Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File:                     si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier:          oDpxTm1iT9YUmaXttEkUhGAMPMrl5uITEQ8aIMPafgA=
Subject key identifier:   BD:A5:C3:18:B4:DF:80:23:80:1E:35:8A:6B:A1:ED:C4:F1:E8:92:8C
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer:       /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial:       019758363AD94135790EC8EF77075EF05DF4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number:          0354
Signing time:             Tue 10 Jun 2025 05:00:38 +0000
Manifest this update:     Tue 10 Jun 2025 05:00:38 +0000
Manifest next update:     Wed 11 Jun 2025 05:00:38 +0000
Files and hashes:         1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
                          2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: FWyDB9PQeip+A/k3kDjlBIs84dbAJNoL0dkpY8satqc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 05:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:36:3a:d9:41:35:79:0e:c8:ef:77:07:5e:f0:5d:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
        Validity
            Not Before: Jun 10 05:00:38 2025 GMT
            Not After : Jun 11 05:00:38 2025 GMT
        Subject: CN=bda5c318b4df8023801e358a6ba1edc4f1e8928c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:ef:b7:00:3a:80:65:3c:a7:68:df:bc:65:5f:
                    63:6b:26:e7:b2:4d:a6:32:67:2d:ea:8c:6b:6c:36:
                    c9:0c:41:2e:72:99:4e:92:75:f2:e7:73:8a:10:8f:
                    ff:e4:49:bd:eb:46:b2:b8:ab:7c:01:4f:6b:73:b2:
                    99:ce:fc:20:c9:c2:7d:70:f2:04:48:34:2b:65:d6:
                    2d:71:da:ce:ef:78:77:07:d1:ff:37:18:be:d2:5c:
                    3b:29:e3:fb:ab:d4:65:54:e6:1c:ed:9d:48:25:38:
                    fa:02:38:44:af:fe:aa:46:2e:f0:2e:f2:23:d7:a0:
                    af:cf:b7:89:4b:d7:6b:d7:59:f1:d7:89:9a:be:6c:
                    b5:b1:8e:64:89:fa:48:d3:e7:9b:14:19:90:30:97:
                    4f:45:dc:ae:e3:32:63:a0:19:1a:9f:28:59:1a:98:
                    1b:05:35:cb:5e:75:92:89:b8:95:ed:db:a0:93:46:
                    6b:c1:9b:9f:11:0a:44:1c:95:44:eb:98:7a:d4:19:
                    cc:18:ab:e6:7f:46:38:d1:82:56:7d:fd:d8:ff:d9:
                    35:02:91:78:32:4a:99:dd:65:4c:c0:bd:bb:e3:9f:
                    93:29:08:e1:a8:a4:6e:90:ca:eb:fe:f2:c2:66:29:
                    ef:00:c9:bc:ce:a6:a3:a1:0b:c7:f9:98:87:79:1b:
                    e0:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:A5:C3:18:B4:DF:80:23:80:1E:35:8A:6B:A1:ED:C4:F1:E8:92:8C
            X509v3 Authority Key Identifier:
                keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:d5:97:a3:2d:05:92:fa:fa:1d:f8:12:9e:f1:d4:8c:46:d3:
         0b:1f:fd:56:7e:c4:16:28:91:23:1e:58:e1:d0:0c:25:a6:c4:
         ff:a8:b1:bb:e1:15:53:1c:c5:ae:a0:84:5b:3a:d8:06:c9:03:
         a5:a4:be:00:b9:6a:6b:07:1c:4a:dc:b6:44:d0:fe:a3:22:17:
         fb:9c:2f:7e:54:f6:c7:8a:a0:57:64:4e:cc:22:7c:03:22:a8:
         fe:0f:77:28:21:9a:fd:c7:84:96:fe:e9:3f:2f:59:ac:77:a6:
         3b:15:87:91:19:9c:21:33:da:a2:d7:a7:64:07:bb:63:b1:e5:
         60:e7:c3:64:73:90:5f:de:b2:3f:53:1b:41:5f:45:83:49:90:
         da:20:fc:87:19:21:0b:41:b5:38:e2:d5:58:9a:ae:69:d1:c8:
         c9:30:10:9f:00:75:af:3f:7a:7e:13:21:f9:92:9b:b9:24:05:
         48:e7:d6:7f:9c:2a:10:79:8b:d0:77:c7:84:92:11:3c:03:d7:
         f7:f0:74:be:ab:2f:f7:fc:68:d5:6c:4e:18:97:7c:e5:9d:b2:
         9d:2b:61:e7:a2:df:01:b8:38:e9:f2:9b:96:da:ee:6c:db:a5:
         1b:98:67:ca:2a:d9:49:3b:de:a0:c8:5c:de:7c:17:fb:5e:6c:
         95:78:78:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 13:02:21 2025 by rpki-client