Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
File:                     vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json)
Hash identifier:          ec7ccsAh4R+wlkwGQF+0Z4SUJgqaYPjLs+IDtf7UwEc=
Subject key identifier:   28:2D:50:B1:78:8F:D6:F3:EE:DB:6A:66:19:6D:5A:47:E0:D5:1B:68
Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
Certificate issuer:       /CN=be370733b8db614daa760a002c24048028300e2d
Certificate serial:       0197553530C67393AE6892BD39A5AE78C270
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 15:00:38 +0000
Manifest this update:     Mon 09 Jun 2025 15:00:38 +0000
Manifest next update:     Tue 10 Jun 2025 15:00:38 +0000
Files and hashes:         1: paMGJN73rjp1fa_w9RA1xrwwx18.roa (hash: Z6fxiaAqnra9zk/dGdgt7claLY2U/7DrFceSHabOI5E=)
                          2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: 7AQJSuXMilZ7pyB+5Bb9t3ZG3zKrCgGKFdedWskypEA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:55:35:30:c6:73:93:ae:68:92:bd:39:a5:ae:78:c2:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be370733b8db614daa760a002c24048028300e2d
        Validity
            Not Before: Jun  9 15:00:38 2025 GMT
            Not After : Jun 10 15:00:38 2025 GMT
        Subject: CN=282d50b1788fd6f3eedb6a66196d5a47e0d51b68
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:09:13:97:66:73:37:37:b6:36:94:56:ff:ef:
                    30:58:87:fc:20:ba:bb:ab:b7:dd:ed:a0:00:88:c0:
                    7c:4a:7c:40:82:78:9f:f2:11:2c:27:f1:78:cd:2b:
                    0c:0e:b9:17:36:30:00:9f:9a:76:01:9f:8e:8c:d4:
                    ca:bb:e6:74:9a:b0:94:2b:54:38:63:87:09:02:f3:
                    2e:a1:9a:cd:5d:e7:7c:4b:00:a8:05:d5:e9:4d:94:
                    d4:eb:18:5a:5b:50:05:f2:c1:07:ce:4a:ac:03:33:
                    09:8e:46:73:e6:70:39:ac:0b:4d:19:f5:15:df:f0:
                    67:54:f4:ac:3a:85:de:4e:ed:de:44:b7:b7:b7:a8:
                    54:84:c8:e4:aa:f1:ac:c1:8b:52:f7:2c:38:c2:36:
                    97:a0:45:d2:9a:d7:aa:d5:54:8d:d0:cc:75:5b:df:
                    d4:9b:6f:89:3b:ea:0f:77:55:c1:42:4e:48:0c:fb:
                    8f:ca:b4:16:22:e0:f5:d5:ae:c4:87:23:e3:62:90:
                    27:73:9b:d3:cc:6c:26:61:0c:ff:51:55:ee:35:c5:
                    56:0c:83:36:2c:5b:46:15:ee:c7:e4:aa:3c:46:9d:
                    06:e1:08:f4:85:bb:9b:90:01:b0:e9:19:8b:5c:db:
                    03:0d:54:1c:ec:be:94:f6:6f:da:ad:87:3c:1d:10:
                    3f:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:2D:50:B1:78:8F:D6:F3:EE:DB:6A:66:19:6D:5A:47:E0:D5:1B:68
            X509v3 Authority Key Identifier:
                keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:4f:c1:89:b7:16:2e:da:b1:02:ed:1d:b3:eb:b1:de:e8:92:
         a9:ae:a3:da:c6:6c:a6:4a:60:f4:b1:f0:09:41:a1:42:a6:b3:
         6d:eb:36:7c:bb:d8:ac:18:c2:08:49:37:cc:e1:b2:80:1b:e3:
         b9:1e:3c:08:a9:36:3a:76:30:36:f9:d2:d6:d6:e1:c4:57:50:
         81:a2:56:72:d5:b4:7b:78:04:f3:58:f1:82:4d:67:f6:d0:96:
         80:2b:76:bf:fe:ec:46:9f:15:3f:b4:73:a1:c6:89:14:e7:49:
         ab:c3:bf:61:c1:40:fb:94:91:65:07:a8:40:ef:3c:42:71:8d:
         05:ca:fb:58:9d:2c:21:cd:33:88:7b:b2:fa:7d:56:41:08:d9:
         b4:75:f9:2c:cc:dd:ed:3a:bd:58:1e:f3:f5:34:5b:5c:81:c1:
         5a:9c:68:96:b0:7c:8d:09:b9:e1:38:59:2b:71:23:25:0f:18:
         c9:6b:cd:e9:d0:77:67:5c:85:41:52:4b:28:9f:72:ce:0a:45:
         81:ae:87:e5:bc:15:5c:5d:df:64:5b:ef:ac:9e:84:f6:ff:e5:
         e1:54:a3:dc:85:3d:4a:6c:15:60:f0:1f:0c:03:1d:86:2a:df:
         16:85:b7:1c:86:4e:fe:78:c2:95:60:00:8a:c0:19:3e:6d:23:
         f0:6b:22:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:13:32 2025 by rpki-client