Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File:                     5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier:          QReB9TrNjregd5NOVxveD3lV+hKD0Km6U37YeSrc+pI=
Subject key identifier:   D8:49:48:56:81:B6:8C:3F:71:6F:DB:81:07:A6:5E:C5:02:C0:76:50
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer:       /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial:       019763277E02569ED4E929DE55AC8E158076
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number:          1519
Signing time:             Thu 12 Jun 2025 08:00:21 +0000
Manifest this update:     Thu 12 Jun 2025 08:00:21 +0000
Manifest next update:     Fri 13 Jun 2025 08:00:21 +0000
Files and hashes:         1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: ySwEvy4+a5y6Hj+zcO1h7AlZLTYbVYIh/kOFjcgvRsw=)
                          2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 08:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:27:7e:02:56:9e:d4:e9:29:de:55:ac:8e:15:80:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
        Validity
            Not Before: Jun 12 08:00:21 2025 GMT
            Not After : Jun 13 08:00:21 2025 GMT
        Subject: CN=d849485681b68c3f716fdb8107a65ec502c07650
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:b7:84:96:18:21:56:04:9e:ca:9f:63:12:35:
                    d7:6d:f4:cf:7f:2b:2b:14:7b:05:a5:24:34:8d:b2:
                    41:19:2d:e7:83:dc:08:bf:56:e7:4e:bf:00:c1:90:
                    59:14:b9:d2:56:ab:31:44:9a:42:3c:c3:0f:df:dd:
                    40:a5:ee:8d:01:54:c3:78:f5:88:b4:2e:4c:f4:33:
                    3f:ba:90:57:18:42:0e:ce:75:3e:e4:eb:8c:c1:d7:
                    70:59:9f:1c:29:f1:b9:91:94:e7:78:3f:32:27:bc:
                    cd:16:d9:35:f5:03:60:08:27:e6:a3:f6:a0:3d:da:
                    3d:68:68:37:9d:aa:33:cf:5d:6d:cb:d2:d4:94:18:
                    48:03:e0:db:f0:9a:70:10:2e:9e:69:5e:df:a7:ba:
                    80:32:06:10:a9:9b:b2:6e:25:da:f2:6a:f4:6b:6a:
                    0f:7c:76:81:7c:34:cc:60:fa:35:6a:62:dc:a3:21:
                    47:a7:5e:c0:b5:54:2c:d8:8e:34:93:45:0f:2a:07:
                    3b:b3:e8:6b:66:61:d1:10:24:ba:89:78:c4:0c:6b:
                    0f:a8:0e:db:3a:25:71:74:6f:05:c9:cb:6c:ba:c2:
                    2b:77:36:e2:b6:57:79:b4:af:f9:35:02:c5:9a:c5:
                    0c:ac:89:34:a7:af:fb:7e:41:f2:b9:de:fe:85:8c:
                    8b:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:49:48:56:81:B6:8C:3F:71:6F:DB:81:07:A6:5E:C5:02:C0:76:50
            X509v3 Authority Key Identifier:
                keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:0e:b0:dd:09:20:8f:60:75:d8:79:50:0f:fa:bf:b2:9b:d2:
         20:48:64:f8:6e:b7:7d:16:f1:eb:ae:6a:23:9f:00:51:9e:5a:
         86:7e:29:c0:e0:8c:12:56:6e:59:74:f5:ec:3e:db:34:54:94:
         ed:32:c1:89:6b:7a:25:9e:00:b7:d6:4b:6a:8f:d5:1c:90:2a:
         58:38:03:35:94:9a:ab:b6:76:55:a9:73:bb:d8:2e:21:af:88:
         36:b6:1d:ad:eb:ba:5f:1c:04:bb:5b:10:d1:73:a5:a3:da:53:
         03:56:97:57:0d:fd:f5:92:47:77:5b:a4:ab:23:b4:18:a4:92:
         a0:58:17:b3:a1:0b:05:5c:1a:d7:7c:08:e5:1e:f7:0a:06:f8:
         fc:d5:dc:99:ca:da:92:79:5d:b4:97:35:e3:5c:ad:a9:80:c0:
         b8:78:74:38:a4:d5:06:d6:5e:ad:19:38:a2:1e:9f:8a:b4:1e:
         28:4f:0e:7f:e2:f2:9a:06:1a:2e:29:d7:94:3c:ab:96:8d:42:
         18:fa:89:71:60:23:ca:28:e4:d1:24:ef:43:a9:9a:2d:b8:67:
         bf:3e:89:ff:53:72:c2:3c:ae:2f:6e:5a:18:eb:38:e8:75:29:
         7b:08:95:59:64:c6:25:27:f6:20:93:d0:c3:e0:a3:89:1d:b6:
         30:f7:b6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:17:51 2025 by rpki-client