Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File:                     kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier:          Ct6DvNBUWkDUVivAHZmKiR6Hityp7SbFxs++mft3Qiw=
Subject key identifier:   51:62:10:44:F6:85:30:F3:49:CF:33:AA:94:0E:CD:2A:F1:F6:E8:C8
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer:       /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial:       019764710C2B8F0F5D6C9BC85C16C5E6C869
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number:          158A
Signing time:             Thu 12 Jun 2025 14:00:19 +0000
Manifest this update:     Thu 12 Jun 2025 14:00:19 +0000
Manifest next update:     Fri 13 Jun 2025 14:00:19 +0000
Files and hashes:         1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
                          2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
                          3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
                          4: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: J+/yJKVsKd86H4IulOvwPp4PJBKcTwx4hjDTjRP07VE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:71:0c:2b:8f:0f:5d:6c:9b:c8:5c:16:c5:e6:c8:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
        Validity
            Not Before: Jun 12 14:00:19 2025 GMT
            Not After : Jun 13 14:00:19 2025 GMT
        Subject: CN=51621044f68530f349cf33aa940ecd2af1f6e8c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:b4:4e:47:54:87:10:38:75:2f:cc:24:3f:36:
                    ec:bb:33:98:7e:3d:b2:23:1a:07:6b:af:f0:55:6d:
                    08:d2:48:7b:ef:ea:3b:45:03:59:70:fb:e8:a2:e7:
                    7c:99:b8:5f:97:9f:da:64:0e:9a:b1:1a:a7:7d:0f:
                    eb:31:58:94:5f:6d:9c:ad:e5:f9:06:26:14:bf:e5:
                    59:cf:ab:ee:bd:51:ea:41:e3:33:26:df:bc:60:15:
                    2b:26:eb:7c:81:e6:bb:ba:b6:5a:e5:d4:3d:1b:83:
                    ff:8a:98:4d:49:e9:54:52:65:7d:1f:70:86:de:4f:
                    0b:98:59:6b:ae:e7:19:c3:3a:40:de:8b:00:3d:8f:
                    37:be:5a:51:f6:fd:74:62:27:90:a9:89:bd:20:71:
                    80:49:2e:9a:d4:c7:e8:16:72:45:6b:14:62:3b:75:
                    56:73:30:59:4f:80:60:60:c8:5a:40:1b:33:ae:fb:
                    c2:5e:d5:40:e2:d2:5f:fc:03:6a:a1:fa:0c:91:1d:
                    d1:b4:66:2f:8e:dc:44:85:23:05:a5:9a:ae:d0:e1:
                    f5:19:e4:2a:7e:aa:ff:67:35:94:05:5b:17:eb:3a:
                    ff:57:01:08:7e:ef:a9:cd:b3:72:e1:b9:0d:28:3b:
                    bc:a5:f2:d1:2f:e2:73:59:f9:53:4b:11:e5:63:31:
                    b0:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:62:10:44:F6:85:30:F3:49:CF:33:AA:94:0E:CD:2A:F1:F6:E8:C8
            X509v3 Authority Key Identifier:
                keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:81:45:ac:c7:4f:34:40:c7:94:72:32:d5:7d:1e:4b:a1:dd:
         f7:c3:83:95:f1:6e:ea:e1:8c:28:20:41:96:9e:7f:df:30:22:
         ec:0d:fd:cd:aa:cb:51:5a:5d:05:46:e4:09:22:6c:15:65:ed:
         28:49:8e:02:08:4b:d4:a6:6d:fc:d1:b3:c5:8f:87:72:76:5c:
         cb:71:ad:76:b8:f3:15:54:0f:23:d8:43:1a:7d:97:80:f5:91:
         fd:5e:b2:4c:71:7b:77:e9:90:7a:30:cc:36:53:16:56:2d:67:
         e9:4f:5b:38:f0:93:35:6a:d7:69:90:b1:7c:17:ba:13:22:19:
         bc:ae:02:4e:f4:70:7c:e2:b7:98:b1:0c:a3:32:b5:0b:f3:33:
         87:16:86:34:33:ba:e7:fd:29:89:8a:bc:d7:aa:fc:ce:77:3d:
         8c:1d:6c:0f:06:a1:c2:5f:7b:8a:c0:b6:0b:e0:30:ec:27:18:
         5e:c1:80:3d:ca:4d:43:3d:31:37:72:44:ed:20:e7:cb:4a:bb:
         18:f9:cf:c0:8e:71:c5:d3:ce:36:24:2a:96:df:1e:af:71:49:
         63:65:d3:c6:1e:ba:ad:2e:7c:6e:96:5f:dc:fa:63:2d:f4:47:
         0e:bb:9e:59:ff:33:b1:f1:4d:97:cb:bf:37:d7:09:c5:6d:28:
         6f:ba:92:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:44:48 2025 by rpki-client