Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
File:                     L-QXNib0YCZA6NTpa1ShoJar54s.mft (raw, json)
Hash identifier:          4s/80fhduP/oLHQPBWwJspzchq2rSWpO/tuJuk5Ql7s=
Subject key identifier:   00:89:7B:76:00:54:A2:75:3E:4A:F7:8F:4E:4F:E8:3B:65:D2:FD:B4
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Certificate issuer:       /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial:       01976C2A904DE788E2F1266AB2EA261DD558
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
Manifest number:          107C
Signing time:             Sat 14 Jun 2025 02:00:17 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:17 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:17 +0000
Files and hashes:         1: 8PzBSdujNIrE9ZxwXkq7Jh0bBAs.roa (hash: 4Awpnumk+tPfHQxPVq+VsOA860hCJdP+GfTQ/2K+zcA=)
                          2: L-QXNib0YCZA6NTpa1ShoJar54s.crl (hash: otOCwL9dJWUO/bk+4Cq1kpR6xrmeLUs9fWZtZGDA9wQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2a:90:4d:e7:88:e2:f1:26:6a:b2:ea:26:1d:d5:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
        Validity
            Not Before: Jun 14 02:00:17 2025 GMT
            Not After : Jun 15 02:00:17 2025 GMT
        Subject: CN=00897b760054a2753e4af78f4e4fe83b65d2fdb4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:e2:7d:c5:2c:ac:8c:a6:86:7e:a7:b5:b4:cd:
                    38:9b:01:71:72:ec:81:20:a3:ba:37:c4:41:54:0d:
                    7a:03:86:ac:75:b9:68:4f:fc:55:f3:8f:9b:6c:d9:
                    7b:a0:17:5e:16:48:61:5c:bb:d8:d0:ff:63:60:c1:
                    07:17:e2:55:8c:80:b1:61:d3:d8:57:c4:09:c1:f2:
                    aa:5d:e0:24:4e:76:69:70:02:b7:1e:5d:5f:15:68:
                    f2:f1:11:f4:0b:39:53:1a:11:28:b3:6d:10:0e:fe:
                    4c:f5:a5:76:c4:7b:9a:20:f6:b3:67:2c:a3:27:8e:
                    19:9c:d3:79:31:de:3c:3d:f3:87:f6:ef:d1:39:6d:
                    0a:c3:64:ed:a3:00:69:8f:51:bd:0e:75:ca:43:c0:
                    ca:d7:e0:fe:20:11:bb:6d:81:36:4e:b0:c8:e3:8e:
                    11:bc:1b:26:c6:39:59:37:51:74:0f:18:2f:f6:b6:
                    ac:4f:37:4e:9b:f4:b9:33:4e:be:13:12:8f:77:90:
                    e4:4f:b4:94:6f:83:db:f2:fc:54:21:fe:7d:b7:a1:
                    35:60:f6:c2:7e:5c:0e:27:19:ab:28:33:e8:22:90:
                    ac:2d:26:21:d5:00:09:9d:bf:f1:af:b8:df:1e:a8:
                    43:b1:16:02:3b:c3:b2:1a:94:b7:56:81:25:e4:35:
                    e9:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:89:7B:76:00:54:A2:75:3E:4A:F7:8F:4E:4F:E8:3B:65:D2:FD:B4
            X509v3 Authority Key Identifier:
                keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:4d:01:e8:ff:75:36:f4:be:81:80:00:df:c6:b8:39:41:d4:
         f0:28:1c:52:52:eb:77:4b:c0:cb:21:c1:bc:ad:54:a3:d2:3f:
         9e:8b:b9:7d:a9:1f:71:71:d0:9b:77:f8:96:53:9d:01:b8:0d:
         88:06:81:34:34:f2:7d:cd:c8:28:b0:d5:0c:27:cc:94:c9:44:
         d0:2b:74:09:fc:23:e2:0f:cf:2b:12:26:7a:d3:6d:06:11:54:
         21:76:df:9e:da:a7:7a:6b:4d:93:7f:47:85:3b:7f:bc:b7:10:
         92:d5:1b:91:ca:4a:bc:ef:7b:39:cf:90:23:af:44:f0:10:55:
         e7:43:a3:c4:53:5e:c0:04:2f:13:df:49:26:31:14:8d:59:2d:
         88:24:07:98:2e:f5:bd:af:4f:c6:0b:6e:8c:11:f2:37:20:16:
         b9:80:1e:d1:0c:2a:5d:ef:6d:b3:76:59:ba:c8:52:f0:c6:d9:
         58:10:ea:1d:19:e6:ae:49:bf:86:c7:45:20:25:b4:01:9e:b3:
         67:5b:06:53:0e:e0:b9:f3:5f:14:b0:c9:5c:85:4c:7e:a8:e4:
         34:42:10:53:35:92:3f:b7:66:3a:0f:02:07:7f:ef:4a:b5:f5:
         77:f8:44:e1:34:11:94:b8:c8:d5:32:e8:cc:97:72:fb:ce:fb:
         20:7f:aa:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:22:06 2025 by rpki-client