Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
File:                     sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json)
Hash identifier:          Hcy6iyx2unpKu7kkyzXkvil0jvt25PU1zvcQsHXWyek=
Subject key identifier:   DC:9E:48:30:8B:5A:60:C9:EB:7A:F5:3C:4C:E6:92:B1:18:A4:16:F5
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Certificate issuer:       /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial:       01976583EA5A31C2C357F4B29E39A32A54F8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
Manifest number:          0A6F
Signing time:             Thu 12 Jun 2025 19:00:33 +0000
Manifest this update:     Thu 12 Jun 2025 19:00:33 +0000
Manifest next update:     Fri 13 Jun 2025 19:00:33 +0000
Files and hashes:         1: Ewu_L9NGAMIn9J1bD2mKPYHfLN0.roa (hash: MPg//qxTuFJeVfIte2bOUUVJ5G8w+mQ6T68mV0V7xWY=)
                          2: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: iBmUfXCcXGfN+lCh19LRMd5aXUaevc8fJV4SutjeAkA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:83:ea:5a:31:c2:c3:57:f4:b2:9e:39:a3:2a:54:f8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
        Validity
            Not Before: Jun 12 19:00:33 2025 GMT
            Not After : Jun 13 19:00:33 2025 GMT
        Subject: CN=dc9e48308b5a60c9eb7af53c4ce692b118a416f5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:45:71:02:8c:56:43:eb:97:c7:d2:91:c0:74:
                    37:be:87:dd:63:3b:f7:06:d4:8b:92:1d:80:33:45:
                    f6:41:10:88:53:77:df:0a:69:4c:5b:a2:cc:1d:e9:
                    a3:7e:4b:cf:c8:89:61:da:b0:e4:d7:c1:4a:b3:03:
                    e7:2b:e8:b4:10:a3:8e:b0:40:36:71:e9:f9:37:0c:
                    b8:66:d2:ca:e4:cb:2e:22:d7:c6:4f:75:01:5b:17:
                    2d:e8:eb:68:4a:90:72:8c:08:e4:99:f1:b7:ab:83:
                    aa:25:72:7d:fe:da:a9:0c:01:c8:c8:ab:83:ce:43:
                    33:8e:d1:a1:00:15:fa:79:29:1b:38:69:29:13:37:
                    5f:e0:6f:83:04:67:dd:73:58:43:a6:b5:f6:7e:4e:
                    cf:df:a1:b8:35:f3:c9:ca:38:ec:80:dd:02:c3:c3:
                    92:eb:36:2d:94:ea:b5:d2:e5:32:13:72:78:1f:b3:
                    d8:b8:fa:28:cc:df:14:b2:14:ce:c1:ed:98:ad:5d:
                    44:32:fe:c9:d9:9a:32:97:ce:3b:7f:ad:f6:bf:45:
                    6d:47:17:b0:1e:30:11:7d:b5:25:60:3a:67:8e:af:
                    44:bb:e4:9a:ed:db:e7:64:1f:9e:5c:00:2d:48:54:
                    19:d0:a7:da:f2:8e:93:60:17:ba:e9:cd:84:8b:ca:
                    c4:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:9E:48:30:8B:5A:60:C9:EB:7A:F5:3C:4C:E6:92:B1:18:A4:16:F5
            X509v3 Authority Key Identifier:
                keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:88:55:9f:43:fc:fa:c8:6d:4b:04:63:7e:9f:0c:ff:c8:d6:
         e5:47:57:00:2a:58:99:49:08:49:5b:a4:99:80:43:e5:4b:8d:
         95:58:0f:d7:b0:3a:8b:d1:20:a3:02:5b:4c:cf:7b:4a:ad:34:
         a7:ed:31:43:ec:7a:72:cf:64:77:56:03:84:35:66:ea:d8:01:
         fb:14:af:de:78:d4:1b:60:9a:de:6e:da:28:5f:e2:89:70:65:
         84:30:89:9a:22:26:3b:d2:b4:08:b0:97:e8:8c:37:1d:c3:9d:
         70:06:ef:79:30:09:6c:50:35:53:13:ba:87:26:07:79:eb:b0:
         64:2f:23:e6:0c:5a:16:37:9b:37:02:de:e6:5d:98:1d:57:61:
         0f:2e:6f:91:f8:c6:5c:a4:c2:0e:28:ec:58:fd:54:0a:a2:df:
         c3:56:12:9b:df:a1:5d:54:15:b0:3e:d7:9e:32:e6:67:98:86:
         4d:9a:92:02:f2:5f:ae:80:6a:8d:4a:18:df:84:0c:6b:ea:14:
         28:de:3f:bc:1f:b3:db:52:de:09:e8:ce:d0:35:80:99:81:08:
         39:11:8f:eb:68:87:f5:87:c6:4c:52:86:64:63:7c:b7:55:a8:
         ed:93:d1:46:66:1b:eb:74:b2:a5:66:2d:c4:30:21:00:5a:b6:
         a7:20:b9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:31:28 2025 by rpki-client