Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
File:                     ejUNAkrwH46vElcXyqA6r60YTh0.mft (raw, json)
Hash identifier:          5buqgP5izlCRipkyfisrfo+O6NS7bnszA3td7wyhnR8=
Subject key identifier:   DF:7A:8C:C1:E5:DC:28:12:E9:02:E0:F5:AA:21:63:59:A1:BA:EC:87
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Certificate issuer:       /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial:       019758364CB9DBC94ACDE2EA651A9830CD0B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
Manifest number:          1585
Signing time:             Tue 10 Jun 2025 05:00:42 +0000
Manifest this update:     Tue 10 Jun 2025 05:00:42 +0000
Manifest next update:     Wed 11 Jun 2025 05:00:42 +0000
Files and hashes:         1: 2JjyX_-1ihqsSblonAIGQ2WI8zE.roa (hash: zFek1n9vUOT2IuGKFpGhKS8yEEOPqAUeFGqimhy7H3I=)
                          2: 2zv-bqUF4ie6dLoJOvbHg-Khzrk.roa (hash: SuQwzPeSaf/HqGV5aFne0AqsUIDLEGL4BEqdCUksZzA=)
                          3: 90IBFTm1n0EdouWYts1bm2C2AV0.roa (hash: ERgPNr6bXt5OGFwKPUno3LLiwFJjlAJ5vniWmV4rL9o=)
                          4: IPDWq2JXklmZilVzAW_qJFHve_M.roa (hash: 8qLID3yci9mCWiyOl1eMby2l1Aaax7OKoB39T8J6xu0=)
                          5: Qhk5DeOzxRoTsaRY5UPu50xo2Q4.roa (hash: SAnzykFF7+yaqNzuYwleeCNNDy8d940iOSnUgG5s+iM=)
                          6: Zu3SmHOhZpwuSSti9wdImp6Ga-Q.roa (hash: 5ZnrCuNHa1wjQpFfQY/Zj6DgGr5ywhEPGA9N3saHG2U=)
                          7: ejUNAkrwH46vElcXyqA6r60YTh0.crl (hash: p1ebPAopvZcSlJcI4BJ2HqcA5byPFteW1XmDcRHTAgw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 05:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:36:4c:b9:db:c9:4a:cd:e2:ea:65:1a:98:30:cd:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
        Validity
            Not Before: Jun 10 05:00:42 2025 GMT
            Not After : Jun 11 05:00:42 2025 GMT
        Subject: CN=df7a8cc1e5dc2812e902e0f5aa216359a1baec87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f9:db:ee:15:36:67:15:8b:b1:a9:05:11:79:58:
                    bf:76:d7:cc:7b:6a:80:d9:49:06:4a:16:66:1d:4a:
                    c8:48:80:ce:a8:d0:60:63:be:3b:4a:1b:1e:30:e5:
                    a8:9b:d2:5b:21:cc:f1:4e:45:a9:39:3f:2b:5c:b8:
                    a1:5c:24:8c:15:30:e9:f3:e7:12:75:1c:b7:14:6c:
                    b5:a2:20:7d:c0:ba:37:bb:0e:85:11:31:ab:e4:ea:
                    4d:38:d8:8c:31:df:d0:ad:df:8e:90:9b:4a:f3:8f:
                    ce:17:e3:3f:3f:4a:3c:6c:dc:9a:9d:a9:c2:e9:d5:
                    8d:66:ce:e1:6a:b8:89:94:0c:c7:1a:b6:4d:00:1f:
                    48:34:d0:87:e1:c3:c0:4c:b9:6b:25:3d:8b:c3:3d:
                    3f:6c:48:d6:f0:2a:0c:67:5e:9a:9a:6c:37:bf:1e:
                    91:db:ba:e1:11:56:f6:ac:8e:08:63:30:84:3b:69:
                    0d:d9:f6:49:d4:ea:5f:0e:0b:ec:ba:91:cc:bb:cb:
                    83:6c:da:77:6d:dd:b9:02:04:8a:81:52:00:b0:bf:
                    b2:09:a9:4d:a5:e8:31:9d:a7:be:63:97:6b:57:89:
                    4e:54:30:fe:9e:fc:5c:f8:e7:7c:92:d1:34:d6:36:
                    4a:19:d1:07:8b:5e:70:95:5f:41:aa:a0:07:fd:ae:
                    0e:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:7A:8C:C1:E5:DC:28:12:E9:02:E0:F5:AA:21:63:59:A1:BA:EC:87
            X509v3 Authority Key Identifier:
                keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:11:0e:b7:58:fa:e0:bb:24:d0:84:cf:14:33:04:15:cb:ff:
         eb:e1:96:86:76:ef:b6:5a:58:19:86:39:96:95:26:db:81:d9:
         bf:a9:25:2e:58:63:cf:7a:43:92:18:d8:1a:e1:4f:26:02:74:
         34:1b:b2:49:5f:3f:e1:23:59:1b:2f:65:89:78:13:9b:9e:6e:
         0d:16:91:c5:47:5a:61:3b:98:f6:ae:a6:a1:3b:7c:5c:2a:0a:
         6c:e4:76:26:09:ff:6a:19:3b:5a:0d:6b:6b:6e:c3:40:80:87:
         1b:3c:d3:8f:ad:07:2a:0c:6d:69:5e:68:0b:e9:ae:a7:5d:6d:
         d9:ff:7d:01:6d:88:90:d2:45:2c:59:98:95:a3:20:0e:4c:39:
         02:80:cc:ef:49:19:db:fa:3f:e9:bd:27:3d:12:aa:ae:1e:7a:
         e3:3f:fb:c7:28:07:bf:57:50:e1:56:35:62:df:ff:31:ad:75:
         53:16:30:a3:57:85:f2:84:fa:32:4e:6c:af:c8:75:da:d1:95:
         4e:76:ae:72:56:7d:4f:16:a6:19:9e:b6:ed:e6:d0:f0:bc:d4:
         a9:8b:ab:55:a4:7d:91:10:b0:3a:fe:a9:b0:0f:d0:d6:da:1a:
         2e:10:0c:95:eb:c8:43:cb:f1:d8:10:55:29:a8:22:f8:e7:19:
         d0:02:01:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:04:07 2025 by rpki-client