Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File:                     5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier:          BngTbAOGywG84tKp6rSNjGy31WEKyqQKUPCjwMy2KKM=
Subject key identifier:   CA:4E:AC:24:72:AB:E4:9D:3E:87:90:F0:F4:19:55:76:9F:42:66:5C
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer:       /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial:       01976CCF6BF6EFB370F7965A047D277243E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number:          151E
Signing time:             Sat 14 Jun 2025 05:00:22 +0000
Manifest this update:     Sat 14 Jun 2025 05:00:22 +0000
Manifest next update:     Sun 15 Jun 2025 05:00:22 +0000
Files and hashes:         1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: oeSTpA1ak2+g/3w1gU7GMNgarACqiKiyBW6E+sZ+jBY=)
                          2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:cf:6b:f6:ef:b3:70:f7:96:5a:04:7d:27:72:43:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
        Validity
            Not Before: Jun 14 05:00:22 2025 GMT
            Not After : Jun 15 05:00:22 2025 GMT
        Subject: CN=ca4eac2472abe49d3e8790f0f41955769f42665c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:81:d9:09:b2:62:7d:fd:a2:ab:8b:38:78:9b:d6:
                    5f:28:44:99:4d:e2:b6:41:73:4a:4a:a4:4d:86:7f:
                    93:f2:79:24:ca:d8:47:08:0e:d3:58:f8:81:9e:61:
                    1c:3c:a8:04:77:e2:f6:6e:2e:f4:fe:e3:50:1d:1b:
                    20:3e:38:51:a4:de:73:03:72:7f:dd:22:e1:b4:ef:
                    67:5f:22:14:7f:4c:14:48:d3:0e:a5:c2:3a:09:e8:
                    7c:9c:59:05:16:8d:a7:14:cd:88:5d:02:37:1f:82:
                    d4:84:8a:07:e6:64:0c:8a:94:2b:e7:e0:55:54:1a:
                    cf:c1:3f:34:3c:96:c9:91:7c:7b:c9:41:c9:0b:2a:
                    12:a8:cf:5a:8d:4b:55:d7:8d:52:a7:e9:ca:fb:b2:
                    4d:fc:2e:c0:3a:e5:b2:ef:58:76:08:6c:39:bb:da:
                    4b:fd:04:20:33:6f:05:2d:17:85:4c:be:bf:8b:dc:
                    1c:68:2a:49:ec:66:75:24:da:9f:63:af:39:22:ef:
                    d8:31:e6:4d:92:4a:23:45:48:fb:da:d3:27:1a:4f:
                    c3:66:76:12:48:2c:43:af:96:d9:bd:10:f0:f3:9d:
                    b6:6e:ce:8c:46:05:52:e5:41:96:ca:fe:eb:01:76:
                    b0:cf:da:7f:ae:3a:fa:9b:16:c2:13:c1:e8:56:3d:
                    d4:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:4E:AC:24:72:AB:E4:9D:3E:87:90:F0:F4:19:55:76:9F:42:66:5C
            X509v3 Authority Key Identifier:
                keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:a4:ca:d4:e5:5e:1b:bc:e9:28:33:d9:45:48:86:36:d4:c6:
         0f:43:9d:90:f5:03:6a:75:30:b7:75:37:25:a5:7b:ee:4a:22:
         5b:47:f5:81:ad:08:0e:6b:d5:11:8e:54:5e:23:74:b2:05:68:
         8e:56:fc:43:8c:65:07:84:1f:16:18:91:1b:db:ee:93:aa:be:
         c5:06:9f:a7:34:7d:59:bc:6f:76:e5:6f:78:d3:4a:b9:da:47:
         0c:4b:48:bb:3d:40:48:db:bb:bc:d4:02:3d:c8:18:bb:8d:e5:
         cb:c5:45:7b:03:9a:ea:67:55:71:01:09:57:87:b8:5b:0f:55:
         49:b5:71:15:3c:9f:ed:27:2f:9c:d8:69:d7:f3:a1:dd:9e:0d:
         6a:e1:ba:97:a6:51:00:49:c7:4f:e6:f1:24:a1:c2:9a:9d:94:
         44:6d:25:c3:ae:4c:07:5c:7b:26:bb:c6:4e:fd:e8:b7:d1:19:
         2f:7d:de:5d:6c:50:a6:9e:29:9e:0d:95:a7:21:f5:8d:70:83:
         ba:f7:00:fd:fe:8e:06:00:09:b2:e4:c3:b3:2b:13:ca:8f:3b:
         7e:18:12:32:09:40:5b:b6:b7:7a:79:e2:f8:d2:66:b6:f0:be:
         31:17:e0:5f:60:88:ef:f9:89:cf:52:89:8d:06:05:f8:b2:f9:
         66:76:6a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:51:51 2025 by rpki-client