Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File:                     kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier:          Ya8mxS3A7UNBJkKNEAB68oLZCimDYzN/lM+Qq2tiT/8=
Subject key identifier:   3D:A4:08:73:B3:FE:B1:D7:36:6C:8C:70:E6:8B:DA:11:B1:36:D8:12
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer:       /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial:       019759127D89BA33C923C97BEE2F83D59892
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number:          071E
Signing time:             Tue 10 Jun 2025 09:01:13 +0000
Manifest this update:     Tue 10 Jun 2025 09:01:13 +0000
Manifest next update:     Wed 11 Jun 2025 09:01:13 +0000
Files and hashes:         1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: 9QmPsUYFViOfGSdkGliiJqq8CzxEC98wE1EiFb8U9lo=)
                          2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:7d:89:ba:33:c9:23:c9:7b:ee:2f:83:d5:98:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
        Validity
            Not Before: Jun 10 09:01:13 2025 GMT
            Not After : Jun 11 09:01:13 2025 GMT
        Subject: CN=3da40873b3feb1d7366c8c70e68bda11b136d812
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:a4:0b:4a:6d:1c:9d:35:f7:6c:3d:36:0d:08:
                    2e:cf:3f:93:d4:5f:c2:df:dc:d6:d9:e0:8c:ca:32:
                    a9:39:55:2c:b9:ca:1b:77:ca:4d:08:a0:c0:e8:fc:
                    dc:cd:ab:ce:4d:00:7e:72:1a:2b:83:10:71:20:75:
                    9d:01:8f:45:f0:d0:6a:49:45:5d:2b:e4:b7:c9:1d:
                    2a:64:2a:09:1e:93:fe:5f:de:cd:a6:b1:92:24:d4:
                    0c:20:05:f5:db:d1:1c:e1:3b:0d:bc:f8:f0:51:f1:
                    fe:81:66:13:73:a7:32:d1:7c:61:cd:a5:e6:cc:a6:
                    45:cb:77:b3:26:b8:18:3c:70:d7:6e:12:68:75:fc:
                    7d:d7:4d:eb:58:a1:62:37:8d:8d:d3:8f:ec:c1:90:
                    3f:f1:14:20:74:25:a9:3b:68:12:34:73:a8:25:73:
                    55:0a:e8:8b:c9:35:51:85:04:f7:4f:bf:02:18:7b:
                    46:b9:d1:e6:ff:8c:ab:b5:23:9d:9e:d9:db:68:d9:
                    b7:0c:10:e6:68:4d:d0:04:29:f0:bb:bc:10:eb:d5:
                    3d:cd:db:ae:94:ea:08:fa:cd:8c:f1:07:3c:87:ca:
                    96:d7:53:0f:75:ef:04:fd:25:8e:06:7a:24:34:38:
                    ab:7c:ad:1d:7d:d2:e3:d9:2d:50:c7:8f:91:9a:d4:
                    b3:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:A4:08:73:B3:FE:B1:D7:36:6C:8C:70:E6:8B:DA:11:B1:36:D8:12
            X509v3 Authority Key Identifier:
                keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:3f:4b:5d:62:64:72:78:b5:e1:3b:fa:33:15:2a:3d:0f:81:
         86:b5:8c:fe:2d:9f:2e:8c:81:9a:52:c6:5c:57:c0:fd:99:42:
         59:e2:36:32:00:39:9f:27:05:20:d5:0a:e4:61:27:fb:15:10:
         45:bc:73:30:fd:44:ad:45:7e:5b:be:d3:f9:3b:9e:9a:c2:b4:
         dc:59:9d:09:6c:c6:a3:85:fc:85:75:b6:73:d7:25:6d:a8:10:
         a9:4e:cd:6a:48:d1:3e:d1:4e:fa:93:23:f5:3d:2a:21:2d:9b:
         58:65:2e:9c:9c:21:9a:72:ff:de:eb:4d:32:5d:65:55:d9:18:
         1b:b9:77:1a:d4:b5:14:52:13:24:82:bc:4e:f1:ab:4a:0c:0b:
         98:47:46:ed:cd:73:b4:2b:35:1b:ba:cc:38:ca:3a:89:f8:15:
         6f:ea:88:19:4b:50:da:f1:21:25:d9:1f:a7:b7:ca:77:28:3f:
         65:99:02:60:cd:a2:f2:e3:e2:52:53:95:36:92:ef:aa:0e:d4:
         2c:62:6f:bf:7f:4a:20:49:97:e8:10:ca:43:d5:43:e4:83:94:
         90:dd:6d:32:8f:c1:d0:fb:84:71:fb:03:d3:09:86:27:93:9e:
         59:d2:a5:08:a9:d4:c6:69:0d:4e:36:83:e4:e5:d1:f1:94:59:
         8c:2f:e9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:32:34 2025 by rpki-client