Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File:                     2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier:          cvOL0NB2NOm1AY4f0aMQfc/qFYfhH5gNUljmacMJthU=
Subject key identifier:   E5:F5:DF:19:B7:88:37:7B:A4:BB:63:8B:AD:A9:D0:38:42:14:C8:9F
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer:       /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial:       01976BF437FC1CD267696AE6AAAC52ABEE8A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number:          1591
Signing time:             Sat 14 Jun 2025 01:00:56 +0000
Manifest this update:     Sat 14 Jun 2025 01:00:56 +0000
Manifest next update:     Sun 15 Jun 2025 01:00:56 +0000
Files and hashes:         1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 1hbYxIL79v9meuIaD58rMf+sdYquK2ArwVM1EDIloQE=)
                          2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
                          3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:f4:37:fc:1c:d2:67:69:6a:e6:aa:ac:52:ab:ee:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
        Validity
            Not Before: Jun 14 01:00:56 2025 GMT
            Not After : Jun 15 01:00:56 2025 GMT
        Subject: CN=e5f5df19b788377ba4bb638bada9d0384214c89f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:d4:6f:5a:7b:98:41:1d:d8:37:0d:dd:fc:6c:
                    98:24:06:07:3b:20:4f:84:b0:99:6f:e3:97:a2:61:
                    5d:4a:be:cd:80:03:35:49:f6:3d:bf:ce:10:ea:94:
                    01:5d:2d:02:6e:f0:4a:4b:27:03:53:c0:74:d1:8d:
                    d4:97:4c:a1:9b:a8:f0:e6:a0:39:6b:a4:af:60:6d:
                    1f:44:1b:80:a8:f0:f5:cb:f8:e0:43:1d:c8:30:e9:
                    c3:bc:c7:ff:ba:49:62:f3:92:12:8b:ef:7e:7f:2a:
                    f1:f5:e0:11:33:59:83:52:a1:c8:64:e1:2f:58:67:
                    6d:36:d6:34:46:d9:88:4f:dd:28:9f:1e:87:7f:77:
                    0f:78:f2:19:ff:45:f9:fe:ed:e3:d3:10:41:d9:81:
                    ef:9f:36:90:b7:89:e5:8f:ad:91:f4:17:51:9a:45:
                    3d:b5:fe:12:53:17:05:53:2e:4f:08:f9:e4:b4:3c:
                    a6:55:38:b6:0b:ee:09:69:a3:29:03:a5:4e:16:00:
                    d6:11:b9:0d:d9:b9:12:d0:db:3e:ee:0f:46:6f:35:
                    8c:02:16:72:b5:d8:a7:aa:08:8c:ac:d3:fb:75:84:
                    0b:bb:be:04:cb:b8:4c:c9:09:0f:19:3d:b5:dc:46:
                    92:bd:b8:7e:d1:3b:d3:ac:9a:20:f5:5e:40:e7:2d:
                    7c:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:F5:DF:19:B7:88:37:7B:A4:BB:63:8B:AD:A9:D0:38:42:14:C8:9F
            X509v3 Authority Key Identifier:
                keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:fe:3f:c7:a7:b0:f9:64:ff:95:09:30:83:8c:a2:85:f3:96:
         14:c0:e3:13:31:f0:05:5e:57:1a:bb:58:f6:25:13:c6:ef:0a:
         3c:81:02:fb:68:2c:13:05:25:52:9e:bc:4d:77:9e:f4:cb:48:
         89:e5:21:c3:05:db:92:6f:97:02:23:55:0c:c8:fd:77:16:b7:
         05:e0:e4:15:5e:58:1d:71:98:cf:c2:be:9c:60:de:f3:a7:f7:
         f3:5d:bd:02:cb:71:1b:58:b2:67:af:8a:dc:10:75:33:14:de:
         cd:7e:a4:34:54:1d:ed:94:c2:9e:f0:92:20:a9:ae:97:db:a0:
         39:70:b7:5b:b0:82:28:2d:7f:a4:58:87:b2:d6:ea:c9:ae:1d:
         38:de:6f:77:54:8f:9b:26:cf:66:39:d4:bc:3a:1d:e3:22:60:
         45:1a:3f:58:59:af:8d:bb:44:96:a2:c9:8d:70:cc:64:d4:01:
         ac:58:64:6a:45:a5:56:3c:89:2f:fd:52:37:fa:bf:a6:17:d0:
         0f:9d:7f:e1:ef:97:d6:c5:08:c7:5a:9f:03:f2:2e:4b:41:67:
         4d:ec:d3:cf:8d:bf:6c:66:52:ed:f5:33:07:ca:c4:1b:7f:cb:
         37:13:5b:39:7b:2c:98:b8:ce:b5:cf:b7:46:d2:5c:84:e7:50:
         35:a7:ea:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9Df8HNJnaWrmqqxSq+6KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTU2ZTJkNjNhYzVkYTliZWQzNWRhMDFjYmZhZDIyNWYw
NGJlYjAwHhcNMjUwNjE0MDEwMDU2WhcNMjUwNjE1MDEwMDU2WjAzMTEwLwYDVQQD
EyhlNWY1ZGYxOWI3ODgzNzdiYTRiYjYzOGJhZGE5ZDAzODQyMTRjODlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudRvWnuYQR3YNw3d/GyYJAYHOyBP
hLCZb+OXomFdSr7NgAM1SfY9v84Q6pQBXS0CbvBKSycDU8B00Y3Ul0yhm6jw5qA5
a6SvYG0fRBuAqPD1y/jgQx3IMOnDvMf/ukli85ISi+9+fyrx9eARM1mDUqHIZOEv
WGdtNtY0RtmIT90onx6Hf3cPePIZ/0X5/u3j0xBB2YHvnzaQt4nlj62R9BdRmkU9
tf4SUxcFUy5PCPnktDymVTi2C+4JaaMpA6VOFgDWEbkN2bkS0Ns+7g9GbzWMAhZy
tdinqgiMrNP7dYQLu74Ey7hMyQkPGT213EaSvbh+0TvTrJog9V5A5y18jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOX13xm3iDd7pLtji62p0DhCFMifMB8GA1UdIwQY
MBaAFNilbi1jrF2pvtNdoBy/rSJfBL6wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4Njct
ZThkNDdiYmEyNWJmLzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC83NDE3N2MtNWUzYi00ODM2LTg4NjctZThkNDdiYmEyNWJm
LzEvMktWdUxXT3NYYW0tMDEyZ0hMLXRJbDhFdnJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm/4/x6ew
+WT/lQkwg4yihfOWFMDjEzHwBV5XGrtY9iUTxu8KPIEC+2gsEwUlUp68TXee9MtI
ieUhwwXbkm+XAiNVDMj9dxa3BeDkFV5YHXGYz8K+nGDe86f38129AstxG1iyZ6+K
3BB1MxTezX6kNFQd7ZTCnvCSIKmul9ugOXC3W7CCKC1/pFiHstbqya4dON5vd1SP
mybPZjnUvDod4yJgRRo/WFmvjbtElqLJjXDMZNQBrFhkakWlVjyJL/1SN/q/phfQ
D51/4e+X1sUIx1qfA/IuS0FnTezTz42/bGZS7fUzB8rEG3/LNxNbOXssmLjOtc+3
RtJchOdQNafqcw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 06:44:01 2025 by rpki-client