Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
File:                     U9qZ-TUY4pqUWwf2ChjvhumznmU.mft (raw, json)
Hash identifier:          iocgrUWmtfT3IWlv+VFDSSejvdml1JlYPU8xD9gQlg4=
Subject key identifier:   10:9E:16:3F:B5:65:DB:6B:0E:2B:1A:B0:F1:B9:21:F5:DB:05:6F:2C
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Certificate issuer:       /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial:       01975C80AF8B01CCABA957AE8E67982E5894
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
Manifest number:          12CA
Signing time:             Wed 11 Jun 2025 01:00:26 +0000
Manifest this update:     Wed 11 Jun 2025 01:00:26 +0000
Manifest next update:     Thu 12 Jun 2025 01:00:26 +0000
Files and hashes:         1: U9qZ-TUY4pqUWwf2ChjvhumznmU.crl (hash: E0hQAUZmO6DBEu1dzZ4+fefDGYKctb6rgHZkdThsnvQ=)
                          2: p1W2xtpypFZeS4V60u-1DjDqTds.roa (hash: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 01:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:80:af:8b:01:cc:ab:a9:57:ae:8e:67:98:2e:58:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
        Validity
            Not Before: Jun 11 01:00:26 2025 GMT
            Not After : Jun 12 01:00:26 2025 GMT
        Subject: CN=109e163fb565db6b0e2b1ab0f1b921f5db056f2c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:1d:6b:76:c1:3e:e2:45:5d:2a:3d:c8:5f:71:
                    44:aa:df:6e:01:56:8a:92:c9:2f:06:6a:2d:09:2f:
                    d5:35:62:6e:f2:03:f7:a3:f3:bb:34:b5:7a:6e:1c:
                    d9:4d:58:c1:1d:c5:b2:9e:d6:6f:85:77:44:a8:2d:
                    ed:b7:3b:5e:66:8b:4f:9f:43:7e:8f:e0:d0:e4:c7:
                    ae:98:38:9d:a3:17:54:06:23:79:b4:ff:12:88:80:
                    0c:77:09:c0:8c:ea:ee:7e:2b:e2:04:4d:47:2a:58:
                    4d:b7:08:de:af:51:01:cd:fa:ed:a3:23:dd:9f:74:
                    4d:b5:51:7c:1a:d1:71:d7:34:08:c2:27:81:24:fb:
                    95:1c:05:a0:d0:3e:55:8d:ce:ce:e0:99:48:0e:9b:
                    1c:cb:3c:8a:d1:ff:df:cf:47:c5:65:d3:28:67:14:
                    8d:66:5f:8f:1f:05:4e:13:7e:bc:63:37:bd:f1:84:
                    a9:b8:55:f6:9c:b0:83:33:4b:de:e4:71:e6:01:41:
                    fb:e9:4e:f5:f9:cd:5d:fb:9f:6c:65:02:b9:ef:8c:
                    e1:08:5f:77:aa:41:a0:ca:fe:31:33:ae:4c:23:e9:
                    9b:14:84:3e:36:81:4c:bb:78:a4:74:2c:97:1c:7f:
                    96:3c:63:5c:db:f1:f6:a0:45:15:e5:31:55:90:d4:
                    d2:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:9E:16:3F:B5:65:DB:6B:0E:2B:1A:B0:F1:B9:21:F5:DB:05:6F:2C
            X509v3 Authority Key Identifier:
                keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:db:14:9f:29:82:f4:ee:f4:1a:c3:a8:7b:a8:ea:1e:ec:d3:
         bd:b2:09:b4:7f:d5:d6:0e:34:bc:30:bd:95:26:92:91:22:73:
         e5:fd:86:f9:a3:91:08:32:6d:41:36:60:12:9f:1f:10:71:ae:
         d4:42:34:2a:76:b6:7e:11:05:64:09:4b:c2:e8:45:fc:6f:da:
         59:11:5c:60:74:a0:ed:27:3c:05:b2:3b:6a:62:62:74:7a:22:
         fa:ad:35:a8:77:94:e7:55:30:c5:2b:65:6d:b3:cf:d3:48:2d:
         49:72:ae:0e:4c:68:ba:2f:ed:9c:98:c7:86:3f:82:a0:fd:3a:
         72:de:e9:7a:36:c9:63:5d:c5:a1:06:c0:3e:ef:bc:b1:5f:a0:
         ca:d8:10:ce:6a:0b:e3:50:9e:91:c3:fa:60:0b:f8:ab:63:d0:
         06:56:b7:a8:38:0f:d1:d6:0f:b4:29:cd:27:28:96:1b:51:50:
         83:e0:b6:1c:05:e0:ed:33:85:2a:9a:1e:bb:ed:ad:c9:3f:e2:
         c6:f6:12:13:72:89:41:20:06:e4:9d:4d:63:d8:51:f5:4a:c5:
         74:b2:58:2a:e4:5e:ea:e2:ff:58:74:47:a6:b0:8b:d8:ec:dc:
         de:3a:d3:39:57:74:ed:5d:b2:f0:1e:2e:43:ff:99:e1:40:89:
         bd:0b:24:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 10:24:02 2025 by rpki-client