Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File:                     ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier:          auhF8DWuP1Qd3faw7zN5jEZGo0X038qy/VzYILKRG50=
Subject key identifier:   32:50:B1:E5:2E:12:7A:7C:CE:45:80:1B:D0:58:8F:76:85:EE:D8:BD
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer:       /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial:       019764A845343059AAB589238F50937C56BE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number:          03E1
Signing time:             Thu 12 Jun 2025 15:00:38 +0000
Manifest this update:     Thu 12 Jun 2025 15:00:38 +0000
Manifest next update:     Fri 13 Jun 2025 15:00:38 +0000
Files and hashes:         1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
                          2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: lU3Q7IUacstSerI+7OE5VRZCEqhC2V3T5orFWYrPADo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:a8:45:34:30:59:aa:b5:89:23:8f:50:93:7c:56:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
        Validity
            Not Before: Jun 12 15:00:38 2025 GMT
            Not After : Jun 13 15:00:38 2025 GMT
        Subject: CN=3250b1e52e127a7cce45801bd0588f7685eed8bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:f4:a9:5b:de:1c:a8:6c:aa:d7:f9:e7:be:2a:
                    49:1b:46:e8:a8:86:62:d7:f5:88:5f:4e:84:63:c5:
                    a1:fb:13:db:d5:54:97:23:bc:80:f3:18:7b:c1:34:
                    94:90:17:1d:80:74:72:04:87:4f:58:6a:a3:8c:04:
                    91:35:2a:7e:de:b3:2e:ee:52:89:4e:bf:0e:50:2a:
                    1d:f4:f2:df:b6:fb:ab:4c:39:ee:bb:a6:0e:30:1c:
                    2a:1b:82:8b:b3:11:41:80:38:3a:8d:f6:bc:59:3b:
                    c2:d0:d0:ee:65:07:d2:5e:b1:69:9b:84:8e:7c:63:
                    78:bc:8b:f0:6e:b9:af:df:27:e3:5e:e4:14:22:7b:
                    7f:d9:ce:6e:e5:24:12:7a:52:8d:e3:27:1c:25:92:
                    5d:88:6a:d5:cc:c3:0b:ae:04:4e:7a:00:94:57:77:
                    8a:ee:4a:63:5f:80:4f:87:6d:9e:24:9f:6b:3f:4c:
                    e9:d4:ac:54:fc:fb:6d:c3:b7:b4:47:67:14:76:3e:
                    48:b1:88:f4:81:ec:93:c5:01:fc:45:67:3a:87:bd:
                    80:97:85:e5:7f:4a:89:dc:83:67:ef:ae:27:58:8c:
                    48:44:9f:b6:46:89:dc:98:72:45:60:88:4a:5d:ee:
                    7f:eb:b7:a0:cf:85:05:73:9e:c9:ac:a5:ba:0c:48:
                    06:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:50:B1:E5:2E:12:7A:7C:CE:45:80:1B:D0:58:8F:76:85:EE:D8:BD
            X509v3 Authority Key Identifier:
                keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:b9:48:15:80:98:62:12:61:23:b9:f6:46:3e:dd:a3:ff:fe:
         ee:8c:30:f6:0a:82:6b:52:5f:71:92:9b:d1:6e:82:01:03:74:
         d8:65:d2:77:4c:f9:0d:3d:a8:8f:b1:1f:cc:4e:d6:0f:04:f6:
         af:f3:57:09:a6:ee:1a:61:84:2a:43:3a:25:4f:07:1e:2a:fa:
         87:e7:a1:c3:bd:b1:b3:99:89:58:dc:60:24:d8:4a:84:40:98:
         13:40:84:e3:12:b3:78:1a:5e:f7:24:ac:c5:d7:6a:b6:8b:8d:
         3d:68:b5:d8:95:98:7c:e9:e1:3d:5f:4a:df:8c:f2:26:76:3c:
         e0:0f:b8:ac:4d:44:94:94:a4:98:4c:b0:01:4e:51:db:7e:74:
         74:a9:98:6f:24:e0:0d:bf:ab:1e:34:7d:7a:b3:d8:03:1b:8d:
         c0:c5:6a:ca:72:9c:97:98:6d:b0:54:92:36:1d:66:d5:bb:2b:
         75:b8:48:0e:0e:17:da:1b:a3:83:d4:31:86:aa:c8:f2:64:fe:
         7d:c3:dd:91:65:e2:18:29:b8:a5:76:8b:e5:be:06:7f:76:f7:
         1f:c9:b5:d0:e7:8b:ef:dc:28:5d:7d:57:1b:01:b4:37:14:83:
         d0:ed:71:89:eb:ec:c1:aa:7c:7b:ce:70:7f:0b:cd:54:c7:52:
         6b:ba:c8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:42:41 2025 by rpki-client