Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File:                     aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier:          lb4fl8SHEOVl9pkpoQZG0Mnj8pMOnqAFCdST29VGfjQ=
Subject key identifier:   4E:78:F1:2F:F9:02:5C:3A:09:7E:A7:5E:86:E3:70:15:11:84:DB:FC
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer:       /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial:       019756B5CEA47AD216C4450C0CCB4C0D6C1F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number:          05BC
Signing time:             Mon 09 Jun 2025 22:00:44 +0000
Manifest this update:     Mon 09 Jun 2025 22:00:44 +0000
Manifest next update:     Tue 10 Jun 2025 22:00:44 +0000
Files and hashes:         1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
                          2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: M7U3lnzDspYs4bVZElLBW4LyLMTR+9oobbrenS2BBTE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 19:25:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:b5:ce:a4:7a:d2:16:c4:45:0c:0c:cb:4c:0d:6c:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
        Validity
            Not Before: Jun  9 22:00:44 2025 GMT
            Not After : Jun 10 22:00:44 2025 GMT
        Subject: CN=4e78f12ff9025c3a097ea75e86e370151184dbfc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:81:71:d3:fd:22:2a:4f:82:7e:8f:e3:d4:ca:
                    ae:a7:55:26:3f:71:04:0d:a5:9b:b3:e0:5d:8b:fb:
                    b6:a0:fc:b0:03:74:6d:47:73:5b:8f:8e:8c:b0:27:
                    0d:e4:fa:cc:30:ae:31:0f:e1:10:ad:43:99:a1:2b:
                    55:a3:83:a9:e4:40:61:15:60:38:7c:19:49:54:5e:
                    6f:9b:95:be:43:5e:19:3f:08:06:b5:89:63:7d:4c:
                    7e:9a:de:40:40:db:4a:ce:fb:66:b8:7e:64:59:87:
                    c4:ed:6b:14:81:19:17:b2:c2:ee:00:24:83:b0:82:
                    a5:66:05:bb:38:59:df:5c:9c:c7:ba:4c:06:55:e2:
                    27:c2:7f:de:41:d9:0d:15:3f:a5:d8:91:89:df:cb:
                    cd:89:48:b7:5e:da:d1:d0:16:9a:1e:a6:ad:db:47:
                    1d:5e:2f:52:1a:61:e9:60:43:1c:35:d6:e1:0f:4a:
                    03:3c:88:f7:cd:bc:54:74:7a:8a:b0:12:d1:ea:20:
                    2a:f2:d7:c4:bf:44:d4:d9:01:eb:1e:42:3f:7d:8b:
                    60:6b:12:bc:2f:05:a4:c3:86:cf:f5:a4:bc:6a:18:
                    3e:ef:7f:75:6f:26:79:01:87:a3:0b:f3:ad:a1:49:
                    8d:11:c1:67:9c:dd:15:1d:64:22:f1:b1:e5:58:15:
                    c8:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:78:F1:2F:F9:02:5C:3A:09:7E:A7:5E:86:E3:70:15:11:84:DB:FC
            X509v3 Authority Key Identifier:
                keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:55:39:05:d7:ff:ee:8f:37:ba:14:ab:5e:16:d3:72:8a:ba:
         19:08:ce:61:0b:38:f2:5a:52:1b:4f:e9:50:32:dc:95:36:b2:
         e8:9b:a5:35:f1:e5:cc:db:b4:7c:1c:cf:de:34:cb:4d:05:5e:
         f6:ba:cd:df:57:4f:2e:a0:91:df:6a:e9:3a:27:fc:35:49:be:
         5c:52:4d:d4:a9:a0:73:0f:83:4b:89:9a:86:90:2c:0a:45:45:
         79:49:47:77:42:30:4b:43:fd:dc:2e:a4:78:da:ff:c7:e9:56:
         eb:b4:86:53:56:67:a2:30:46:40:70:49:d8:db:d8:b1:1a:10:
         5b:47:b9:3b:17:03:f8:56:c7:5f:0b:7e:ab:c4:da:d6:a8:13:
         1b:c5:36:52:4e:3b:45:d8:05:85:f4:81:61:df:41:a3:05:4b:
         1b:65:26:8d:39:f3:09:97:24:ac:f7:9f:d9:c8:a2:81:4b:fe:
         2b:1a:a7:62:c5:62:b0:5e:8f:50:5d:9f:ed:48:b4:87:3c:03:
         fc:e1:92:da:fb:bd:7f:8b:0b:db:39:f1:a6:5f:1c:d9:d8:c8:
         93:b6:7e:63:29:ea:a4:71:fa:36:d1:66:af:f1:f4:26:51:c2:
         42:51:7a:42:26:2c:d2:ab:dd:9b:16:c0:dc:20:ce:81:92:06:
         03:fc:43:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 03:37:18 2025 by rpki-client