2:93:0f:09:ba:fa:b2:c8:9d:e2:
                    1c:25:95:04:9d:69:68:56:95:54:87:89:1c:07:9b:
                    ac:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:AE:62:3E:86:FB:21:5D:0F:A3:70:94:93:09:A3:03:04:19:14:DC
            X509v3 Authority Key Identifier:
                keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:49:33:6b:57:d5:c4:ae:ba:53:55:ad:9b:4e:45:82:67:b3:
         74:b8:9e:22:9a:ac:7a:75:8b:8b:e7:33:a4:34:dc:05:c8:84:
         a3:1c:b9:85:bf:b1:fd:b5:4e:84:9c:7f:ed:f7:3c:95:f2:e5:
         76:90:95:cb:61:19:d7:a4:ec:46:9a:8e:1a:ed:7f:9b:4b:5a:
         93:8b:6a:03:a5:9f:c0:2d:49:cf:03:57:66:d1:6f:a7:f1:3b:
         54:5c:d9:09:d1:44:2a:41:1b:d8:c4:1e:21:8a:d3:d4:3f:3a:
         51:f3:5b:b9:14:7f:15:42:e1:42:e0:75:8f:32:8e:30:75:e0:
         10:10:6d:63:a7:c9:1a:03:64:92:0a:fc:ab:6a:fa:c7:55:3d:
         dc:a6:92:b4:e7:01:34:25:5b:bd:1a:3d:93:60:e3:22:27:e7:
         ef:08:e4:94:d0:18:09:75:83:c2:73:b7:f9:5f:d1:05:f7:ee:
         53:21:15:7b:86:55:65:64:51:b6:d0:b0:73:a6:b4:01:c3:9d:
         13:9e:da:f9:c4:db:b2:6e:78:83:62:05:1a:ec:b2:1c:d8:05:
         f6:32:68:40:94:a9:f6:da:a6:8d:dd:38:a6:91:b9:6a:75:4b:
         68:82:f3:5e:31:4d:85:8a:59:27:d3:a1:14:c7:47:54:d2:51:
         26:14:ab:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 18:32:58 2025 by rpki-client