Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File:                     xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier:          Pf9nlZS6FPk5k/FGTAqsXy0gmy2z2TLWkVvZi5hvGrk=
Subject key identifier:   17:42:63:D9:9F:26:A9:54:CF:52:12:C9:A0:CC:65:01:69:FE:D7:53
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer:       /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial:       0197586DC829C3805E61565AE0399D7C434D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number:          13D9
Signing time:             Tue 10 Jun 2025 06:01:18 +0000
Manifest this update:     Tue 10 Jun 2025 06:01:18 +0000
Manifest next update:     Wed 11 Jun 2025 06:01:18 +0000
Files and hashes:         1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: e4YqOHh1ryrDG2ePWxuHILif3/cNDdiLFMSq+jakj3I=)
                          2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 06:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:6d:c8:29:c3:80:5e:61:56:5a:e0:39:9d:7c:43:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
        Validity
            Not Before: Jun 10 06:01:18 2025 GMT
            Not After : Jun 11 06:01:18 2025 GMT
        Subject: CN=174263d99f26a954cf5212c9a0cc650169fed753
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:df:33:72:95:96:ec:ad:45:f2:1a:2a:35:1f:
                    c6:5c:ac:33:4a:24:68:97:e7:af:d6:02:e5:45:06:
                    cc:bc:9e:0d:a5:5f:5e:1c:d6:68:4a:a1:b4:49:b9:
                    19:8e:5a:80:8f:92:1e:ce:88:73:08:d0:1a:46:4a:
                    8d:60:02:e2:9c:a2:1b:c2:b6:b9:69:6d:ab:24:f9:
                    62:18:12:d2:e7:cd:67:72:0a:35:7a:07:b5:65:00:
                    52:a3:31:7e:90:c0:25:bb:0c:85:79:22:08:d4:25:
                    6e:84:f2:bb:e6:2e:85:b7:4e:84:c9:0a:2e:0a:ba:
                    9e:38:fd:f2:9e:d4:0a:26:af:72:1b:d7:5d:b4:44:
                    e8:1e:a9:a1:b1:9f:10:9f:00:56:ec:a5:cf:79:50:
                    ab:e2:6a:7c:5c:e9:02:28:16:4c:bc:15:e8:8b:59:
                    65:b9:8d:56:0d:47:32:67:70:a8:13:a8:78:90:7c:
                    2c:91:b8:41:bb:f9:5c:f4:a5:aa:04:7a:29:e5:61:
                    63:29:ab:1a:d1:57:f8:df:0b:e9:6f:e1:ad:8f:77:
                    64:c7:49:14:39:4a:75:fb:f8:83:77:2f:22:a6:fa:
                    bf:18:4a:ba:bf:cf:ac:1f:22:01:b8:9c:eb:e9:d1:
                    6d:91:24:23:71:ae:19:09:81:e9:9e:f5:e4:17:f6:
                    30:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:42:63:D9:9F:26:A9:54:CF:52:12:C9:A0:CC:65:01:69:FE:D7:53
            X509v3 Authority Key Identifier:
                keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:cf:3f:ce:d9:ce:27:33:d1:29:d4:9d:99:2e:94:d9:5a:5c:
         a3:29:4e:54:97:65:8d:b5:49:f7:6b:ab:72:cb:a1:9a:25:c8:
         73:e1:5c:4f:b6:76:69:dd:fa:31:8b:86:af:6e:b3:5d:37:4d:
         72:61:34:2d:ff:0a:03:86:08:a7:12:1a:82:d1:f1:28:c6:e2:
         2a:90:65:11:9e:ee:78:d5:69:53:e0:fd:14:71:67:c7:9e:a4:
         96:e2:af:5a:04:b3:e9:26:51:52:49:f4:11:7e:4a:01:64:8b:
         a0:85:4d:81:e4:46:dd:46:7f:12:ca:82:f1:7f:a7:65:92:ec:
         71:ff:de:6b:39:c1:2d:b5:46:f3:10:2d:ab:db:5b:72:0a:bd:
         6a:9c:a8:9d:76:f7:c1:47:d4:36:8b:43:b4:b6:9e:3f:5b:30:
         79:46:00:28:e2:17:cb:1e:9b:88:bc:97:ed:27:14:96:b8:7e:
         f7:16:e8:13:00:a0:f6:7d:85:63:45:86:25:5a:62:69:c5:30:
         8e:ba:b4:98:f3:d5:c7:8b:31:e9:13:e7:bb:8d:95:35:ec:d0:
         7c:ee:91:05:1b:d0:de:58:a3:37:1b:a5:a3:2b:4e:c2:3c:73:
         36:ce:0e:64:33:a3:59:48:4d:b2:c4:b5:1b:42:00:c1:f1:b1:
         2b:ad:9f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:28:39 2025 by rpki-client