Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
File:                     lgxteH5rXrZCSN2aehBlsQU_dFg.mft (raw, json)
Hash identifier:          qxD/j8ND6O/0TB6F7GBY7l5mOyjMvfiPFsLBUmNJCnI=
Subject key identifier:   BA:4C:DC:F5:46:70:1F:BF:BE:1F:16:B6:C7:DE:4E:1E:BB:C6:1A:BF
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Certificate issuer:       /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial:       019762B9DC2B8348965349752D0E67A8C202
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
Manifest number:          0CE9
Signing time:             Thu 12 Jun 2025 06:00:37 +0000
Manifest this update:     Thu 12 Jun 2025 06:00:37 +0000
Manifest next update:     Fri 13 Jun 2025 06:00:37 +0000
Files and hashes:         1: kBsht6KNIVIdqBo-LjM3rdj9_48.roa (hash: yvy0FENQOdTgUPrF3X0q20Rd17JBcuTbTmhNZ8raWkU=)
                          2: lgxteH5rXrZCSN2aehBlsQU_dFg.crl (hash: 0q7TJBKf5172tIwy4YTI/+N+J+20SNpbDwfZ9ukSS4I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 06:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:b9:dc:2b:83:48:96:53:49:75:2d:0e:67:a8:c2:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
        Validity
            Not Before: Jun 12 06:00:37 2025 GMT
            Not After : Jun 13 06:00:37 2025 GMT
        Subject: CN=ba4cdcf546701fbfbe1f16b6c7de4e1ebbc61abf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:0a:9d:60:b6:27:b7:5b:76:55:f1:17:79:34:
                    da:59:1e:2f:37:3d:ef:6f:53:a7:06:75:32:dc:29:
                    15:e5:8e:d9:32:27:b4:69:c2:21:b9:03:29:79:7e:
                    1e:3e:c6:de:62:e5:1d:29:ca:25:97:2a:00:b2:ee:
                    69:27:e3:e3:3f:f2:c1:a5:92:7c:13:2d:c1:3d:79:
                    23:93:eb:bc:5f:5a:41:64:66:08:08:29:bb:9d:6a:
                    cf:bd:9e:64:eb:48:96:89:e8:42:c2:5b:04:19:d6:
                    b2:b0:72:df:a9:d3:68:e3:8b:6c:a6:16:6b:9c:39:
                    18:42:4c:cd:a7:6d:eb:b1:8b:c6:5d:4b:5d:24:8f:
                    14:7c:4c:5c:ff:b6:4b:5e:7e:c4:ed:5d:5a:76:e4:
                    c3:8a:0b:32:8e:38:35:bf:c0:2d:6c:36:5f:ab:54:
                    73:75:d7:09:19:0f:ed:f1:47:73:fc:05:1a:2a:20:
                    8c:e9:7b:35:6b:5b:25:54:7c:65:b4:28:07:3f:a3:
                    b1:73:61:78:0b:50:47:33:47:0f:9e:f6:a2:80:88:
                    a4:01:86:48:43:ef:a5:cd:60:08:31:00:af:d7:4b:
                    2d:6d:3f:a7:32:56:7b:b1:bf:af:60:04:ab:b8:44:
                    83:c1:eb:53:c3:98:33:ff:f2:b6:93:7f:9d:78:6e:
                    e7:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:4C:DC:F5:46:70:1F:BF:BE:1F:16:B6:C7:DE:4E:1E:BB:C6:1A:BF
            X509v3 Authority Key Identifier:
                keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:f5:07:4d:47:6b:de:b4:af:1a:0b:68:8c:9f:cf:32:99:61:
         cb:6e:52:06:3c:f5:6a:65:ed:19:b6:e3:c0:3f:7b:30:8c:d1:
         15:55:25:f7:60:01:7f:9a:0a:95:d7:11:47:e3:2d:bf:78:4e:
         00:7a:64:41:79:46:7b:93:d1:c2:37:3c:a4:34:eb:82:71:0a:
         9b:a2:95:ad:75:43:56:b9:d3:f5:34:9e:2f:6f:a8:46:63:83:
         47:dc:5d:42:09:6a:04:08:db:6b:ad:3b:b3:53:be:0a:4a:fd:
         a5:51:f5:29:b8:21:5b:c3:ae:ed:57:af:d6:89:4a:3b:5f:9a:
         e3:43:74:ec:cf:d4:da:c9:c3:54:e5:58:bf:50:6d:53:9c:2c:
         e1:d6:2c:7f:7c:33:a1:89:10:b2:7c:71:22:0f:1f:12:a6:ba:
         39:74:51:98:bb:ad:7c:98:2f:6c:82:3c:94:52:27:60:2e:e7:
         2a:45:c0:b9:24:27:c4:97:89:21:84:6f:67:17:56:d3:cd:f7:
         e0:04:80:ea:8f:9a:79:0d:15:e0:a7:ca:08:79:41:62:70:d7:
         63:f7:2a:41:8f:b8:1c:2e:bd:76:74:08:78:2e:e4:bd:a3:f0:
         65:6f:30:21:49:60:6d:41:12:2b:9b:19:bd:5c:0d:6d:52:e3:
         e1:46:6c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 11:48:52 2025 by rpki-client