Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
File:                     oBZYi9HMst0iHG-Hg4VnR11-8ps.mft (raw, json)
Hash identifier:          H5/WjojDpoM05VgMui/gbd/h5KQOMjqAfYFn8Y3lYtY=
Subject key identifier:   E0:AC:F1:0E:4D:67:C5:F8:28:13:E9:EC:05:D0:F1:5C:23:DE:4C:56
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Certificate issuer:       /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial:       0197665FF85F17FBEAD89428E5FD39482F05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
Manifest number:          158D
Signing time:             Thu 12 Jun 2025 23:00:54 +0000
Manifest this update:     Thu 12 Jun 2025 23:00:54 +0000
Manifest next update:     Fri 13 Jun 2025 23:00:54 +0000
Files and hashes:         1: 7uBhUg1U8OiL4mgssHYwPwkKJrs.roa (hash: qe2rw9SjAhTjzWJWyO7/LvmX898Pe709+tHdC1jP6UA=)
                          2: P--cyCsEXWTpmdtjtbooGfKZW34.roa (hash: NViLGPpX2PnuVnmOA56Cf2Dp8n102H0opZdujn8vzcs=)
                          3: aUv0oKe6R2btvCdtOSYfT8WFAF0.roa (hash: lEgJxjlP6AlXHpqLTYKzkLDQsVq+Pi3xpQibZH/Rsds=)
                          4: gAUG9nMSNjQsq1tequutH3immt8.roa (hash: LCBTiYiGcwL+NIVJ6V4OXpEoNBb3bNUukyOlGZ8oVgM=)
                          5: kx7UofzIMm_m_XlnrQs2X_ZwrTs.roa (hash: FMY4CRQkCPFhXww6V/ELCA3IQUBWPklogLha1wHTo1w=)
                          6: oBZYi9HMst0iHG-Hg4VnR11-8ps.crl (hash: nbTf2H1G5JQOCQVmYbsDAFViIoxJ4Fjrrn6FkLA5wQA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:5f:f8:5f:17:fb:ea:d8:94:28:e5:fd:39:48:2f:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
        Validity
            Not Before: Jun 12 23:00:54 2025 GMT
            Not After : Jun 13 23:00:54 2025 GMT
        Subject: CN=e0acf10e4d67c5f82813e9ec05d0f15c23de4c56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:3e:f9:4d:4f:9a:b0:ce:d4:f7:8d:f7:02:0c:
                    12:20:03:38:42:c7:cd:85:4f:ec:08:55:12:f0:73:
                    c4:57:d9:ef:6f:9f:5f:dc:ce:c9:11:99:8c:db:0d:
                    a0:ae:f1:69:64:9b:3a:36:3e:bc:a3:ff:a3:46:2d:
                    6e:13:60:f7:ee:a5:49:dc:11:a1:7e:4f:71:5e:ef:
                    ef:d2:bd:f8:38:5f:23:7c:fa:ca:63:9e:e2:89:ce:
                    8b:58:5b:2b:c9:17:37:d1:2e:35:09:3d:cf:dd:38:
                    da:f4:56:e0:d9:d3:dc:ab:b2:18:89:a2:eb:44:f9:
                    f5:5f:0e:82:a2:14:0c:01:95:6e:48:db:24:df:f3:
                    c9:4e:94:0a:d5:52:0e:a6:23:7e:6a:e3:2b:70:d2:
                    ee:81:ea:b6:52:d0:d2:cd:29:d0:37:ac:70:66:74:
                    55:01:df:62:e8:ac:47:26:74:9d:2a:b4:6f:43:56:
                    75:df:be:46:07:d2:64:e0:bb:c2:3c:6b:9e:d2:f9:
                    35:f8:4d:b2:82:0f:70:d9:7c:29:51:3f:09:27:2f:
                    2a:c3:cb:a3:76:21:48:96:f1:ce:4c:50:27:66:17:
                    d9:d4:f2:6b:72:1a:10:89:5c:db:19:7a:13:a2:b9:
                    42:dd:6b:63:ca:b2:9d:2f:1b:29:a6:1c:0b:b0:3c:
                    26:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:AC:F1:0E:4D:67:C5:F8:28:13:E9:EC:05:D0:F1:5C:23:DE:4C:56
            X509v3 Authority Key Identifier:
                keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:fe:6d:fb:f2:4e:1c:70:81:d3:27:be:e2:4b:31:87:36:3e:
         5c:d8:6e:c9:85:2f:ae:a1:10:93:78:22:41:18:d6:c2:9d:93:
         ee:af:7a:61:5e:52:38:93:7a:16:7b:ef:8f:57:dd:7f:de:fb:
         74:cb:99:92:66:a5:9d:f1:51:48:6c:cb:9a:c5:b4:d7:74:03:
         99:3a:f0:d7:eb:7f:61:5e:1d:2a:1e:dc:01:bb:63:d0:40:d7:
         b9:78:5a:a2:a2:b5:7a:bb:03:14:82:41:a4:d4:23:f5:03:19:
         7d:e5:70:07:dc:08:84:2a:9b:f5:94:b0:6f:5a:46:d3:3c:67:
         e3:07:98:e3:e3:c2:a9:fd:78:5b:08:af:73:ad:10:93:2b:ca:
         01:83:1e:df:4c:84:6f:d9:32:5d:22:81:36:bc:7b:8b:d2:0c:
         23:d0:58:f0:c6:7d:9a:70:e3:70:3d:c1:13:3a:3a:40:fe:ae:
         41:b8:cd:cd:44:53:f7:ba:98:5f:c3:ec:cf:1a:8b:63:27:aa:
         8a:af:9e:a4:7b:9b:e4:4d:05:3c:6f:4d:64:f4:12:a1:db:5d:
         38:a1:4f:6c:9d:93:a6:b8:00:b9:6a:42:df:8e:b2:36:26:9b:
         73:e6:00:44:f5:64:08:bc:ff:9c:b5:69:2f:a0:42:80:76:1c:
         23:52:5c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 07:07:04 2025 by rpki-client