Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File:                     KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier:          fdddjLI3/Vbx+xN8h2YDO8W/P1VEnUXAmZwzx85VO38=
Subject key identifier:   B0:3E:CF:16:4B:B7:DF:28:DF:AE:C6:FA:B7:CE:3A:B5:8E:0D:92:4F
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer:       /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial:       019767047264B6CE75C8041CDF01FDC6EA6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number:          02E2
Signing time:             Fri 13 Jun 2025 02:00:34 +0000
Manifest this update:     Fri 13 Jun 2025 02:00:34 +0000
Manifest next update:     Sat 14 Jun 2025 02:00:34 +0000
Files and hashes:         1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: CWKOlorTXygwCiIS/3ekYClQ4k5uFmAbOa5GHis2jj8=)
                          2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:04:72:64:b6:ce:75:c8:04:1c:df:01:fd:c6:ea:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
        Validity
            Not Before: Jun 13 02:00:34 2025 GMT
            Not After : Jun 14 02:00:34 2025 GMT
        Subject: CN=b03ecf164bb7df28dfaec6fab7ce3ab58e0d924f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:a0:df:83:4f:0b:5a:5d:a5:e6:76:f7:fb:be:
                    61:a9:b0:db:0e:7c:57:c0:24:ae:34:85:01:a8:16:
                    31:94:58:a2:77:9d:d2:4b:a8:e0:aa:a8:b3:48:0b:
                    95:f3:1c:0a:2c:83:c9:25:02:5c:d8:9e:ac:ca:0d:
                    53:e4:79:e4:39:f3:f6:0a:a9:3a:83:09:b8:f8:75:
                    3b:e9:45:43:b0:3a:02:70:0a:06:57:16:2a:56:a6:
                    ab:42:81:4d:d3:ca:28:83:28:ad:34:db:57:26:65:
                    be:79:f8:65:89:c9:2b:30:26:eb:34:48:88:16:56:
                    73:f8:93:ab:3f:eb:b2:92:89:80:62:d4:a5:64:4f:
                    2e:70:76:9a:b7:61:f0:68:05:c0:35:54:59:9a:80:
                    be:0b:eb:67:91:b4:16:80:d3:96:fa:ec:6e:fe:68:
                    4f:db:85:16:c8:7b:c7:aa:62:1b:7b:e0:86:db:b2:
                    ca:c0:05:79:e3:09:84:07:aa:0c:a2:17:83:25:a4:
                    34:13:f2:d6:a5:02:b8:d0:6a:00:78:48:32:67:c8:
                    2d:5b:5f:e5:13:e0:89:f8:13:40:41:76:2c:8d:ca:
                    94:58:89:9d:c8:1c:af:c3:84:bb:4d:5d:d5:7b:da:
                    55:9f:d0:6f:5a:66:11:1a:bf:f7:68:99:98:62:20:
                    0c:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:3E:CF:16:4B:B7:DF:28:DF:AE:C6:FA:B7:CE:3A:B5:8E:0D:92:4F
            X509v3 Authority Key Identifier:
                keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:66:54:c0:9b:50:46:e4:95:d2:6f:8f:36:f7:51:32:80:49:
         32:f5:c4:3e:4b:f2:e3:48:32:04:88:0c:55:23:61:cf:de:62:
         7b:88:ff:bd:78:1c:6f:e3:3d:3d:ad:3b:2b:8e:4c:9e:2a:d7:
         e8:08:8f:e2:f5:ed:2f:a2:3b:aa:c3:67:6e:45:42:e9:7e:f0:
         f8:b5:ff:d9:42:5c:b1:cf:1d:28:91:ab:2f:01:51:7f:e9:8a:
         6f:a4:5d:b6:60:28:ec:22:e4:af:0e:d8:0a:97:52:81:45:dc:
         1b:bb:aa:3e:7b:72:a1:ed:cf:a1:86:a1:ca:dc:8a:e1:6b:79:
         23:35:5d:61:24:10:ab:42:e1:f6:a0:30:12:e0:05:82:71:8c:
         fc:a9:4e:f7:23:4c:89:9d:0d:45:a4:73:fd:6c:0d:29:bc:54:
         88:57:23:cb:02:5e:9f:6a:4c:9a:ee:58:8c:c1:64:83:5a:75:
         2f:d2:1a:bb:31:94:8d:a5:e4:53:14:de:52:a8:10:94:41:7a:
         5e:47:8e:a5:76:58:7c:79:ee:c1:0a:be:04:02:da:dd:04:7f:
         d5:95:a9:5a:8d:8e:68:72:74:f4:71:6c:d0:9d:5c:4e:bd:5d:
         d9:1c:d1:e6:79:61:14:a0:a7:c9:22:41:83:27:76:fc:f7:a2:
         bb:96:60:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 05:51:52 2025 by rpki-client