Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File:                     VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier:          sfK70L8doH/iCxGwYbswB2+HTiY+t+cKO+T23NOMJtg=
Subject key identifier:   78:86:36:A3:50:73:67:9F:54:E8:BB:73:1D:4F:10:B2:DB:44:C4:E2
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer:       /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial:       019758A40D14A0971B91B8F3E2A5660A86E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number:          08A6
Signing time:             Tue 10 Jun 2025 07:00:35 +0000
Manifest this update:     Tue 10 Jun 2025 07:00:35 +0000
Manifest next update:     Wed 11 Jun 2025 07:00:35 +0000
Files and hashes:         1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: ZZxzdqfG5OKEQXXbQQpVyl6HzgQnLkNrHiZgppk3Z2g=)
                          2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 07:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:a4:0d:14:a0:97:1b:91:b8:f3:e2:a5:66:0a:86:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
        Validity
            Not Before: Jun 10 07:00:35 2025 GMT
            Not After : Jun 11 07:00:35 2025 GMT
        Subject: CN=788636a35073679f54e8bb731d4f10b2db44c4e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:fd:f1:fe:77:cf:da:a1:a4:71:21:91:47:36:
                    0d:b3:41:14:3f:36:b2:1f:9d:a2:94:a4:02:1a:4c:
                    9c:ba:d6:e4:11:bd:63:13:75:aa:65:91:e8:6b:b3:
                    05:67:99:ed:2a:75:c2:9a:8f:ef:b7:17:5c:ea:7e:
                    ab:a0:a2:05:21:6c:24:d7:ab:6c:eb:c8:74:34:79:
                    40:2f:af:13:9d:d9:fc:f4:25:09:c4:10:2e:a3:98:
                    ea:29:20:00:3e:ca:b0:a1:7e:52:ef:e7:e4:f7:3f:
                    e9:f2:d8:51:a4:77:37:9b:ec:db:af:a0:fe:a8:e5:
                    ea:b6:bf:44:d2:0d:9a:43:88:6d:1d:57:c4:0a:76:
                    fb:f9:8a:3f:38:c0:0f:4c:06:4e:0c:d6:af:bc:7a:
                    f9:c2:ce:e2:8b:79:ae:6d:9d:d6:68:af:41:f0:a4:
                    49:3d:10:c1:12:bb:2d:b5:cd:28:1a:af:7e:f2:5c:
                    91:e7:a6:cf:c3:d1:be:b5:fa:48:1b:a6:44:e3:b8:
                    d7:c2:7f:a1:25:94:80:26:83:f1:96:89:0f:54:4a:
                    7b:69:29:ed:5b:ee:ac:71:65:41:07:b4:8f:38:53:
                    52:77:5e:29:84:91:5d:9d:3a:f3:4c:43:15:04:17:
                    ed:46:1a:de:5b:f8:9b:f1:79:25:18:88:17:40:a6:
                    5f:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:86:36:A3:50:73:67:9F:54:E8:BB:73:1D:4F:10:B2:DB:44:C4:E2
            X509v3 Authority Key Identifier:
                keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:90:c2:71:9b:ff:42:f4:58:ff:ff:25:e3:9c:ca:46:84:fd:
         c3:2a:a7:98:05:f1:b8:95:b1:59:27:c2:66:bd:ab:59:79:2d:
         54:1b:22:b7:2a:4e:e7:ff:df:1a:42:1c:4b:3b:47:47:46:01:
         b8:57:c8:96:ea:74:a4:ee:65:1b:3f:ed:09:13:7c:a3:2a:7d:
         06:86:60:e8:a0:cf:fe:d2:dd:8a:f0:31:22:ca:97:89:0b:a4:
         16:32:70:51:a2:a8:62:38:9c:50:73:5f:98:29:19:8a:c8:8e:
         d6:8d:03:08:bc:d7:2d:56:85:b0:eb:87:34:b7:2c:15:f7:f3:
         94:74:26:6d:65:8c:b3:78:0a:2e:f7:cd:74:19:6a:f5:58:6f:
         d2:86:09:3a:23:b3:44:d5:70:e6:54:b8:c2:b7:54:02:69:2c:
         15:03:da:66:d4:ac:ce:c4:a1:81:fe:92:c2:70:a3:00:e4:60:
         89:a1:44:d3:9f:a4:cd:2a:fc:88:65:cc:74:c6:34:93:25:53:
         e1:f3:5a:53:a9:4a:8f:e1:c6:16:d8:43:60:ae:24:1e:a4:3c:
         f4:e4:57:b3:d4:40:68:5b:36:4e:c0:5f:9c:aa:61:40:95:9f:
         82:ac:8d:05:28:5e:91:a8:b5:4e:ff:fa:8f:60:8c:73:0e:81:
         ff:5a:27:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:13:05 2025 by rpki-client