Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File:                     bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier:          9OBmP5uJQL+7apj5C2RQuAjRdUbbp8j+/V+C6t+pJCU=
Subject key identifier:   F3:96:84:2D:87:E8:6C:11:18:3D:34:78:FB:23:1D:71:DC:DB:09:A5
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer:       /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial:       01975D93632509656EA485C8E81DF480E7EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number:          12F2
Signing time:             Wed 11 Jun 2025 06:00:29 +0000
Manifest this update:     Wed 11 Jun 2025 06:00:29 +0000
Manifest next update:     Thu 12 Jun 2025 06:00:29 +0000
Files and hashes:         1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
                          2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: V3OXp9qZp1EoTqpVOFOp7HEknzYKI1dUZrsuBfcZGGE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 23:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:93:63:25:09:65:6e:a4:85:c8:e8:1d:f4:80:e7:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
        Validity
            Not Before: Jun 11 06:00:29 2025 GMT
            Not After : Jun 12 06:00:29 2025 GMT
        Subject: CN=f396842d87e86c11183d3478fb231d71dcdb09a5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:75:f9:3b:d1:e0:b3:2d:bf:04:38:2f:51:66:
                    0f:a3:d0:92:5f:05:73:e6:bb:f2:bd:ea:47:54:f2:
                    0c:11:3e:a8:3f:c6:73:75:63:27:c1:50:31:70:90:
                    31:58:ac:a3:a5:78:54:4e:2a:f3:69:8b:2c:fd:15:
                    60:3c:a1:cf:9e:77:56:3b:e6:bf:01:47:33:f2:11:
                    a9:fe:c4:a2:f4:9d:61:c9:5d:2e:45:c6:d7:3a:bd:
                    10:79:ce:b4:c9:10:d7:8c:a2:da:9f:48:5e:c0:a0:
                    73:72:79:8c:95:35:b0:e7:d9:32:2b:ea:60:76:f5:
                    c3:e8:6f:8b:82:71:df:25:e8:86:20:f4:df:13:85:
                    0a:f7:e0:3e:a4:e7:72:6c:81:73:69:5f:4b:b5:59:
                    a0:4d:8c:bd:08:de:e3:39:60:60:e6:ab:0c:c3:95:
                    4f:6f:95:cb:0c:bf:9d:89:45:58:3a:2f:6c:d2:c3:
                    02:e6:65:5c:a8:46:41:4d:da:1e:35:3c:f8:78:f9:
                    00:a1:ae:54:22:5f:a0:1e:d6:e8:85:95:e4:bc:10:
                    f8:3f:5b:43:02:e6:7e:20:f7:06:29:51:01:6f:d6:
                    a7:f9:c4:f2:c8:dc:ae:fb:06:33:bc:49:b0:49:a5:
                    9b:7e:b2:3a:35:b8:80:f6:43:d6:44:bd:4e:fe:e9:
                    f2:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:96:84:2D:87:E8:6C:11:18:3D:34:78:FB:23:1D:71:DC:DB:09:A5
            X509v3 Authority Key Identifier:
                keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:98:fd:6b:4b:1a:74:5a:f7:64:13:a5:ce:30:31:d5:c8:c8:
         f4:bd:42:ea:df:28:28:65:45:e1:4a:ce:43:46:a5:1e:4c:96:
         8f:e9:c3:c6:e9:b6:8d:4a:de:ba:c3:9e:23:44:ab:31:c0:3c:
         4b:e2:73:ba:d5:7a:61:68:50:57:cc:15:ec:fe:2e:1e:49:95:
         8f:02:71:09:3a:f1:4c:ce:3e:0f:b5:96:c7:28:a7:3e:f2:ed:
         55:38:da:10:be:08:81:9b:c2:12:ad:8d:24:e2:a9:77:d4:d6:
         93:9d:e7:02:ac:e5:d1:20:5f:71:dd:67:91:31:b6:e1:9a:fc:
         c4:32:29:67:f3:bf:1b:76:d7:03:66:d5:db:c0:d8:30:b4:2d:
         49:65:31:cb:4e:ba:20:f5:86:60:ae:61:8a:86:15:f0:83:18:
         eb:73:53:0a:6f:46:7e:7d:0c:ca:cf:60:e0:11:6a:e8:13:20:
         4c:14:c7:77:01:a5:c1:71:46:26:3f:6f:1d:17:21:64:68:f4:
         c9:11:e2:00:51:53:50:4f:d1:30:93:e7:4f:b0:dd:2a:01:8f:
         f3:af:d8:ba:c9:c0:bd:d4:82:5b:28:f2:d9:15:d4:45:b5:79:
         a7:b2:9d:55:2d:c9:ad:b0:d3:31:e6:5f:3e:04:8b:2b:25:81:
         f2:2f:48:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 08:45:37 2025 by rpki-client