Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File:                     iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier:          bY1kPK+8xBtf0cYWyu6eTM8mJbP6kKbEfP7tH0qeFsI=
Subject key identifier:   F2:B0:89:DE:B0:7E:0F:91:13:62:11:99:D6:36:63:F6:15:53:90:CF
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer:       /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial:       019762BA0EED942D3581B7A132C3617A9BD3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number:          119B
Signing time:             Thu 12 Jun 2025 06:00:50 +0000
Manifest this update:     Thu 12 Jun 2025 06:00:50 +0000
Manifest next update:     Fri 13 Jun 2025 06:00:50 +0000
Files and hashes:         1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
                          2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: zQeY8Y71VN7DHCnFzotFHh7+/pIDYw71Q/Hs27MNH1U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 06:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:ba:0e:ed:94:2d:35:81:b7:a1:32:c3:61:7a:9b:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
        Validity
            Not Before: Jun 12 06:00:50 2025 GMT
            Not After : Jun 13 06:00:50 2025 GMT
        Subject: CN=f2b089deb07e0f9113621199d63663f6155390cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:27:06:cc:f1:0d:61:d0:f4:e6:19:77:d2:6b:
                    7a:ef:8c:9e:15:c9:29:76:49:30:c9:18:4c:59:d0:
                    17:e9:c3:48:cc:02:2b:13:83:8f:f4:5c:b2:64:54:
                    20:e0:06:b5:a4:88:49:10:30:ba:ed:8b:23:9e:6c:
                    d7:dd:1e:46:56:ef:82:8f:4f:b6:4d:fb:43:5d:67:
                    8c:91:02:5b:a9:9b:ea:08:54:0e:a3:fd:63:2f:54:
                    86:7c:66:07:0c:6c:87:b8:eb:a1:7f:27:85:8f:a3:
                    60:d0:8a:0b:8d:a3:95:8e:df:3a:55:df:8c:79:8c:
                    57:0d:80:b5:bf:1e:a2:c1:70:0c:5a:20:13:29:7d:
                    99:07:bf:6a:55:c1:45:e0:3d:c8:76:f9:f3:0a:d8:
                    c8:f9:a4:3f:ee:5f:66:37:20:79:45:6e:49:f7:f7:
                    21:ee:b3:6d:bc:26:86:87:01:c0:ac:96:1d:03:35:
                    fe:c5:83:fe:28:38:b8:96:2e:01:40:fe:6a:60:09:
                    ab:32:4c:23:d9:d7:ef:5b:65:31:84:12:01:c8:48:
                    d8:bb:73:53:06:ee:1c:3c:22:0b:e9:40:f4:f0:a4:
                    82:be:6b:a9:45:57:df:64:20:11:13:f3:3e:f4:6e:
                    ee:dd:7f:69:8f:46:21:77:35:f8:86:42:03:ce:cc:
                    e2:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:B0:89:DE:B0:7E:0F:91:13:62:11:99:D6:36:63:F6:15:53:90:CF
            X509v3 Authority Key Identifier:
                keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:ab:14:cb:cd:1f:d6:c8:d6:73:03:7c:e5:86:6b:e6:4a:a6:
         83:55:ba:75:ec:17:05:3b:84:3a:c5:dd:58:6b:87:f7:0b:75:
         8c:12:b1:22:89:13:50:af:b5:63:ec:e9:ed:8f:a1:4e:1d:7e:
         b9:ac:fe:44:8c:38:2e:52:c0:03:65:58:10:92:18:38:b5:f4:
         cf:96:94:51:46:19:c1:d5:99:9e:03:36:1a:cf:3c:1d:79:b6:
         f1:e2:95:d2:98:3c:09:1a:15:cb:da:ea:ce:27:7a:10:5b:a4:
         a3:e4:6d:f1:e6:92:6b:33:92:d9:c7:c8:12:ac:37:be:26:99:
         de:e9:65:8f:cc:c0:a3:d4:44:be:ae:d8:e7:0b:5e:cd:e4:a6:
         fa:bb:4f:84:a2:3e:0a:7d:07:69:14:06:25:98:f6:26:09:21:
         49:85:9b:0d:62:f3:7b:a9:75:b9:65:3b:c0:36:8c:92:22:8f:
         18:d0:86:b9:fc:7d:43:5b:84:1e:88:52:7d:bf:19:bf:a7:d6:
         1c:10:37:5a:97:0b:28:78:df:b1:75:17:57:8f:1b:92:3c:98:
         60:4e:9f:e6:ce:37:3b:f8:d0:29:c9:50:2c:a6:ac:a9:cc:d1:
         4b:f8:f2:25:1d:54:0e:18:86:81:c4:aa:27:7b:32:bf:9a:88:
         99:11:d9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:06:50 2025 by rpki-client