Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File:                     2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier:          77FdEAW2tkHYIu2F/euICfCVXd1+h8wWzrWmYBsfKaQ=
Subject key identifier:   01:6D:C7:82:2F:0F:90:BF:F6:B6:0E:E2:19:57:36:A5:79:D5:53:D2
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer:       /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial:       0197643A5F8656B1768B1C597F638E1293C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number:          158D
Signing time:             Thu 12 Jun 2025 13:00:36 +0000
Manifest this update:     Thu 12 Jun 2025 13:00:36 +0000
Manifest next update:     Fri 13 Jun 2025 13:00:36 +0000
Files and hashes:         1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: zI2oZwAffo4kfI/fGLd/lVAxVxQ0RE5w5Yczolz7nXc=)
                          2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
                          3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:3a:5f:86:56:b1:76:8b:1c:59:7f:63:8e:12:93:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
        Validity
            Not Before: Jun 12 13:00:36 2025 GMT
            Not After : Jun 13 13:00:36 2025 GMT
        Subject: CN=016dc7822f0f90bff6b60ee2195736a579d553d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:c5:95:2c:3e:e7:ac:4b:fa:e7:6c:9e:ba:b5:
                    ad:4a:2d:40:01:ec:ce:eb:32:29:91:4c:9c:f2:55:
                    ae:52:2f:8e:24:4e:9d:65:77:de:01:5d:ce:b4:98:
                    f1:95:cb:80:6e:1f:1e:71:2e:fb:27:3d:ea:d2:fc:
                    b4:c8:26:c4:33:a4:3b:a4:6e:56:a6:34:1b:80:9f:
                    f2:68:c7:50:c0:7c:54:0f:b0:a1:52:f9:fe:e5:b6:
                    f1:1d:77:62:99:55:37:8a:dd:16:f7:f9:69:d8:1e:
                    eb:20:28:3b:41:3b:57:95:3d:3d:f8:ba:9b:9f:6a:
                    e7:47:27:bd:60:fc:96:ce:08:bf:57:60:16:70:83:
                    87:9f:cf:d8:c8:36:56:86:82:a4:d5:69:d4:7b:ed:
                    37:6f:d6:55:1a:78:02:30:31:03:2b:68:9f:66:0a:
                    1a:c9:c1:b2:27:5d:b1:50:8b:b0:68:47:20:8e:ca:
                    7d:b7:c1:0d:68:a7:30:2a:7a:1d:de:9a:fa:15:a6:
                    ce:b8:6e:70:c2:7f:b1:c9:6c:3e:d8:2e:e7:b1:3a:
                    fb:cb:87:b9:59:fb:30:50:1b:eb:ab:ff:36:00:14:
                    b7:6c:d6:b9:a5:d5:de:79:53:35:5c:85:65:82:0b:
                    8e:71:42:55:ab:5c:61:74:cf:71:c8:d2:c6:6c:13:
                    b9:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:6D:C7:82:2F:0F:90:BF:F6:B6:0E:E2:19:57:36:A5:79:D5:53:D2
            X509v3 Authority Key Identifier:
                keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         dc:f2:70:77:7f:bc:49:a5:b7:45:6c:59:9e:f7:f2:8c:62:1f:
         b8:af:ad:ca:f9:87:17:24:5d:c4:5f:7a:ea:90:45:8d:1d:40:
         6c:e4:a6:e0:42:c3:32:a5:80:1e:df:c2:cb:d5:6d:2b:fe:58:
         31:e9:d6:1e:9c:d4:55:8f:d1:b9:a4:22:cb:21:0c:32:c3:44:
         a3:87:bc:a6:01:c4:72:74:5f:9a:f4:0b:1a:78:00:77:94:d7:
         d3:58:fc:b1:6d:32:c9:d4:b8:c8:6f:fb:6f:4b:e0:fe:b8:5b:
         ba:95:34:cc:40:01:7b:e8:66:29:c4:67:e7:97:e1:95:df:a3:
         01:0e:8e:81:e4:18:ad:f5:ae:5b:9d:b5:bd:9d:35:b6:12:d4:
         98:7a:3b:4b:e4:79:00:61:5e:ac:eb:de:2c:c9:f0:7c:31:56:
         ee:63:e8:fe:45:f8:30:8b:93:b2:79:50:bb:83:1c:35:47:ab:
         ff:c5:d3:40:c0:61:f6:bd:00:c3:6a:24:c1:77:19:7f:12:1a:
         42:39:20:13:85:ea:c6:8c:f0:2d:01:36:14:11:89:7a:fa:4c:
         71:9b:d7:6c:f4:2a:bc:bf:f5:08:55:92:69:b8:fb:27:90:7c:
         2e:da:3a:d6:0e:72:5e:9c:4c:f3:8e:19:52:c6:28:e8:fb:5d:
         f3:37:f3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:47:31 2025 by rpki-client