Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File:                     YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier:          EH7r1oUpNW0yjaeMVpkfNGcaPma6hzUv2+lULLdctMA=
Subject key identifier:   F7:FC:F9:3F:EA:1A:99:C3:41:F8:B6:F1:5A:32:A6:83:2A:86:76:E7
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer:       /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial:       01976282F18EB1433693393CED138B9C35C4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number:          158A
Signing time:             Thu 12 Jun 2025 05:00:38 +0000
Manifest this update:     Thu 12 Jun 2025 05:00:38 +0000
Manifest next update:     Fri 13 Jun 2025 05:00:38 +0000
Files and hashes:         1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
                          2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: Ug4iZuBEXmWdKlAyC3YYWhQmsepXIxrxPnWDL1m/w2w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:82:f1:8e:b1:43:36:93:39:3c:ed:13:8b:9c:35:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
        Validity
            Not Before: Jun 12 05:00:38 2025 GMT
            Not After : Jun 13 05:00:38 2025 GMT
        Subject: CN=f7fcf93fea1a99c341f8b6f15a32a6832a8676e7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:9e:b0:6b:2a:97:df:81:39:a8:67:d5:6b:60:
                    36:03:f8:ab:44:5b:91:b1:9a:7a:ad:d7:59:64:ef:
                    41:2f:b0:2b:24:84:12:f3:39:f3:a2:5f:5d:1a:f8:
                    be:be:4a:5b:1b:b8:e7:8d:1b:ad:17:b9:bd:a8:63:
                    ce:89:67:f2:38:a4:3c:e4:72:69:e9:b6:60:44:e4:
                    1f:03:68:04:31:bf:bc:85:25:eb:e1:b4:2a:90:6d:
                    9f:73:3d:04:83:c1:c8:00:4a:59:99:43:11:d6:54:
                    ac:44:3c:d0:25:97:25:70:69:1b:8e:0f:8a:02:78:
                    8e:91:db:e3:85:ce:ac:93:70:e1:ab:47:26:d2:63:
                    fe:44:d0:11:b2:bc:c9:47:bd:27:a5:49:09:ed:a5:
                    8b:0d:f8:b8:89:17:63:81:2f:5f:91:f1:07:5c:76:
                    e6:c2:99:a6:f7:13:84:ee:93:4c:06:29:05:0f:57:
                    3f:41:97:f6:61:e4:0f:b6:5c:1d:43:84:d2:29:e7:
                    ce:4e:f7:95:5d:d9:3b:1b:fe:e0:e6:dd:c8:f3:c0:
                    85:1e:65:35:6c:60:ac:8f:e1:a9:a9:43:0a:e3:fa:
                    a0:da:71:f1:2c:aa:c0:08:ac:d5:bb:03:3b:d0:75:
                    f4:c7:12:78:0c:a9:a9:8b:f1:12:b9:9e:d5:02:f7:
                    48:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:FC:F9:3F:EA:1A:99:C3:41:F8:B6:F1:5A:32:A6:83:2A:86:76:E7
            X509v3 Authority Key Identifier:
                keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:68:a6:22:6d:d9:2e:79:5d:18:dd:22:52:c3:8b:56:64:3d:
         96:50:b9:6a:7a:4b:c5:75:75:09:b7:ec:dc:50:57:0a:5c:4c:
         28:58:7c:ac:22:af:db:4d:52:3d:96:66:14:ab:81:60:7f:06:
         26:85:83:ad:c9:09:0f:01:c1:e3:a1:f9:e3:a5:a3:88:e1:34:
         3d:1e:25:bb:8f:62:e2:4d:38:98:41:ce:d9:f5:58:be:18:78:
         ca:d8:99:e2:22:80:98:af:05:7f:bc:81:c8:56:ab:be:08:ff:
         1c:0e:cd:16:9b:14:da:c2:ea:76:39:b9:09:51:97:fc:2a:37:
         15:e8:b2:91:cf:a9:1a:a4:d3:8b:8d:81:c4:a0:73:e1:45:98:
         f7:f4:45:df:b1:cc:b8:21:09:97:c1:3c:0e:85:8d:17:81:da:
         7b:b0:4f:3e:09:62:19:68:d4:e3:82:2b:2a:2d:fc:7a:b2:31:
         15:bc:bd:93:b5:4c:80:6f:ee:e3:a3:28:1e:9b:42:c8:68:4d:
         92:26:f9:f4:a7:4d:c9:cc:d7:45:a6:17:7c:b3:a5:6e:31:8b:
         2e:bb:8d:bf:8d:08:cb:f9:df:09:c9:1e:1e:f5:4f:77:a4:fa:
         a2:9b:ab:e3:9b:1b:24:2e:d6:c2:9a:c7:45:6b:82:a1:4a:e8:
         d5:36:07:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 08:34:00 2025 by rpki-client