Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File:                     si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier:          1oAGOAvCTNA3WyagKC2mDTEychOzo++OhZdD16DP80E=
Subject key identifier:   5F:04:84:59:B0:DE:31:76:31:C6:9F:2D:77:C9:AF:D7:2B:42:4E:A0
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer:       /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial:       01976B85F755E7FA78CBCFDA30F8872518C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number:          035E
Signing time:             Fri 13 Jun 2025 23:00:30 +0000
Manifest this update:     Fri 13 Jun 2025 23:00:30 +0000
Manifest next update:     Sat 14 Jun 2025 23:00:30 +0000
Files and hashes:         1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
                          2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: f5Otes8Iia9LHbkibSfiij9B/ZIQrrjkBCQ/bsmsL5c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 23:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:85:f7:55:e7:fa:78:cb:cf:da:30:f8:87:25:18:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
        Validity
            Not Before: Jun 13 23:00:30 2025 GMT
            Not After : Jun 14 23:00:30 2025 GMT
        Subject: CN=5f048459b0de317631c69f2d77c9afd72b424ea0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:e0:67:af:51:8c:82:89:38:be:2d:e2:d0:36:
                    ae:c2:8d:42:36:95:49:7d:18:b1:cb:d7:2f:f2:2b:
                    87:88:36:92:da:b8:5a:f3:fa:be:16:98:b3:97:5d:
                    15:6e:c1:62:6c:f6:a3:f4:5e:40:7a:15:43:1c:d0:
                    46:33:50:12:ea:0f:d5:9d:60:32:f6:d5:2f:30:e9:
                    2f:1b:5d:86:fb:51:f6:91:a4:ee:85:7f:50:3a:58:
                    1e:5a:68:00:b7:08:69:16:e0:e1:09:2d:32:9a:6e:
                    36:5f:7b:df:d9:fc:34:01:e8:04:f6:e0:d3:06:68:
                    60:10:d0:da:a9:77:4d:97:75:f9:db:bd:c9:d6:4e:
                    36:ed:1d:af:56:83:c1:25:c4:c0:18:29:b5:db:16:
                    08:43:64:4b:3e:9b:28:f6:4b:1c:27:a7:7f:86:6f:
                    34:4b:74:0c:dd:2e:0d:9e:a8:c9:74:ef:ff:ef:af:
                    3b:00:94:10:92:2d:3d:bf:87:ae:46:40:b2:69:3f:
                    a5:69:d9:3d:db:8f:b4:89:9a:c3:fc:56:09:66:c9:
                    9d:65:08:ce:e7:eb:ba:4f:ab:97:7a:e0:65:ed:a1:
                    85:2b:a8:a1:76:b5:0f:88:4e:7a:7d:11:c2:45:24:
                    9c:54:a4:3b:a5:e1:d1:80:42:c9:7a:84:78:65:69:
                    3e:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:04:84:59:B0:DE:31:76:31:C6:9F:2D:77:C9:AF:D7:2B:42:4E:A0
            X509v3 Authority Key Identifier:
                keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         db:4d:94:51:23:2b:31:73:df:ef:af:5d:95:fb:f7:09:d4:80:
         35:90:73:40:f9:d3:2a:ca:50:cf:9c:05:c7:72:e4:a8:42:63:
         bd:5c:b0:8b:1f:92:0a:68:67:5a:ed:c8:84:e4:24:72:0f:19:
         be:b4:50:11:b8:77:86:85:1a:91:29:be:61:df:af:bd:59:c2:
         7e:26:37:23:1e:6a:57:23:66:d7:70:02:39:27:15:05:4a:4c:
         5e:6a:53:f1:3d:fc:ab:7f:cb:e9:c7:25:6c:3b:83:a5:36:ae:
         22:30:22:16:0d:39:dd:05:c9:67:5b:a2:fa:8e:8b:3a:e0:fb:
         c6:d1:91:e9:6f:6b:5c:26:61:c0:5b:f0:75:2c:7c:62:a2:79:
         46:a8:49:46:4c:5d:9b:1d:b2:f3:82:17:3c:31:d8:ce:08:7f:
         a0:31:60:65:fa:38:a1:8a:6e:09:cd:04:6a:2b:27:fa:26:f0:
         f0:c5:f2:73:b5:4b:d6:4d:92:b1:30:42:8f:ac:08:d9:7b:2e:
         b2:26:3b:1a:93:76:3f:cb:4b:4a:b7:33:dc:7b:b5:0d:78:d4:
         b3:fa:c3:ed:71:e3:b9:57:dc:e7:32:8d:e6:5b:ae:33:e6:68:
         77:d7:e7:83:fd:4b:41:29:dd:29:32:65:9b:a1:e2:2d:93:8e:
         e9:ae:df:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 06:44:40 2025 by rpki-client