Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File:                     XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier:          nAxg8MiLv0yqTQQZrLcnpsrJ8E5gjGUcVf2p8ZNGtKU=
Subject key identifier:   58:EA:30:23:0B:35:05:50:50:BA:DE:68:B8:D8:F4:FB:15:75:2F:9F
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer:       /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial:       01975422ED5CCB38FBE31FFDCFF44238E4DE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number:          1584
Signing time:             Mon 09 Jun 2025 10:01:04 +0000
Manifest this update:     Mon 09 Jun 2025 10:01:04 +0000
Manifest next update:     Tue 10 Jun 2025 10:01:04 +0000
Files and hashes:         1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
                          2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
                          3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
                          4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
                          5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: t0O4+1WPSMAh9manwCjun4rneulenO0fNhHHs3aN21U=)
                          6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:22:ed:5c:cb:38:fb:e3:1f:fd:cf:f4:42:38:e4:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
        Validity
            Not Before: Jun  9 10:01:04 2025 GMT
            Not After : Jun 10 10:01:04 2025 GMT
        Subject: CN=58ea30230b35055050bade68b8d8f4fb15752f9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:77:dd:7f:3a:96:40:6d:d1:d2:8d:87:fe:75:
                    24:0f:c7:c1:3f:10:34:b4:c5:53:f2:c3:2c:9a:cd:
                    83:53:37:f1:8a:79:ca:aa:e2:00:85:c0:92:08:56:
                    6c:00:8c:96:77:1e:0a:34:1d:33:eb:6c:44:93:e7:
                    0e:44:c0:7d:d3:f2:60:44:09:91:d0:bc:43:e9:a5:
                    4f:88:7c:a0:50:11:9e:e1:49:94:f2:fd:8e:95:16:
                    17:ee:a0:e2:ae:bb:2f:93:36:29:bd:b5:60:73:0a:
                    59:52:46:7f:a9:a3:9d:82:08:52:f1:33:3e:e7:08:
                    77:49:aa:6d:6f:28:c5:17:77:fe:5e:7f:34:23:ea:
                    20:04:58:4b:12:44:49:b6:02:55:bc:37:f4:b3:8c:
                    11:45:d1:80:a5:c7:58:2a:c7:79:3c:e2:6b:38:c4:
                    0f:9a:34:84:9b:38:2d:d4:f2:a5:19:f5:d5:0f:ae:
                    7b:ed:3d:5d:39:49:3f:e0:7c:03:c0:2b:24:dc:ee:
                    69:a9:cb:dc:1c:62:35:a0:2a:46:d2:a3:4d:67:e7:
                    4a:38:ae:40:ba:e0:5b:5e:07:70:72:3a:e2:1b:63:
                    3c:9c:3b:c6:58:85:c8:59:ee:68:a1:57:38:76:0e:
                    98:d3:a6:71:a5:79:93:84:3a:3f:3e:07:46:55:fe:
                    72:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:EA:30:23:0B:35:05:50:50:BA:DE:68:B8:D8:F4:FB:15:75:2F:9F
            X509v3 Authority Key Identifier:
                keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:01:7b:2a:32:b2:d1:d2:2a:99:3a:5c:c5:5f:35:cd:54:28:
         eb:ff:1c:6c:3c:dc:76:1b:7f:83:a2:ac:f7:7c:8e:ad:13:77:
         1c:b9:bb:b1:b2:21:75:c3:c6:e0:53:85:bc:d2:01:46:e6:52:
         e7:a0:f0:d4:64:e0:b5:10:b1:0d:a5:b2:11:1f:5c:7e:03:a4:
         7e:65:4e:d9:88:af:3e:26:6b:47:47:b6:2a:82:7c:80:bb:9f:
         62:64:37:df:b1:de:bb:da:0d:9e:6e:9a:90:0a:8e:6e:da:be:
         ec:b7:27:be:3a:b1:57:76:b7:07:9b:f1:3e:f9:15:e6:f0:dc:
         4d:9b:5e:3c:33:7f:0c:ef:b7:1f:0b:92:58:57:3c:c9:7d:86:
         6d:d8:be:f2:65:e3:94:eb:01:8d:01:2e:e2:61:2a:a0:75:cb:
         f6:20:05:7e:9b:4e:9d:21:d8:65:bb:d2:0b:2b:72:2e:e9:23:
         3e:f5:b4:33:79:1f:7b:98:2f:1d:6f:c8:0a:63:7d:d3:84:73:
         11:36:8e:0f:74:21:38:7b:8d:d6:bf:73:a8:d7:b7:84:6a:7f:
         1d:41:42:10:7a:93:a5:82:8f:b9:81:87:b6:e8:48:b2:ee:02:
         42:5b:e1:ce:bc:3f:28:45:9e:0e:4e:4b:fa:46:0d:5b:7e:82:
         76:fd:73:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:44:03 2025 by rpki-client