Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
File:                     Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft (raw, json)
Hash identifier:          PpvKVwzyS266Bq5955J2o8u2ZpLAVK/PH2hIBDd5usw=
Subject key identifier:   15:F7:EE:D4:E5:36:8B:2C:62:C1:56:A3:11:36:68:BE:6F:C4:1E:EC
Authority key identifier: 1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
Certificate issuer:       /CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Certificate serial:       01976960A1CD7C22D65273E56AA9136F8EBB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
Manifest number:          11DF
Signing time:             Fri 13 Jun 2025 13:00:29 +0000
Manifest this update:     Fri 13 Jun 2025 13:00:29 +0000
Manifest next update:     Sat 14 Jun 2025 13:00:29 +0000
Files and hashes:         1: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl (hash: /Qiii2b9sfmp3jHre+TQDCtA/T5rPa8OMHvV/c4hLeQ=)
                          2: UujBfWNQbvUkl0lkMK4V-9QiUlw.roa (hash: FohKwxny7khcmiCsTnlSJI6D8Cw6gmfD+vVquMBYGNg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:60:a1:cd:7c:22:d6:52:73:e5:6a:a9:13:6f:8e:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a88f429edc86aa87bb3a17717cea71c70873af2
        Validity
            Not Before: Jun 13 13:00:29 2025 GMT
            Not After : Jun 14 13:00:29 2025 GMT
        Subject: CN=15f7eed4e5368b2c62c156a3113668be6fc41eec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b5:91:fa:fe:7a:c4:3f:27:39:4e:cc:04:63:
                    7a:5c:ce:ae:4e:13:69:4a:1c:5b:87:c4:71:c1:1f:
                    f5:7a:b5:5b:35:d3:b4:57:ed:16:c8:48:2e:81:be:
                    40:ee:3a:c8:fb:9c:94:94:f7:9d:1b:84:56:d5:50:
                    77:6f:6b:1d:1b:dc:b1:ea:23:c7:76:e3:5d:4e:09:
                    cf:47:26:4b:16:6c:2d:4a:ef:14:9d:c8:ad:e5:fd:
                    ab:c4:08:17:c8:06:3e:9d:2e:34:50:11:0f:c3:71:
                    55:9d:ce:ac:19:a5:0a:da:6f:1c:bf:f2:d2:79:21:
                    26:3c:9f:81:45:29:24:d0:e5:7d:3c:ee:f3:70:a1:
                    c5:69:c5:1b:62:24:92:2d:2a:38:12:c4:bb:c9:6e:
                    38:e3:64:96:bc:df:c7:89:a5:05:1d:bc:68:23:f6:
                    e4:4d:33:c9:62:0c:68:36:de:fa:66:d1:a8:c7:56:
                    e3:37:cd:59:27:ac:a1:61:e9:98:8d:af:11:c0:e6:
                    cf:7b:d2:91:0e:10:d2:45:bb:3c:2e:7c:42:4f:64:
                    8b:bb:6a:97:09:8c:56:24:74:aa:92:13:4d:e4:5f:
                    9d:94:c9:83:9e:3b:a8:df:b8:ed:db:36:d5:ee:ce:
                    7a:32:01:d8:e5:ce:57:33:57:74:19:7f:17:e7:9d:
                    00:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:F7:EE:D4:E5:36:8B:2C:62:C1:56:A3:11:36:68:BE:6F:C4:1E:EC
            X509v3 Authority Key Identifier:
                keyid:1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:9c:db:74:fe:97:c0:04:91:73:20:65:ff:26:23:8a:3c:ef:
         2a:9f:bf:57:85:28:38:7b:7d:7c:f0:4f:3a:e2:8f:ed:d3:b8:
         40:93:90:96:18:cf:cf:29:c5:6e:ab:d2:50:ba:44:cb:76:95:
         4f:08:bb:65:8c:2c:8f:ba:ea:ba:09:e2:67:18:85:a2:b9:89:
         fd:50:0f:16:fa:37:26:c3:0a:5e:bc:bc:4c:f4:f4:e9:8a:d8:
         e1:1c:bf:b2:a2:dd:69:44:5f:71:d4:a9:50:c2:cf:62:69:6d:
         42:53:02:df:93:a3:42:6f:f3:cb:97:2d:61:8c:f5:6a:56:ea:
         e5:38:fa:72:2e:ee:7a:a5:25:8e:ae:46:34:a6:ae:d0:ff:61:
         03:dd:cf:45:5e:7e:eb:a2:63:94:57:ea:0f:0c:4f:d1:a9:03:
         08:89:fd:05:5b:56:de:6c:54:1f:bf:4d:88:c2:d6:03:84:b3:
         cc:d8:d8:ab:2b:6b:3d:12:b5:1e:45:7f:f8:a7:d1:8f:14:49:
         0d:06:75:e4:d2:8f:f6:21:ac:5e:ca:b5:2e:49:08:81:2b:02:
         49:dd:cc:e4:4c:d8:bc:f7:87:1b:35:81:a8:db:8a:9a:a3:0b:
         67:e6:ff:83:f2:16:61:6e:10:5f:5f:24:c0:fa:81:01:6d:12:
         40:d6:83:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 16:36:05 2025 by rpki-client