Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
File:                     oBZYi9HMst0iHG-Hg4VnR11-8ps.mft (raw, json)
Hash identifier:          yZv3gBBBVIctGHBzpyWr1dIvP2vG2GIdZzNwy8QAm2w=
Subject key identifier:   01:A7:CF:C5:ED:E3:99:82:18:BB:80:96:A4:00:A2:38:45:4F:B6:6B
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Certificate issuer:       /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial:       01976E19A7144C3F165400F9C16C76414AD7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
Manifest number:          1591
Signing time:             Sat 14 Jun 2025 11:01:04 +0000
Manifest this update:     Sat 14 Jun 2025 11:01:04 +0000
Manifest next update:     Sun 15 Jun 2025 11:01:04 +0000
Files and hashes:         1: 7uBhUg1U8OiL4mgssHYwPwkKJrs.roa (hash: qe2rw9SjAhTjzWJWyO7/LvmX898Pe709+tHdC1jP6UA=)
                          2: P--cyCsEXWTpmdtjtbooGfKZW34.roa (hash: NViLGPpX2PnuVnmOA56Cf2Dp8n102H0opZdujn8vzcs=)
                          3: aUv0oKe6R2btvCdtOSYfT8WFAF0.roa (hash: lEgJxjlP6AlXHpqLTYKzkLDQsVq+Pi3xpQibZH/Rsds=)
                          4: gAUG9nMSNjQsq1tequutH3immt8.roa (hash: LCBTiYiGcwL+NIVJ6V4OXpEoNBb3bNUukyOlGZ8oVgM=)
                          5: kx7UofzIMm_m_XlnrQs2X_ZwrTs.roa (hash: FMY4CRQkCPFhXww6V/ELCA3IQUBWPklogLha1wHTo1w=)
                          6: oBZYi9HMst0iHG-Hg4VnR11-8ps.crl (hash: 3STmu6EoDb8uttB43FQ6czwYROKLaroHYkBee6S12Xo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 11:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:19:a7:14:4c:3f:16:54:00:f9:c1:6c:76:41:4a:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
        Validity
            Not Before: Jun 14 11:01:04 2025 GMT
            Not After : Jun 15 11:01:04 2025 GMT
        Subject: CN=01a7cfc5ede3998218bb8096a400a238454fb66b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:77:8d:20:ad:c3:66:df:b2:60:8c:f3:77:52:
                    e2:e8:59:f7:c2:7c:04:4c:a8:9d:d0:6d:6a:35:da:
                    07:d9:d3:63:ca:ee:de:f2:08:8b:f0:33:12:04:0f:
                    26:75:9e:7a:d7:e8:38:6b:d9:c7:e7:ec:55:65:f3:
                    bf:42:ee:67:ee:b8:e7:71:84:33:00:73:79:36:0d:
                    dc:cc:6e:46:f7:d1:32:4f:71:2a:c5:5c:db:e9:de:
                    80:8e:26:9e:b4:06:e0:68:2d:4e:15:49:d3:01:6b:
                    9c:0f:66:2c:e4:7b:42:32:eb:07:4e:ac:2e:c9:1a:
                    b4:b6:bb:83:2f:cb:8f:04:65:37:5e:d6:21:d6:c9:
                    f1:32:9d:3c:3c:e6:90:27:02:be:29:ad:5b:b3:ac:
                    36:98:d1:a4:19:90:08:58:a7:5d:e8:41:9a:e7:2e:
                    68:14:0d:a6:43:0c:0d:b3:70:4e:b3:cf:b6:56:4e:
                    df:91:0e:04:f2:08:d7:23:b5:5a:58:03:a5:8a:e8:
                    7d:0c:dc:39:e1:f9:33:c7:08:87:11:3b:78:c3:87:
                    53:b7:df:d8:5e:29:1a:27:40:d8:64:82:c2:26:8a:
                    29:c2:24:aa:97:d9:15:3f:fd:1d:10:44:a3:46:1c:
                    27:1e:d8:a8:f6:14:d1:8f:53:d0:d1:e5:34:a6:1f:
                    a6:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:A7:CF:C5:ED:E3:99:82:18:BB:80:96:A4:00:A2:38:45:4F:B6:6B
            X509v3 Authority Key Identifier:
                keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:ba:cd:78:59:6c:20:b1:22:2f:33:e0:4c:cd:dc:e7:75:7b:
         c1:ce:b9:cf:f7:83:12:95:ca:f3:d2:aa:0b:a9:f0:f3:9c:4e:
         b9:b4:1a:31:93:34:69:0b:1c:02:c0:ab:29:fc:aa:84:6f:53:
         ac:2b:2c:58:e4:95:19:9d:be:f0:91:b2:c9:d1:cd:d0:4f:91:
         bb:f7:e0:d7:c5:e8:04:49:ea:2c:47:da:b0:64:e5:a1:8d:bf:
         e1:08:33:fc:f8:7e:15:98:a8:f3:7d:8b:9c:04:db:0f:c7:23:
         8c:18:e0:9f:c1:21:e4:f9:2f:73:bf:6b:70:b9:80:81:33:cb:
         f0:12:22:4c:2a:27:78:79:76:6c:f9:aa:75:08:19:91:dc:b9:
         05:76:7d:b7:12:de:e7:d4:47:f7:b8:55:9b:e8:97:ba:53:70:
         69:d2:b7:34:90:e5:e7:a6:50:50:89:a0:f5:63:3f:e2:f7:51:
         13:0a:f8:d3:c5:dd:94:31:c1:51:48:4e:4d:41:09:24:f9:72:
         7f:31:5d:0d:2d:fc:14:3b:37:18:fd:56:e5:c2:b2:1e:3d:ee:
         79:ad:b6:03:10:73:ed:d9:62:41:bf:46:b6:46:ee:3d:82:b1:
         d6:be:a5:51:c4:61:d5:96:2e:8d:40:85:5a:f9:6f:3b:de:61:
         f5:46:b4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 21:18:58 2025 by rpki-client