Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File:                     5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier:          SMR1JYXrKsbL+zWSNbV56NHmOkx49N14tybSn/ov+KI=
Subject key identifier:   6C:B2:B5:92:25:26:22:D5:5E:64:BD:92:62:9A:68:1C:72:33:C9:44
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer:       /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial:       01976F2C812521ED2A06B458A9C6017A2527
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number:          1590
Signing time:             Sat 14 Jun 2025 16:01:17 +0000
Manifest this update:     Sat 14 Jun 2025 16:01:17 +0000
Manifest next update:     Sun 15 Jun 2025 16:01:17 +0000
Files and hashes:         1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: vua0tEwlqTDYRj0M7c/XWORW5w0W8CFIhK3aAhwaYP8=)
                          2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 10:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2c:81:25:21:ed:2a:06:b4:58:a9:c6:01:7a:25:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
        Validity
            Not Before: Jun 14 16:01:17 2025 GMT
            Not After : Jun 15 16:01:17 2025 GMT
        Subject: CN=6cb2b592252622d55e64bd92629a681c7233c944
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:cf:ea:0b:f3:7a:f2:89:01:a0:4c:5d:6d:91:
                    29:7b:4e:e6:c3:f4:85:76:9a:e6:03:47:9f:fa:41:
                    a6:93:cc:da:f9:cb:16:92:a4:9c:7c:8e:75:e5:5f:
                    5c:ae:cf:0c:f3:8e:35:2d:bc:84:0c:7f:c6:9f:26:
                    45:9e:5c:c2:4e:10:7c:72:e0:39:00:1b:f8:85:2e:
                    13:01:07:c2:13:14:d8:81:33:7a:22:1a:43:a2:66:
                    00:8d:62:8d:ca:d6:e8:d9:0d:e6:e0:c0:cf:a9:1a:
                    92:bc:09:c7:52:d2:60:c6:5c:25:6b:42:58:62:33:
                    c1:56:e5:22:ef:f8:2a:03:07:af:41:73:72:5e:50:
                    2a:e0:b9:dc:61:d9:49:64:2d:0c:43:ec:78:ce:51:
                    92:fc:45:36:44:c3:bf:84:e7:52:cf:de:fd:16:37:
                    43:1a:d3:4e:10:01:ca:4b:c4:6b:80:0b:e7:17:f5:
                    34:e3:ec:33:31:49:2d:f8:1e:62:40:2f:70:94:1a:
                    06:62:46:dd:dd:da:cf:26:9d:65:ce:5e:52:75:b1:
                    76:25:0f:66:68:a5:07:8f:fc:af:28:e8:ad:64:af:
                    5f:24:66:d6:a8:fc:56:6c:23:6e:d8:c1:c2:d7:9d:
                    f6:26:58:42:5f:09:00:31:8c:c1:cb:d3:2b:8d:3e:
                    16:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:B2:B5:92:25:26:22:D5:5E:64:BD:92:62:9A:68:1C:72:33:C9:44
            X509v3 Authority Key Identifier:
                keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:21:d4:a1:a9:29:96:33:22:46:5a:48:75:77:7c:fe:e5:03:
         73:27:bf:f4:09:e0:49:dc:08:38:c0:82:05:23:cf:aa:e3:ec:
         ef:97:09:ec:cf:ee:03:55:5b:47:2f:6b:e6:d4:43:8b:25:2e:
         84:94:e7:ba:87:31:1a:d7:67:fb:1e:fe:d4:0d:16:ed:1a:0c:
         35:fd:9d:c6:f0:05:52:f8:31:a7:17:ea:10:07:97:30:91:e7:
         e7:bb:98:64:c6:42:62:7e:19:f8:1c:3d:6f:0a:44:88:2e:e0:
         fe:8c:9e:f9:35:40:c0:41:8f:07:53:4b:b6:68:01:21:81:ad:
         ce:98:2f:c2:f4:89:fb:32:0c:28:40:88:cf:78:da:bb:b8:f0:
         b7:33:a1:0d:43:29:70:7d:9d:db:73:cb:08:69:51:cf:50:d6:
         64:97:71:ed:15:f3:6e:0c:bb:f7:24:0d:2e:5a:03:f7:1f:51:
         74:f8:d3:19:0d:c5:df:c7:b0:74:c3:60:88:44:3e:d5:59:e0:
         3e:70:20:62:76:39:fb:b8:3d:8f:8b:ad:7c:a9:05:9c:43:e0:
         0b:76:92:32:ae:d5:40:33:ea:78:03:a5:eb:0a:e1:23:24:4e:
         11:d8:83:91:b1:de:79:cc:3f:37:30:1d:14:b0:7e:f3:29:6a:
         3a:8f:4a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:42:38 2025 by rpki-client