Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
File:                     ihZhi3H_yA4cP0HtDfyJq16WP9I.mft (raw, json)
Hash identifier:          x3lwl55ju0FMZrJlZy2hQEmwmVnhg68yZKSxVIFr5tc=
Subject key identifier:   1B:41:4F:19:D4:63:87:59:F5:16:23:8C:D6:6F:59:4A:2B:2A:45:99
Authority key identifier: 8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
Certificate issuer:       /CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Certificate serial:       01975CEEC52484900B35AB29B9E84E666B28
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
Manifest number:          158D
Signing time:             Wed 11 Jun 2025 03:00:41 +0000
Manifest this update:     Wed 11 Jun 2025 03:00:41 +0000
Manifest next update:     Thu 12 Jun 2025 03:00:41 +0000
Files and hashes:         1: ExfUqNEW3Lyq9Nl7Jq22WcfJ1rw.roa (hash: 6SjZfPEMGV4QZNr6XzSlmm+VNkfjjPfYSSMSKKIpL5E=)
                          2: ihZhi3H_yA4cP0HtDfyJq16WP9I.crl (hash: Mec/Nm4jpNjADTYN8r6pDxLRWBthYbRfA/WFY+IlVJw=)
                          3: vuckuXbmedLIJWITtJ1gJzQY8X0.roa (hash: BujWwxtiu31OcVkERDwp6qXjCF/qZpedTzNgbY+R4ug=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 23:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:ee:c5:24:84:90:0b:35:ab:29:b9:e8:4e:66:6b:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
        Validity
            Not Before: Jun 11 03:00:41 2025 GMT
            Not After : Jun 12 03:00:41 2025 GMT
        Subject: CN=1b414f19d4638759f516238cd66f594a2b2a4599
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:c9:a4:22:ee:6e:25:85:01:e2:17:b6:b3:5a:
                    17:3b:2c:12:e7:9d:62:f2:9b:ed:3f:a3:c4:7f:48:
                    ef:a5:ab:7e:95:87:29:d6:4c:35:ae:ac:27:50:10:
                    9b:b0:34:8b:01:d8:dd:a9:4c:de:8a:af:c8:ad:ea:
                    3a:6e:bf:8c:ee:b1:92:3f:83:3e:d9:d2:fe:6a:d0:
                    ae:3a:51:46:7d:49:3e:28:e1:6b:2b:6b:72:e3:d6:
                    1e:b5:88:b7:7e:19:b3:7a:35:f6:d1:39:03:89:2f:
                    e3:98:ab:63:65:5e:42:0e:52:86:fe:2a:fc:e1:7e:
                    2d:de:7b:33:8c:39:8c:a7:5c:09:a0:a0:31:42:24:
                    04:41:b9:e9:13:77:71:61:99:4b:48:34:f0:af:7c:
                    0c:2d:cc:99:b2:b9:ae:b6:9c:13:35:eb:6a:1a:19:
                    20:05:59:5c:2a:be:a5:d6:42:f7:63:ae:b4:57:b2:
                    72:3d:63:25:8d:38:8c:7b:91:7e:45:c6:23:a4:c9:
                    9b:23:c7:d4:06:4a:3a:39:a1:c5:34:b4:82:bb:96:
                    1f:d0:73:ea:d6:5c:6c:b7:01:9d:12:69:51:ba:02:
                    03:87:9f:4d:ae:3b:af:5d:6b:21:47:ab:5a:9e:67:
                    90:1f:c8:67:79:17:f0:8a:ba:b2:ea:17:8c:6a:58:
                    de:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:41:4F:19:D4:63:87:59:F5:16:23:8C:D6:6F:59:4A:2B:2A:45:99
            X509v3 Authority Key Identifier:
                keyid:8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:49:3e:f9:f3:ce:28:dd:1c:c8:cc:d1:73:9d:f1:0c:ba:ab:
         1a:f0:85:8a:d3:b1:c0:9f:9b:0f:69:65:aa:c6:e9:ca:de:ee:
         47:c2:de:41:5b:21:93:ea:7a:3d:8b:ac:30:6b:a0:b4:ab:13:
         d0:14:a8:2b:5b:f4:43:07:a6:e8:ac:5a:b7:bb:f5:c0:c6:c4:
         96:57:63:af:30:da:18:3c:88:5f:cc:f5:b2:62:5f:3e:ea:a5:
         c4:a1:8e:a2:8b:db:d6:6f:72:09:ee:bc:35:cf:82:8d:a6:12:
         ff:d3:39:af:65:31:d3:6d:a1:d6:56:9a:ce:6e:81:b1:7b:50:
         fa:19:e1:a3:50:0b:59:41:68:70:7f:30:e1:cd:43:7a:f9:a8:
         1d:dd:34:f8:82:f5:e4:a7:c9:2c:50:18:fb:3a:36:a5:b3:6c:
         ad:71:5c:dd:6c:37:6e:b4:b5:21:8d:6e:27:21:20:56:27:3f:
         e3:08:03:7b:7b:ce:a9:ef:a4:87:39:6a:24:71:30:82:76:bb:
         83:8b:87:a2:05:c7:41:3b:5d:b8:28:8d:6d:36:4c:6d:59:ce:
         85:3e:13:f9:3d:27:5c:cc:30:fe:88:c4:7a:5b:5a:be:0c:27:
         06:a4:bb:75:fb:74:41:c0:aa:a9:c5:78:1e:ed:b8:0b:84:1d:
         1e:26:3c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:54:00 2025 by rpki-client