Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          VBV3iXFKbdP7g/IRz5YpCN/Rv0B80QQPqiTXz12O6rU=
Subject key identifier:   FE:43:16:E5:D3:6E:8A:97:97:3D:19:EC:9F:7D:75:7E:9A:EC:C8:68
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019510FDAAEA4D75AD026D88E6A324A340D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          145A
Signing time:             Sun 16 Feb 2025 23:00:14 +0000
Manifest this update:     Sun 16 Feb 2025 23:00:14 +0000
Manifest next update:     Mon 17 Feb 2025 23:00:14 +0000
Files and hashes:         1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=)
                          2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=)
                          3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: xHpHOcdS3oyIbz+MvXyKqejQpqPU0bseqBMcCIh7JaA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:fd:aa:ea:4d:75:ad:02:6d:88:e6:a3:24:a3:40:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Feb 16 23:00:14 2025 GMT
            Not After : Feb 17 23:00:14 2025 GMT
        Subject: CN=fe4316e5d36e8a97973d19ec9f7d757e9aecc868
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:6d:63:ab:83:72:75:fa:d3:a2:31:be:b5:26:
                    30:4d:da:b5:50:fb:e4:f2:94:29:88:30:5b:55:1a:
                    9c:6c:ba:99:73:b1:93:ef:db:29:1e:e2:fe:21:c1:
                    77:8a:52:82:24:12:84:18:1b:c5:21:78:3c:24:8c:
                    fc:be:70:b3:6c:4a:f3:63:3d:90:7f:b1:e0:7a:d0:
                    d4:b1:87:64:bd:0f:ec:ad:99:09:b0:fb:cb:ea:1c:
                    80:66:92:d3:0c:ed:f8:bb:39:6f:84:a5:39:27:64:
                    82:b1:1b:87:0d:ee:27:c0:15:06:95:d8:4e:63:64:
                    97:4d:42:ac:ca:38:2c:82:52:e1:fa:75:2f:cd:b4:
                    d2:11:d9:bd:d8:b2:57:2c:8e:e8:7d:79:b6:8f:2f:
                    27:28:d5:5d:92:89:01:09:33:72:b2:f7:ef:42:27:
                    9a:92:9c:50:90:31:ae:b3:63:43:16:e8:a5:70:4f:
                    7d:8f:8c:70:e5:b5:b3:20:3f:a9:e4:be:27:cb:97:
                    f2:71:e7:5b:ca:e7:2c:55:d2:e5:ff:05:af:11:7a:
                    c9:de:c1:47:f7:93:13:df:98:71:8f:97:18:4c:b7:
                    d3:d2:30:d6:19:78:ea:8f:a5:92:09:16:b7:83:f0:
                    7c:53:1b:a6:30:7c:e4:36:75:9b:13:9b:23:79:96:
                    bf:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:43:16:E5:D3:6E:8A:97:97:3D:19:EC:9F:7D:75:7E:9A:EC:C8:68
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:be:78:f6:9c:ef:1b:c8:b3:c8:d7:1f:63:30:63:74:01:b9:
         85:32:e1:0c:3d:bd:70:2d:b7:b2:b7:38:74:d3:0e:08:63:27:
         94:9d:6b:e2:7f:5d:c3:67:a2:7a:50:03:8f:8e:73:99:97:7e:
         13:47:52:0c:7a:35:c3:b3:fd:e5:9f:46:05:d6:91:18:36:82:
         c5:22:27:b7:47:71:74:7a:8c:49:d8:53:ac:0a:9d:a1:88:54:
         9f:65:1c:7f:20:a1:58:b8:e5:60:da:81:1e:e6:ca:6a:8a:76:
         8b:6a:ef:3a:05:19:d5:5f:65:d8:d8:9c:00:36:60:fe:13:77:
         a2:a4:0d:53:19:3e:a5:20:94:54:dd:20:a4:b0:3c:6f:58:b4:
         5a:75:83:c9:a8:25:79:1c:c4:5d:3d:d6:fc:4a:06:1e:bb:35:
         52:9d:95:6a:12:b9:11:fd:6a:cd:f8:c3:d3:95:ac:26:25:3e:
         79:6d:17:e2:2d:88:3a:e4:03:09:0d:32:ed:69:27:2d:69:e7:
         95:ec:d0:99:67:6b:89:e1:5e:db:d0:8e:ed:0b:0c:91:d9:f7:
         16:c1:17:14:e3:85:78:b0:d9:50:e7:d2:b4:9e:d7:fe:4f:d7:
         b6:c1:42:03:6f:c1:12:9d:c9:3b:6b:2d:dd:b7:4e:4b:d7:c8:
         69:10:d6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:53 2025 by rpki-client