Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
File:                     ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json)
Hash identifier:          wJINaLGXaRZ+1nbn9RYqfyOtM+vzX3x46qLYZgB+qkg=
Subject key identifier:   7A:19:8D:52:C6:E7:4B:DA:FD:28:D6:03:F2:2E:2D:5E:D7:B0:D5:71
Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
Certificate issuer:       /CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Certificate serial:       01976C2ACE911E22FB19032F87A62EA2B7F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
Manifest number:          158E
Signing time:             Sat 14 Jun 2025 02:00:34 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:34 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:34 +0000
Files and hashes:         1: NJmmW764rdnW_zIUswA3g-8-n2M.roa (hash: uNbv9sZggt1kjUfoR4Ji7KAa4WT9RRySZVjN33ZdWTA=)
                          2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: UcTQC/UMUjsmK5glWjA45fy0RD0PdD/PtH7wTqxQmC0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2a:ce:91:1e:22:fb:19:03:2f:87:a6:2e:a2:b7:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4
        Validity
            Not Before: Jun 14 02:00:34 2025 GMT
            Not After : Jun 15 02:00:34 2025 GMT
        Subject: CN=7a198d52c6e74bdafd28d603f22e2d5ed7b0d571
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:8e:1f:1b:30:2b:56:a7:81:1b:21:0d:cb:78:
                    6c:2d:34:1c:ad:e3:c2:16:fb:fd:a5:4d:80:10:fe:
                    f5:40:0e:4e:06:c1:2e:07:af:c1:de:1d:8b:df:73:
                    0e:5e:fa:a7:12:52:66:a1:77:f4:65:4e:42:ae:08:
                    7b:aa:53:f2:6e:55:a3:2f:ee:25:a5:ca:29:54:d3:
                    90:23:67:d1:bf:68:62:9d:f4:5d:f7:17:c5:08:57:
                    0e:08:a3:ab:e8:36:6f:76:37:8b:8a:c6:4d:e3:de:
                    aa:13:8b:70:38:39:a4:d2:08:8a:01:67:97:7b:1d:
                    06:40:1c:ca:08:8a:d5:10:fa:a7:bb:fb:34:61:79:
                    23:8b:fd:40:64:5f:f9:da:f8:71:1a:29:f2:e9:28:
                    d6:b6:b6:19:b6:63:a7:b5:e9:5e:6c:42:19:55:4d:
                    0b:68:37:1e:a1:1c:21:1a:ef:a4:fc:46:05:be:2f:
                    64:a7:cc:52:87:fe:33:de:af:56:aa:5a:fb:13:c9:
                    be:7f:7f:b9:c8:22:7c:16:a5:9a:f9:b7:86:2e:c7:
                    1a:be:9e:6e:f3:f9:7f:f1:08:d2:24:c9:09:3f:30:
                    19:83:10:0e:0d:49:c0:8f:37:6b:e0:0a:2d:94:04:
                    81:28:50:9e:3a:71:40:14:99:12:89:e5:63:63:28:
                    7a:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:19:8D:52:C6:E7:4B:DA:FD:28:D6:03:F2:2E:2D:5E:D7:B0:D5:71
            X509v3 Authority Key Identifier:
                keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:5f:32:18:87:96:17:4a:90:38:71:cb:10:22:f4:0e:c8:ce:
         d7:57:03:25:e2:4d:27:1c:15:44:fa:4b:e5:5a:90:68:2d:8b:
         44:d2:da:eb:cf:2f:b2:ad:44:ad:14:ae:c9:c7:19:77:6b:e7:
         54:09:a1:bd:d8:cb:77:80:00:1c:79:b7:d3:73:5c:70:04:42:
         6d:d0:f9:d0:8e:2b:7f:ea:a8:0f:2c:92:53:26:c4:ee:54:20:
         f2:71:65:d9:b1:fe:89:21:99:29:ed:81:b5:35:23:bc:f0:d0:
         c8:cb:06:4d:b5:54:3d:cb:a0:2a:75:12:03:a4:64:09:54:53:
         48:30:a1:7b:59:0d:a1:6e:fe:40:32:1d:86:24:92:3b:c3:6f:
         97:ed:39:95:ba:c6:51:9e:93:79:ea:10:63:99:8e:06:cb:45:
         c9:6f:be:5e:a8:62:7a:f2:dd:ea:53:0d:68:88:5c:14:1a:6c:
         c4:47:94:5d:1b:e6:08:97:74:e5:44:c8:79:f8:7b:68:3d:70:
         05:30:c7:ef:bb:d4:2b:4c:3a:a1:1f:d5:eb:e4:ef:77:f1:5a:
         93:6a:83:a6:8e:2a:27:c0:af:e1:34:6c:8b:80:e5:fa:02:7b:
         5b:f4:9a:ec:4a:7f:04:63:b9:57:bc:6e:a4:bc:e3:e3:ee:72:
         71:6e:12:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:43:58 2025 by rpki-client