Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File:                     BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier:          IFxFOrjgoH4+xUmaB1LjZbENzZkIWD/9ATMffv5KMfc=
Subject key identifier:   60:4D:CA:24:9A:BC:BB:6C:AA:66:49:C3:AD:10:18:F7:08:85:35:4B
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer:       /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial:       0197530FE03BB720591F29ABC8AB410C0068
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number:          0855
Signing time:             Mon 09 Jun 2025 05:00:38 +0000
Manifest this update:     Mon 09 Jun 2025 05:00:38 +0000
Manifest next update:     Tue 10 Jun 2025 05:00:38 +0000
Files and hashes:         1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=)
                          2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=)
                          3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=)
                          4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: vDWj02/sECz6UhIgy+ZCt6GNxz6OZpAg1lPn+0aTtA8=)
                          5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=)
                          6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=)
                          7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=)
                          8: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=)
                          9: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=)
                          10: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=)
                          11: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=)
                          12: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=)
                          13: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=)
                          14: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 05:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:0f:e0:3b:b7:20:59:1f:29:ab:c8:ab:41:0c:00:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
        Validity
            Not Before: Jun  9 05:00:38 2025 GMT
            Not After : Jun 10 05:00:38 2025 GMT
        Subject: CN=604dca249abcbb6caa6649c3ad1018f70885354b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:6e:0a:7e:ab:ff:16:1d:43:77:6b:8a:2a:a1:
                    ae:3e:02:8c:ea:80:2a:a5:40:6a:66:7d:51:47:94:
                    40:2f:93:30:fb:4e:02:a8:9b:d9:84:29:93:29:92:
                    b3:bb:50:1e:a3:11:fa:9e:6b:f0:85:f2:67:3b:f0:
                    b2:d8:73:d2:49:b5:68:47:50:c7:1f:14:21:fc:02:
                    8e:94:89:92:8a:2f:18:1d:66:77:aa:95:a2:19:f5:
                    31:73:ba:08:20:fb:09:85:1c:be:eb:51:6f:e7:d9:
                    2e:40:be:65:07:99:7e:32:f0:a1:5a:cb:cb:13:b1:
                    32:83:58:fa:45:66:d4:f2:07:fa:a1:0f:fe:6b:00:
                    a3:b1:c4:b4:39:47:c7:bc:dc:e0:f4:84:f5:af:19:
                    28:70:a3:3a:97:57:f1:f6:c2:5f:5d:5e:8d:fc:7c:
                    5b:ff:bf:ac:cb:ae:ab:99:10:29:67:09:13:0b:b6:
                    bf:f7:aa:b4:e5:67:60:51:14:f9:06:98:79:e0:1f:
                    51:0f:46:5c:33:96:c8:a7:a2:76:a5:0a:e4:e7:26:
                    fa:13:c7:ac:e8:86:b2:ed:9b:d6:8b:f5:7c:b0:fb:
                    f2:bd:d4:8f:da:d1:38:2d:5f:46:23:94:5d:92:ee:
                    fa:6d:7c:28:0f:a5:c8:86:cf:2c:dc:81:3d:18:77:
                    4f:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:4D:CA:24:9A:BC:BB:6C:AA:66:49:C3:AD:10:18:F7:08:85:35:4B
            X509v3 Authority Key Identifier:
                keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:91:80:e5:51:42:ce:75:ce:06:37:aa:3d:f9:69:29:07:f2:
         09:12:18:b4:cd:4c:2c:74:e9:dd:15:fc:49:db:57:90:b8:17:
         63:28:04:dc:c8:ef:cc:d5:2d:66:e9:9c:c4:56:cb:1f:93:f4:
         fc:b4:c2:7f:05:ad:40:cc:c9:f9:44:28:3d:7e:68:86:6a:fa:
         ac:6b:49:0f:ee:d4:02:58:84:67:b6:66:6c:b5:52:1f:da:3f:
         9b:dc:a2:db:f6:c3:fc:77:65:6a:e9:02:74:9f:d3:79:2b:e4:
         b7:b1:3a:b1:53:9a:77:2c:ca:44:42:53:c0:58:05:94:a5:e3:
         7c:16:e2:c4:cf:5f:9f:75:43:41:f8:02:0d:14:63:8a:4f:5f:
         2a:76:58:db:b8:1c:25:b2:22:ab:88:de:58:c9:d4:ba:4b:49:
         09:5a:8c:0a:86:22:6d:8f:01:64:cb:c3:4d:9b:54:7c:14:0f:
         82:27:56:b8:2b:ce:1e:ff:bc:4f:24:5a:82:c6:69:8d:cc:da:
         c4:b9:dc:af:c9:3f:13:b4:a2:1c:04:f6:2a:07:e1:01:0e:df:
         0e:17:c4:ce:f3:11:c9:b7:08:c8:f1:a5:85:82:bf:f4:e7:55:
         25:38:71:58:38:95:c9:b9:01:12:6a:55:6f:21:46:5b:28:c4:
         fd:14:69:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:44:14 2025 by rpki-client