Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File:                     sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier:          cGeyAk74YMyLOuNqT2kBeWRmYzDidfrvwhFS4rGrbBI=
Subject key identifier:   1B:3D:E1:0C:87:9F:E8:01:6D:AD:BE:B4:80:59:3E:3C:AB:F2:81:5B
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer:       /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial:       019751C60D8F0FBF6FE79BB740B70AD5D7EA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number:          12D2
Signing time:             Sun 08 Jun 2025 23:00:23 +0000
Manifest this update:     Sun 08 Jun 2025 23:00:23 +0000
Manifest next update:     Mon 09 Jun 2025 23:00:23 +0000
Files and hashes:         1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
                          2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: m3rOLq/epWuaQ6kTecU4bIRMWVt6hQL4XQ/WpvaDBcg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 21:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:51:c6:0d:8f:0f:bf:6f:e7:9b:b7:40:b7:0a:d5:d7:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
        Validity
            Not Before: Jun  8 23:00:23 2025 GMT
            Not After : Jun  9 23:00:23 2025 GMT
        Subject: CN=1b3de10c879fe8016dadbeb480593e3cabf2815b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:61:0b:1d:0f:05:4f:d2:0c:0d:d8:77:b1:e7:
                    85:e1:36:c9:c7:d5:42:27:ab:fb:46:19:e9:fb:7d:
                    42:d6:ff:d6:19:77:b8:64:5b:ec:de:86:b4:5e:ca:
                    34:5a:9d:96:ec:ed:46:47:1f:fb:91:a6:f5:96:65:
                    d2:b1:23:2a:b7:0b:d0:0c:21:c3:fa:cb:47:1e:7a:
                    3c:ce:59:50:df:72:39:eb:a4:6d:a8:f7:f5:3e:41:
                    01:3c:7b:4f:b3:8f:43:0f:7b:6c:af:77:09:87:e7:
                    5c:76:1b:e0:1f:a2:c8:2c:62:ce:78:34:67:b5:e9:
                    02:4e:60:47:25:c1:82:2f:2f:f1:1d:ef:30:c3:39:
                    7d:64:74:b2:68:8f:aa:38:96:84:9f:11:98:25:f4:
                    d8:00:94:f3:93:52:61:79:2c:34:2e:37:7b:eb:3d:
                    c7:ad:fb:d0:5b:00:1b:56:fb:1a:23:e0:db:a6:4b:
                    25:0e:a3:50:9d:b2:92:10:51:ff:3f:58:25:5b:e9:
                    eb:c6:ad:a5:8c:14:68:0f:a7:ad:d8:c8:ed:ef:89:
                    bd:28:fb:0d:c0:36:95:73:f1:26:a3:16:ef:46:fa:
                    2a:fe:16:a4:b7:8d:e0:4e:f5:5c:c6:ca:e5:e3:51:
                    4f:ae:cb:24:ef:3a:02:bf:47:9c:03:8b:29:69:3f:
                    f2:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:3D:E1:0C:87:9F:E8:01:6D:AD:BE:B4:80:59:3E:3C:AB:F2:81:5B
            X509v3 Authority Key Identifier:
                keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:d5:99:c5:8c:c1:2e:14:70:6c:8a:2f:07:49:9a:1c:46:dc:
         01:a4:71:3b:72:7b:77:3f:09:ee:c1:1b:7f:1f:59:56:3c:5e:
         ac:1d:bb:88:c1:43:88:45:33:6c:54:80:28:5c:08:be:e8:dd:
         1c:b3:2e:17:90:15:02:3d:b5:53:fe:c1:20:61:52:53:96:7f:
         32:87:28:fa:63:d7:4c:a5:3b:74:51:8b:d4:23:ef:f6:ea:db:
         22:5f:82:f9:d2:3d:b8:20:13:b6:63:68:27:28:78:72:98:e1:
         c3:a9:9a:51:9b:86:26:ec:76:73:42:01:a5:7f:3e:fa:46:79:
         56:98:87:5d:32:c6:6e:5a:bb:d0:4c:80:a5:ee:0e:5c:23:35:
         32:79:d2:28:b1:88:ca:8b:40:89:26:35:1b:78:ea:c0:44:c0:
         b2:d6:d7:87:65:4e:fa:fa:c4:c5:7c:ba:0b:9f:ca:79:b1:1f:
         a3:79:5b:51:ff:a6:cc:ea:c6:0f:1e:0a:27:7b:5b:7f:22:9e:
         79:8c:75:a7:a9:69:ce:dc:57:46:40:55:03:fd:e3:55:fb:9e:
         73:50:fe:c2:32:90:5d:6c:3d:82:fc:5a:9f:10:57:07:ab:80:
         34:9a:3e:d3:4e:b9:47:8a:6b:92:40:df:65:5d:d8:47:34:62:
         ca:11:6c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:08:41 2025 by rpki-client