Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File:                     Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier:          W7vPN1j2VL6B9RY/VdEnn7Af5d1pM1/GCkK5aj4vXsE=
Subject key identifier:   CE:77:7F:5D:94:55:84:D4:2F:56:EF:BE:CB:27:37:12:24:AA:A2:15
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer:       /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial:       019764711A9D02607C5C7247A859EDA075B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number:          13D9
Signing time:             Thu 12 Jun 2025 14:00:23 +0000
Manifest this update:     Thu 12 Jun 2025 14:00:23 +0000
Manifest next update:     Fri 13 Jun 2025 14:00:23 +0000
Files and hashes:         1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
                          2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
                          3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
                          4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
                          5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: J/UIGtU+Tsifb9JEdM3TGOWX04euKsgGDsPX4fjvj7U=)
                          6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
                          7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:71:1a:9d:02:60:7c:5c:72:47:a8:59:ed:a0:75:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
        Validity
            Not Before: Jun 12 14:00:23 2025 GMT
            Not After : Jun 13 14:00:23 2025 GMT
        Subject: CN=ce777f5d945584d42f56efbecb27371224aaa215
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:c8:39:d7:bf:2e:97:e4:ef:31:e9:ab:7f:e5:
                    bc:98:59:16:9d:29:4e:97:38:13:b8:6e:b0:5c:3a:
                    70:be:55:5c:8d:c9:56:85:68:70:fe:33:1c:82:66:
                    77:8a:b6:ad:65:08:f1:da:4c:4a:bc:8d:a9:30:f0:
                    b4:d1:31:16:1d:b7:01:c2:58:47:47:e5:f6:ef:c8:
                    90:3c:24:60:83:a7:c1:60:97:d6:d1:47:ef:a5:f5:
                    a6:e9:16:aa:3a:15:d2:94:ba:7d:9b:f3:46:a3:45:
                    9e:51:f1:e5:ad:51:2b:84:25:ee:eb:cb:d8:5f:5a:
                    6c:8c:a2:09:9b:2f:1f:70:8e:41:64:4f:d7:a7:81:
                    3f:72:b6:5c:f4:5b:24:7b:c8:f1:57:9f:cc:65:a4:
                    bf:0f:94:80:5c:df:4a:76:a8:e5:f1:63:2c:fa:99:
                    37:17:bd:eb:e4:84:4e:44:96:04:fe:c2:01:50:c8:
                    8a:45:cf:e1:d1:45:b0:48:0c:df:10:3d:3c:8b:71:
                    73:57:99:89:99:81:3b:f2:3f:75:73:c1:94:95:73:
                    9e:7b:3b:7f:75:34:d0:cf:4e:62:99:e4:58:6d:fa:
                    87:11:e9:20:84:a0:1d:79:c3:08:40:54:f0:f2:ea:
                    35:b6:8d:ec:75:87:03:b1:08:f4:81:51:5d:08:55:
                    4b:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:77:7F:5D:94:55:84:D4:2F:56:EF:BE:CB:27:37:12:24:AA:A2:15
            X509v3 Authority Key Identifier:
                keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:72:87:2f:81:10:d5:93:7a:ff:94:79:69:13:1b:25:98:f0:
         86:ce:9a:15:e9:2b:36:5d:2a:80:93:3c:2a:9b:9d:69:50:b7:
         01:c4:22:ed:6c:eb:57:04:85:07:70:74:34:92:35:6b:bf:25:
         a8:d0:79:29:10:74:09:bb:48:52:0a:cd:92:b3:55:72:30:6f:
         37:f8:f8:7c:6b:19:da:63:1b:3b:51:6e:9e:1f:98:f2:fe:be:
         59:16:a2:34:64:c0:81:6f:37:93:b7:97:56:07:c9:ec:45:fc:
         b8:0c:2a:14:dc:01:8e:4d:92:3e:fd:90:45:b0:f7:2b:ac:f6:
         7a:6e:5e:21:a3:fb:b5:37:a0:f1:7f:18:47:89:50:41:dd:c9:
         d1:f6:bd:7f:85:2f:13:28:87:e8:ad:94:0a:c1:03:64:dd:be:
         5c:51:4c:6c:d6:4d:17:59:7e:1a:f6:ba:d9:24:a2:5c:41:bd:
         fb:31:22:79:8d:91:6f:74:e8:ff:f6:ba:cd:6c:f4:0e:19:bc:
         f3:eb:77:cd:3a:04:b2:e6:6d:c7:aa:a2:f5:7d:33:ee:8e:36:
         d9:68:9a:0e:51:c8:21:5f:aa:5d:34:73:78:f8:c5:36:5b:05:
         ce:b3:1d:16:6a:bf:d5:9f:ef:50:cd:5e:3e:1c:37:17:f2:1b:
         6c:c8:7c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:58:34 2025 by rpki-client