Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File:                     XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier:          UUqAI3zvYHbWRhTESw2mmRI8g91GgJp0hxhAMIDV3H4=
Subject key identifier:   8E:3F:BA:10:FB:30:A5:DA:AD:6B:21:80:BB:31:35:00:5B:B7:3B:E6
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer:       /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial:       0197567E8324244DB51DCD71F80B6D93629C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number:          1482
Signing time:             Mon 09 Jun 2025 21:00:21 +0000
Manifest this update:     Mon 09 Jun 2025 21:00:21 +0000
Manifest next update:     Tue 10 Jun 2025 21:00:21 +0000
Files and hashes:         1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: Pvrbw0O1EnzdFWTlSjvaV3n5CYTlTcx/mlGOHUTWdQ8=)
                          2: xyAqUo1cBCxwcVbYVeKIYjCComY.roa (hash: 5YKuscwS6gvAjWMFAp+aYRLvaxsng69DrIJ3z9uUMo8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 19:25:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:7e:83:24:24:4d:b5:1d:cd:71:f8:0b:6d:93:62:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
        Validity
            Not Before: Jun  9 21:00:21 2025 GMT
            Not After : Jun 10 21:00:21 2025 GMT
        Subject: CN=8e3fba10fb30a5daad6b2180bb3135005bb73be6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:fb:09:0e:ad:a0:1b:0a:8f:7e:bc:b1:6e:5f:
                    ff:eb:c0:d1:5e:9a:94:1f:08:44:86:cb:3d:4c:21:
                    b1:06:e9:33:bb:d9:3c:b0:a6:8c:b2:0a:00:b7:f1:
                    a6:60:02:09:76:ba:60:73:4e:21:ab:62:c5:3a:2d:
                    5f:22:9e:03:b5:fb:30:54:0b:c2:f5:32:0b:1d:8a:
                    e6:2c:dc:08:cc:1a:d7:2d:8d:58:92:a8:8e:2c:9f:
                    13:20:48:95:eb:c9:6a:06:62:76:63:e8:09:fe:c9:
                    49:c6:fd:20:3e:ff:4a:25:39:67:0c:bf:3c:4a:5c:
                    36:a6:df:d9:70:b3:21:34:ab:15:dc:b5:51:27:38:
                    2a:2e:f0:06:4d:b5:2c:fd:46:37:05:e0:b2:a4:0a:
                    12:62:62:51:41:52:03:1b:71:35:9d:37:bf:d0:72:
                    0a:0e:57:cb:e6:af:2c:55:80:9a:ca:e4:41:5b:c4:
                    89:42:19:9c:c3:16:50:26:83:97:8c:1f:07:35:15:
                    2e:80:4b:a3:79:2a:fe:15:20:ea:6f:a1:28:81:2f:
                    9c:ba:a6:01:35:18:00:8d:74:b5:f6:26:e0:3a:3b:
                    f8:89:e4:38:62:37:ef:c8:7d:7a:e6:bd:13:fc:2c:
                    af:56:13:4c:c8:c7:1f:1d:58:7d:74:1f:6a:88:a0:
                    6d:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:3F:BA:10:FB:30:A5:DA:AD:6B:21:80:BB:31:35:00:5B:B7:3B:E6
            X509v3 Authority Key Identifier:
                keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:3d:0e:89:22:cd:18:c7:7d:bf:1d:16:83:1f:51:68:bf:dc:
         d1:41:aa:97:a2:d6:c6:67:f9:73:43:76:9a:ba:04:b1:ae:10:
         d9:01:68:fc:e5:65:b8:6b:e0:40:bf:5d:a0:0f:6a:3a:e7:46:
         02:13:4d:60:88:92:f0:52:fc:97:5a:10:78:64:3e:87:4e:21:
         91:57:f0:cf:0e:05:f1:9e:ea:30:3f:3b:0d:41:65:24:c5:8f:
         87:0d:5e:dd:9d:be:d0:e7:41:f3:59:e9:3f:55:a9:b2:65:02:
         e8:ab:ac:cd:fc:f8:7e:f5:b4:05:74:a0:ac:8c:0b:16:fd:2a:
         4d:23:12:81:56:70:35:cc:c2:63:42:3c:95:09:60:d5:43:49:
         79:be:af:36:04:5e:c8:d8:cd:bd:eb:61:0d:1c:e1:4e:9f:6d:
         0c:b0:a2:ae:a4:72:2d:99:d8:e8:e9:c4:11:b9:f6:2e:e9:00:
         80:62:92:12:21:ef:b2:c8:46:13:b2:ec:9b:21:09:93:42:19:
         11:2e:1b:65:cc:43:bd:7d:a1:a4:88:c9:6c:a6:59:da:92:37:
         4f:51:3f:f3:69:8a:f3:fa:18:aa:f7:75:0b:a6:ff:3b:67:73:
         68:a4:55:2f:ea:27:9b:3d:07:2d:01:cb:70:01:41:d0:26:59:
         8a:26:87:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 05:29:55 2025 by rpki-client