Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
File:                     sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json)
Hash identifier:          7RqlpvzlkAmK5iVD51wlEcW7OJKqc4noAXdbbQYQwQw=
Subject key identifier:   8D:E8:29:C9:D0:7D:05:03:A8:A1:C7:CA:F7:0B:03:6C:F4:BF:A0:D6
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Certificate issuer:       /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial:       0197542311BD5B65707119B625C549277E57
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
Manifest number:          0A66
Signing time:             Mon 09 Jun 2025 10:01:13 +0000
Manifest this update:     Mon 09 Jun 2025 10:01:13 +0000
Manifest next update:     Tue 10 Jun 2025 10:01:13 +0000
Files and hashes:         1: Ewu_L9NGAMIn9J1bD2mKPYHfLN0.roa (hash: MPg//qxTuFJeVfIte2bOUUVJ5G8w+mQ6T68mV0V7xWY=)
                          2: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: P85UX+f1Vu3WIZjO1YVbspjh32fA8/yS6/wTiDtdgOQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:23:11:bd:5b:65:70:71:19:b6:25:c5:49:27:7e:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
        Validity
            Not Before: Jun  9 10:01:13 2025 GMT
            Not After : Jun 10 10:01:13 2025 GMT
        Subject: CN=8de829c9d07d0503a8a1c7caf70b036cf4bfa0d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:37:99:66:5f:e7:ad:25:d4:aa:71:c3:ed:c0:
                    52:98:bf:2e:4a:9b:49:7b:c9:33:6e:b4:b7:83:2c:
                    1c:7f:cc:c8:a2:38:55:24:b6:c7:dc:d1:6d:08:1c:
                    e4:1e:67:2e:c1:11:b3:41:2d:c8:a6:2a:dc:c8:96:
                    40:ba:8e:d4:86:df:14:1d:b6:a0:f1:cb:4b:e5:c4:
                    cc:32:6e:cb:a2:52:7e:b8:c9:2d:c1:ee:80:c7:28:
                    c3:c8:2e:99:44:87:82:55:b8:51:c0:0e:e6:ba:9e:
                    f8:63:f0:f8:10:37:d0:32:03:95:ba:4c:6d:99:a4:
                    24:f9:46:7a:09:74:c0:24:23:81:79:48:d4:25:59:
                    83:60:2c:3d:e0:16:31:f8:18:b4:56:8f:51:0e:99:
                    ee:6c:f6:b3:79:f2:ac:f5:49:14:fd:ad:2b:97:b4:
                    0f:d5:26:b7:5d:81:cd:b0:58:7c:9e:60:45:ce:58:
                    f3:0c:04:1f:05:89:36:43:45:c0:d0:80:ae:c3:5c:
                    8f:c1:0b:37:d3:fd:5a:cd:89:3b:15:b9:eb:cf:38:
                    db:d9:99:b2:c7:d0:c5:18:7c:77:a4:7c:77:e6:c9:
                    1f:82:33:f4:19:94:0b:8b:f9:27:b3:77:41:c7:de:
                    3a:7b:4d:ef:f6:b4:75:79:d0:53:fc:18:94:a9:e7:
                    c2:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:E8:29:C9:D0:7D:05:03:A8:A1:C7:CA:F7:0B:03:6C:F4:BF:A0:D6
            X509v3 Authority Key Identifier:
                keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         dd:b5:b3:29:4b:6e:04:98:c5:9d:d2:ba:69:d6:a1:54:e1:84:
         9b:73:1b:fc:06:85:8d:9f:23:ab:fc:36:7c:08:44:e0:39:7d:
         50:32:8f:7e:c5:c3:52:55:b5:d4:84:e7:85:5a:b5:ec:60:70:
         bd:81:51:63:3c:e6:a1:f9:a8:44:cc:77:5e:bd:90:ff:d2:28:
         6b:93:f3:36:f1:25:8a:73:b7:c0:2f:1a:40:4f:aa:db:2e:2c:
         d5:d1:8a:5f:97:d8:be:c3:83:e2:84:50:3f:b3:f7:61:9d:b8:
         17:a1:3b:5e:da:c5:ff:68:88:37:b9:3c:e1:44:0d:28:9d:c7:
         5f:1e:24:ee:8e:05:04:a6:5e:cd:91:3a:5b:24:93:8f:1d:44:
         f2:4a:f4:46:f4:32:b5:07:1a:34:3b:65:23:7d:88:c4:f1:0b:
         63:30:a1:0b:1b:00:79:88:28:90:db:22:e1:4a:ce:dd:82:95:
         dd:b0:48:94:5a:2b:8d:0b:c8:5d:ed:d3:aa:ee:e2:38:a1:5b:
         bf:96:f2:5a:2b:17:67:96:c4:30:67:0a:ca:b4:eb:57:d9:30:
         68:85:a2:a6:f4:b7:0c:17:4f:ca:42:90:d0:08:0a:05:ca:a7:
         33:b8:66:b2:5c:8b:fb:c1:31:15:24:36:2e:13:be:2b:1e:8e:
         1c:71:c1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:05:02 2025 by rpki-client