Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File:                     I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier:          yFbWc06uTKuOvOBxafFxChcoAVJK0+Iu0p2s830Scls=
Subject key identifier:   01:62:89:F8:C0:65:09:15:79:05:6D:C8:46:4A:55:90:25:33:34:A0
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer:       /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial:       019752A22A59AF304F94C90D808BC3A79CB1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number:          0BFC
Signing time:             Mon 09 Jun 2025 03:00:48 +0000
Manifest this update:     Mon 09 Jun 2025 03:00:48 +0000
Manifest next update:     Tue 10 Jun 2025 03:00:48 +0000
Files and hashes:         1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
                          2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: pcJCNSnycuqs3ajzUNGytikBJ0+3H4VFGD6vT1A3nlo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:a2:2a:59:af:30:4f:94:c9:0d:80:8b:c3:a7:9c:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
        Validity
            Not Before: Jun  9 03:00:48 2025 GMT
            Not After : Jun 10 03:00:48 2025 GMT
        Subject: CN=016289f8c065091579056dc8464a5590253334a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:cd:98:66:23:33:18:d3:9d:5e:45:0f:98:31:
                    f1:89:9f:31:ee:a9:5a:34:dd:70:4a:ae:13:c5:dc:
                    66:d1:ac:f0:2d:5d:1a:2d:32:14:4e:b8:f4:57:f5:
                    14:d9:f8:f2:96:29:0a:67:e1:c1:a0:97:fc:1a:45:
                    80:f4:af:cc:5a:1c:0f:97:30:9d:13:06:9f:3c:da:
                    74:e1:98:f8:74:fb:71:4d:23:ae:31:98:3a:70:81:
                    a3:97:29:59:06:c0:ab:82:ee:51:17:28:56:94:35:
                    ed:72:11:c5:47:e5:99:a3:2d:16:36:71:e2:d2:24:
                    51:40:7e:a5:84:d4:69:5e:1f:d6:bf:fd:3a:47:2c:
                    91:53:5d:db:2b:2c:9a:51:21:fb:c4:c4:3b:31:25:
                    cb:a2:73:fd:97:48:f2:bc:12:79:f8:9c:04:0b:a5:
                    04:b5:20:37:6a:ee:ee:15:de:fa:a1:01:34:19:da:
                    5d:e2:ce:59:a0:f5:88:4f:84:a4:75:e1:6d:e7:df:
                    34:1e:c7:5d:2b:08:b1:79:a5:09:8d:1f:5f:53:74:
                    29:55:17:16:b8:ba:95:f2:ad:41:92:08:04:61:a9:
                    a1:e5:39:09:e0:c7:88:a9:f3:6b:e8:d8:4f:81:fc:
                    10:8e:fa:f4:b1:88:76:d3:61:40:47:10:78:0a:90:
                    23:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:62:89:F8:C0:65:09:15:79:05:6D:C8:46:4A:55:90:25:33:34:A0
            X509v3 Authority Key Identifier:
                keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:52:16:54:e2:ee:ec:8d:40:3a:bf:90:95:5c:34:69:6f:a8:
         97:d5:ba:4e:6f:61:04:6f:2a:16:13:33:15:de:53:3d:de:74:
         7d:9f:11:4a:31:02:9f:ea:12:42:16:02:1b:4f:d7:5b:72:10:
         c1:ee:5b:be:df:81:b8:ef:49:62:23:29:27:f6:a8:04:53:ab:
         16:7a:ae:36:69:4a:4b:d4:f2:5b:4f:f7:87:a7:a7:b9:d7:01:
         5f:b8:d3:ca:b9:ea:b7:cb:bc:60:1a:9a:e1:12:33:b7:33:9d:
         c2:dd:00:05:d2:d4:3b:4f:40:e8:e4:be:d9:26:3d:af:5e:a6:
         04:6a:f7:43:56:2c:1a:0a:a5:70:a1:69:f7:2a:c7:a8:e6:07:
         cf:59:6a:96:20:37:c9:71:47:5b:0f:d6:0d:39:3a:11:79:a9:
         d6:ff:60:15:44:ef:89:30:a9:83:3c:b6:42:9f:c8:68:81:cc:
         52:5f:79:b9:8c:85:b0:2b:e6:d9:22:c4:51:af:bc:dc:d0:ab:
         da:a3:b6:84:c7:8e:35:89:f7:79:26:27:3d:0f:1f:af:e5:37:
         85:86:3b:8d:37:59:d7:9e:91:f5:0c:a5:46:92:e5:47:a6:25:
         3e:66:23:55:88:41:66:f9:f6:a0:0f:90:7d:51:ca:dc:55:4e:
         50:51:a8:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:09:28 2025 by rpki-client