Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File:                     dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier:          tJ2FkajAxgDI8wWO3Ewu82a/MwOXtNKgPMSUuSZIuB0=
Subject key identifier:   EC:5F:03:D1:3D:03:49:D4:7B:65:05:05:E3:F3:AA:0E:D8:9A:05:9D
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer:       /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial:       0197572391922702077E94C0B8F9852CD2A0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number:          0751
Signing time:             Tue 10 Jun 2025 00:00:38 +0000
Manifest this update:     Tue 10 Jun 2025 00:00:38 +0000
Manifest next update:     Wed 11 Jun 2025 00:00:38 +0000
Files and hashes:         1: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: 7vf9WpJJaxqyOZ2jIJ0x5ijTpMdyptzO3AKAMHV7mHE=)
                          2: prlrwENsP0XShm7WiJaiosrpyn4.roa (hash: N21LSr0oJqwv0f3injM4CthwAR4LuE5viTe41DT0nbI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:23:91:92:27:02:07:7e:94:c0:b8:f9:85:2c:d2:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
        Validity
            Not Before: Jun 10 00:00:38 2025 GMT
            Not After : Jun 11 00:00:38 2025 GMT
        Subject: CN=ec5f03d13d0349d47b650505e3f3aa0ed89a059d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:7c:3d:63:af:c9:a8:31:0b:a1:1e:9e:7c:64:
                    72:64:02:1f:ae:26:21:52:e4:d9:61:9a:27:2b:e2:
                    98:dd:99:11:55:f8:24:90:65:cd:91:22:3f:f6:3a:
                    1d:9a:29:ae:d8:3b:6f:e1:76:69:8a:37:a3:aa:10:
                    81:3c:9c:a6:26:85:08:eb:33:94:ca:47:ff:ee:c9:
                    c0:af:4a:42:f9:c0:15:21:63:85:f3:f3:c7:ce:ed:
                    e2:a6:96:03:9b:52:9f:17:33:4b:e7:a4:7e:1d:4d:
                    ee:eb:4d:23:9d:16:8b:a2:f1:4d:9c:c9:35:7a:73:
                    b6:6f:8f:cb:63:1d:eb:b0:5c:9a:ba:a8:0b:f6:c2:
                    9d:23:8d:a0:14:24:99:11:6d:a3:b0:50:90:16:6c:
                    42:7e:75:a9:4a:61:30:de:59:40:94:99:04:cb:0f:
                    29:58:cb:8e:5c:a5:26:19:2c:13:e7:d6:30:7e:50:
                    1c:88:98:54:25:2a:14:7a:f3:e9:ac:08:6d:92:ff:
                    95:bd:2d:db:65:75:11:c1:9a:3d:66:c1:2d:79:0d:
                    d1:19:90:0d:dd:f5:76:c5:4d:eb:56:92:e4:68:f7:
                    25:d9:a4:5d:f5:3a:92:ac:0f:c1:c7:7d:39:7d:77:
                    fa:68:6f:f4:4f:60:ea:db:a3:00:44:61:7d:a3:70:
                    ba:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:5F:03:D1:3D:03:49:D4:7B:65:05:05:E3:F3:AA:0E:D8:9A:05:9D
            X509v3 Authority Key Identifier:
                keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:fd:3c:2f:cc:8b:ec:4f:70:ea:af:67:14:5a:41:8d:c8:07:
         f5:f9:ef:d1:8e:66:44:1a:f5:72:43:12:a4:e0:2e:6a:f8:b3:
         b3:1a:8a:53:70:4d:b8:b8:6e:d3:95:8d:79:9f:60:1a:78:a9:
         03:8a:b8:6c:ea:c1:fd:77:72:11:04:94:33:8f:31:cb:e2:53:
         7e:9b:ce:eb:66:31:c9:54:6f:94:3c:a5:eb:cf:c6:d4:cc:e6:
         e4:44:c3:16:66:c9:6a:37:a7:25:cd:a2:77:67:75:20:e7:e3:
         52:6b:93:dc:58:ca:14:fb:9b:7a:6e:72:77:5b:0d:63:de:6b:
         22:02:5f:2c:1f:67:4c:04:b6:fd:ab:15:ef:4a:76:92:ec:55:
         fc:be:20:a7:0b:1d:a5:1b:7f:43:88:97:60:15:5c:26:e1:ab:
         f0:f6:11:79:61:04:0e:d1:b1:14:d3:67:c2:a2:87:fc:25:51:
         c1:c7:fc:0c:37:7a:fc:cf:c7:ac:ac:06:e6:42:8b:e7:38:69:
         73:cd:b8:f2:d6:aa:bf:83:fd:71:06:cf:58:26:ad:ed:21:07:
         2c:5f:62:26:87:20:51:75:f4:5c:af:d3:b5:85:97:43:ce:49:
         8b:86:47:3d:5f:25:f2:b1:20:8f:33:df:52:2e:ff:f1:2c:27:
         1e:e2:1e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 09:51:10 2025 by rpki-client