Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft
File:                     QTsVW4BGJkf4WUaogk0in-6q--Y.mft (raw, json)
Hash identifier:          XugF1bOQVxBcOROODlqP96+8JdZ0WSoEIWAN82nV0QQ=
Subject key identifier:   10:70:A1:D5:29:31:D0:9C:71:0C:C7:8B:7B:66:84:B1:FE:27:82:96
Authority key identifier: 41:3B:15:5B:80:46:26:47:F8:59:46:A8:82:4D:22:9F:EE:AA:FB:E6
Certificate issuer:       /CN=413b155b80462647f85946a8824d229feeaafbe6
Certificate serial:       019758DB0C78F80DA5F72842B2A9EAC7F7B8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QTsVW4BGJkf4WUaogk0in-6q--Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft
Manifest number:          0106
Signing time:             Tue 10 Jun 2025 08:00:39 +0000
Manifest this update:     Tue 10 Jun 2025 08:00:39 +0000
Manifest next update:     Wed 11 Jun 2025 08:00:39 +0000
Files and hashes:         1: QTsVW4BGJkf4WUaogk0in-6q--Y.crl (hash: 3TkPT9NoEk/pz80ndcmEr52ZoJUqTv/zihXWLAqw9fY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QTsVW4BGJkf4WUaogk0in-6q--Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 08:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:db:0c:78:f8:0d:a5:f7:28:42:b2:a9:ea:c7:f7:b8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=413b155b80462647f85946a8824d229feeaafbe6
        Validity
            Not Before: Jun 10 08:00:39 2025 GMT
            Not After : Jun 11 08:00:39 2025 GMT
        Subject: CN=1070a1d52931d09c710cc78b7b6684b1fe278296
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:e7:e7:2c:6a:93:b5:6a:1b:2e:0d:3d:84:24:
                    a3:bf:d7:77:66:b4:fd:f0:23:9f:ac:26:a1:30:8b:
                    e6:8a:6c:ab:b4:98:c2:f5:f0:92:3b:cd:d1:f7:64:
                    dd:ca:55:20:44:0a:28:b9:82:d8:e2:4b:c0:42:06:
                    e9:2a:c5:b6:5f:99:a0:d7:80:61:2c:65:54:ea:3a:
                    f2:52:ac:85:d2:70:61:73:c4:07:24:2c:68:31:5d:
                    32:7f:54:c3:96:57:2a:7e:98:a1:50:ed:07:3d:dc:
                    73:a3:e4:a0:ce:5f:47:fb:c3:2e:99:fd:40:ff:5e:
                    9b:61:29:7d:a5:0a:a4:21:c5:4d:57:a8:52:92:ab:
                    b0:0f:2a:10:ed:b4:26:35:d4:b1:97:2d:1f:ad:a2:
                    32:08:a3:ab:1a:af:93:5c:2b:e9:c3:57:b9:b6:39:
                    3f:83:d9:dc:0a:01:db:f5:f8:54:e4:af:7a:ee:fb:
                    e4:b6:66:ce:ab:84:17:47:cb:76:35:48:59:69:bb:
                    f5:36:b4:43:74:6f:b4:4e:3a:8c:bb:55:8b:21:b1:
                    73:d8:56:ed:56:9d:98:7e:e6:f2:e1:88:9c:42:23:
                    2f:79:61:e3:b4:9d:df:8f:5f:84:23:67:07:f6:9a:
                    7b:6d:47:26:54:fb:ff:a5:ef:37:29:b9:4f:21:2f:
                    e5:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:70:A1:D5:29:31:D0:9C:71:0C:C7:8B:7B:66:84:B1:FE:27:82:96
            X509v3 Authority Key Identifier:
                keyid:41:3B:15:5B:80:46:26:47:F8:59:46:A8:82:4D:22:9F:EE:AA:FB:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTsVW4BGJkf4WUaogk0in-6q--Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/ed63bf-2b0e-4c9b-98b5-4a251cbec791/1/QTsVW4BGJkf4WUaogk0in-6q--Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:64:46:8a:36:82:bb:e3:d3:9e:bf:1b:c6:d9:9b:a7:b3:6e:
         4f:ac:89:38:e7:f1:19:af:60:2e:d9:27:bf:0e:50:fd:2a:ef:
         6c:6c:9a:3a:2f:e6:05:12:03:ce:d4:d3:4f:07:59:62:7f:b6:
         c7:7d:72:cf:14:8a:8a:c2:57:cc:70:db:6c:73:50:a6:7f:b6:
         2b:6a:fb:e0:90:d1:44:89:e1:d3:be:ab:3c:45:88:f3:f2:12:
         bf:b5:c8:99:3e:08:fa:7b:5d:15:d9:16:40:46:76:c6:d7:e2:
         3a:f9:6a:dd:53:71:9a:d9:47:d8:e6:6f:0d:2f:0f:34:d9:9e:
         d1:28:8e:dd:4a:8b:8f:6d:f3:b6:95:0e:86:e2:4a:dc:0d:ea:
         ae:35:3c:cf:41:78:7d:60:41:60:75:ab:52:5b:b7:27:4c:d1:
         27:e7:f2:11:b2:94:78:4d:30:87:21:61:36:c2:72:b7:84:0c:
         73:07:f3:e1:26:06:02:3f:5c:cf:70:97:ee:c5:09:97:a7:49:
         08:bd:96:25:94:34:b3:12:f7:3a:a3:d6:3c:4f:e7:b3:dc:30:
         6f:eb:55:03:94:a7:39:62:7c:70:7b:14:dc:3a:4c:2a:41:5a:
         74:82:f8:87:21:15:fa:7c:15:31:e7:a6:61:b5:2a:62:74:55:
         72:2c:30:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:57:12 2025 by rpki-client