Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File:                     5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier:          JX3vup67JfsoqBZUDEAYyJkF1JGsxA+FnRkFRcgz9Ok=
Subject key identifier:   DF:54:CD:93:54:9B:65:40:33:80:FC:64:8C:B5:95:CF:CD:2D:8D:5C
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer:       /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial:       019761A825F1A58500963C49D0BFCC1DAD17
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number:          1589
Signing time:             Thu 12 Jun 2025 01:01:39 +0000
Manifest this update:     Thu 12 Jun 2025 01:01:39 +0000
Manifest next update:     Fri 13 Jun 2025 01:01:39 +0000
Files and hashes:         1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: 6m43ZpO9P7UZ756SWxPM/zxwMX5kFhY6CoyZE87PDeE=)
                          2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 21:26:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:a8:25:f1:a5:85:00:96:3c:49:d0:bf:cc:1d:ad:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
        Validity
            Not Before: Jun 12 01:01:39 2025 GMT
            Not After : Jun 13 01:01:39 2025 GMT
        Subject: CN=df54cd93549b65403380fc648cb595cfcd2d8d5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:ea:2f:7f:c9:ad:a3:3b:c2:37:11:27:16:e8:
                    75:cf:73:09:01:d4:d3:65:b7:33:22:e4:59:9e:c3:
                    b1:7d:a9:8d:e2:50:07:35:7f:fa:56:9f:14:36:75:
                    a2:82:32:d1:80:20:4b:23:c6:42:12:02:17:0c:b7:
                    ae:5d:db:30:bf:b9:f7:2f:eb:e9:11:96:02:12:0a:
                    9f:14:ba:63:f3:9c:8a:f8:93:fd:f5:19:a7:cd:a2:
                    70:9f:46:b2:13:da:3a:de:26:a4:cd:83:0e:b9:b7:
                    f7:6e:30:ba:8a:72:26:98:4b:c0:90:6c:3b:fd:73:
                    86:6c:2c:56:92:4d:5b:3a:b3:12:6c:94:74:e2:a4:
                    6b:b6:45:16:4c:89:b3:e0:50:69:9b:36:46:fa:83:
                    14:e4:d1:c0:d8:a9:f9:9c:c9:f1:f4:19:d7:f5:54:
                    82:03:24:9b:cc:98:14:b1:d6:88:0a:bc:ff:bf:96:
                    ba:58:b9:99:5f:e2:4d:b3:23:97:9f:3b:ac:bf:42:
                    20:20:fa:f7:a0:13:f2:38:47:2e:b7:b0:57:06:d2:
                    8c:6d:5b:0c:1d:1c:05:2f:be:29:95:b6:f6:1a:a2:
                    93:3d:f1:b8:b6:7e:2c:73:df:82:3c:17:14:a6:f3:
                    05:54:09:94:2b:a3:be:7f:d8:b3:1f:91:9f:15:ed:
                    ff:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:54:CD:93:54:9B:65:40:33:80:FC:64:8C:B5:95:CF:CD:2D:8D:5C
            X509v3 Authority Key Identifier:
                keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:1f:c3:85:3f:9a:ba:ec:f3:3f:7e:0f:3a:42:30:ef:9d:9b:
         45:d5:be:38:98:6c:2a:41:ff:9a:16:f5:37:8d:9a:a5:cb:c4:
         dd:d6:8f:94:11:4e:80:ef:02:b0:4c:56:2c:33:ea:48:1b:46:
         a5:2e:ef:e5:fb:21:18:d8:ec:16:21:b2:29:2f:01:cf:9d:ef:
         7f:17:1e:9c:d6:a5:df:c8:55:a9:a6:1b:52:2a:91:0d:ab:88:
         37:d6:09:7d:2c:af:6a:78:e9:df:20:6b:ef:f8:43:f2:dc:a2:
         f7:97:ab:dd:5c:68:6c:a9:d0:a5:95:f0:e6:ec:38:ed:96:30:
         7e:59:ec:8e:f6:a6:c2:6b:9d:7c:38:63:d4:d3:5f:ff:43:06:
         d0:20:1e:f4:7f:3a:d1:b8:1d:98:47:52:3c:18:49:d8:99:c0:
         c1:ea:97:6d:e1:d3:be:d8:1e:84:ad:c6:63:42:b0:f0:74:2c:
         f0:b2:90:0e:4b:c1:a2:a7:31:94:44:43:8c:ec:c3:9a:c4:a7:
         48:a9:3c:6e:a8:9b:eb:bb:aa:ad:56:ea:e6:57:f1:e1:70:fd:
         6f:ea:94:b7:f9:5d:8e:ba:52:47:b8:16:2b:12:db:3b:e5:48:
         b3:73:07:c1:38:3f:47:f9:23:c0:ba:15:2d:4e:41:91:fe:02:
         f8:25:d9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 04:04:34 2025 by rpki-client