Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File:                     ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier:          k9rJYX8TIBGUU5xa7KddLAycCEHmTg1BtXoJPOIHCL0=
Subject key identifier:   0B:04:C2:3D:3C:F7:FA:8B:34:1D:5C:E3:82:6A:76:5B:DD:E5:6A:6A
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer:       /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial:       019760CB89457F7D1DD0FD5C2FAEDDEEDABB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number:          03DF
Signing time:             Wed 11 Jun 2025 21:00:41 +0000
Manifest this update:     Wed 11 Jun 2025 21:00:41 +0000
Manifest next update:     Thu 12 Jun 2025 21:00:41 +0000
Files and hashes:         1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
                          2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: rCbDuHj44x10VzYH5VpfKCxZH1bzUlUS1CyEykrvb3w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:cb:89:45:7f:7d:1d:d0:fd:5c:2f:ae:dd:ee:da:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
        Validity
            Not Before: Jun 11 21:00:41 2025 GMT
            Not After : Jun 12 21:00:41 2025 GMT
        Subject: CN=0b04c23d3cf7fa8b341d5ce3826a765bdde56a6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:5d:fa:e9:b1:e1:3b:ba:7f:a0:24:e0:5b:a8:
                    3a:ac:65:dd:fe:de:db:de:65:1a:8f:ab:c3:23:e5:
                    94:17:22:6f:db:62:16:ba:dc:84:11:c1:43:2f:6c:
                    69:8d:99:42:92:8e:3c:20:ef:f1:b4:4f:8b:97:22:
                    b8:b0:ee:02:55:03:5e:21:8a:e2:81:18:65:87:86:
                    0a:ab:a7:f7:3f:48:0c:ce:c9:28:e8:e1:aa:46:f7:
                    7e:8b:4d:71:8d:ed:ad:f8:5e:f0:55:c4:ca:21:3b:
                    44:5c:6c:8f:96:7a:7e:2b:f9:41:bc:c4:45:50:e6:
                    df:16:51:23:b0:23:09:34:ae:d2:57:6f:0c:47:26:
                    fd:39:97:0f:b0:be:62:37:36:88:42:9e:f2:28:e1:
                    72:a4:48:0f:a1:36:e0:e7:0e:8d:07:8a:15:6a:d6:
                    6a:79:b2:0e:0f:16:bf:7e:a5:00:76:c9:b8:f0:36:
                    5d:24:20:7b:98:d2:46:c5:54:a4:dd:eb:16:2f:b5:
                    ed:d1:40:51:61:b2:c5:13:85:6c:78:74:9d:26:cb:
                    72:0a:ed:e2:2a:e9:16:9c:9b:ce:c4:da:2d:c6:ad:
                    02:88:e7:b8:e4:4f:9c:51:12:0a:28:29:09:9b:11:
                    73:b1:ed:50:bb:70:b2:a2:1e:70:a7:b1:2e:23:c2:
                    d2:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:04:C2:3D:3C:F7:FA:8B:34:1D:5C:E3:82:6A:76:5B:DD:E5:6A:6A
            X509v3 Authority Key Identifier:
                keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:5c:53:da:9f:f0:e0:ef:bf:26:cd:f5:fa:1a:0f:f0:37:ee:
         f6:24:44:05:81:15:3b:14:41:51:7d:10:41:17:9d:32:64:79:
         a5:17:eb:b6:ab:23:60:e7:13:b0:46:a4:8d:5f:c1:8c:24:85:
         92:99:00:e6:c7:4c:7e:d7:e5:ea:39:38:e2:46:77:e5:45:d6:
         bc:a4:65:68:d9:d0:bc:2a:54:71:8a:57:ca:b8:ea:36:d6:d2:
         3d:93:9c:4e:44:05:ca:6a:02:86:ce:70:a1:d1:e1:47:b5:1d:
         e7:33:7b:ea:e9:19:63:da:61:e7:cc:ce:9f:7d:62:b5:5f:3d:
         8f:7d:08:ed:7f:e1:97:40:3f:e4:8d:64:13:49:c4:49:09:ac:
         63:49:3b:ea:5f:67:33:7a:f0:8f:03:d5:0b:27:98:fa:c0:5b:
         ef:89:44:06:1c:cf:2e:9d:4b:4d:ba:f5:56:20:c3:5d:63:f7:
         33:b5:18:24:c7:ac:80:b0:4f:40:11:66:8e:2b:48:69:bc:62:
         d1:5b:09:2c:84:6b:30:ed:c4:d5:50:ac:27:df:0b:f5:33:0e:
         14:05:30:68:3f:3e:c3:7e:34:9e:37:0c:b4:c6:8b:85:29:17:
         a0:58:7c:8e:35:cd:be:e8:fa:68:5a:bc:a1:f0:9c:79:b3:c8:
         4f:9f:95:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 23:45:58 2025 by rpki-client