Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File:                     WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier:          YRwwUi9of5AkPr+R8O2wReHz39WzZ/COn1OD933s2Mk=
Subject key identifier:   16:76:40:A8:28:33:0E:08:2C:12:46:21:09:48:5D:3B:DD:2F:14:7F
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer:       /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial:       01976CCF5F92DD4F82F751C65B791BC3991B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number:          0ADD
Signing time:             Sat 14 Jun 2025 05:00:19 +0000
Manifest this update:     Sat 14 Jun 2025 05:00:19 +0000
Manifest next update:     Sun 15 Jun 2025 05:00:19 +0000
Files and hashes:         1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: cFIqqb8nJlU1IZDIdc7ueROX4/wlAwVUnK5TJBceiLA=)
                          2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:cf:5f:92:dd:4f:82:f7:51:c6:5b:79:1b:c3:99:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
        Validity
            Not Before: Jun 14 05:00:19 2025 GMT
            Not After : Jun 15 05:00:19 2025 GMT
        Subject: CN=167640a828330e082c12462109485d3bdd2f147f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:23:b7:1e:2c:b7:14:c2:0f:5d:0b:a3:81:aa:
                    68:e5:39:bf:a8:ba:85:b5:a1:9c:30:5c:91:f9:15:
                    3a:66:80:52:35:de:5e:a0:99:db:5f:a4:7b:7e:a5:
                    ea:fa:2d:01:d3:66:13:87:f1:b6:09:94:7b:ba:c1:
                    9b:a3:d2:a3:e0:a2:8e:9e:a8:6f:f5:0f:3b:ad:0f:
                    8e:66:a9:53:ce:94:f5:af:af:f1:c1:59:95:aa:a9:
                    c2:a4:00:ec:9b:92:12:33:44:d2:c0:d6:87:15:2e:
                    33:e1:a3:43:56:14:c1:a2:80:17:bb:18:9b:c8:21:
                    6e:c9:d8:d7:d0:31:f9:80:30:bd:11:c1:c5:57:91:
                    4b:5b:fc:88:ca:f5:67:19:c0:9d:5a:54:34:2f:4e:
                    7f:b7:6b:e7:91:5a:60:7f:b2:28:9e:98:a9:87:25:
                    fb:40:a1:26:5a:1c:d8:a3:46:22:90:48:a6:de:d9:
                    23:80:66:eb:c0:26:a9:17:15:89:c3:d1:7a:c6:51:
                    2d:6d:8b:82:73:c0:ff:77:11:7f:c3:e3:5d:3e:ca:
                    dd:bd:d1:a3:4d:38:bb:5a:56:76:c7:3c:3c:2e:05:
                    77:51:f2:af:e4:9d:cc:51:20:98:f1:ea:c1:ec:14:
                    78:23:6d:82:88:e6:27:9c:64:66:78:06:18:11:9a:
                    bd:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:76:40:A8:28:33:0E:08:2C:12:46:21:09:48:5D:3B:DD:2F:14:7F
            X509v3 Authority Key Identifier:
                keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:9a:f8:f1:94:b0:56:4d:b5:a9:0a:47:1e:8f:90:3a:9f:0b:
         d8:cb:07:b4:a4:2a:90:04:28:4f:ce:b0:6f:8b:2c:e9:40:a0:
         72:09:81:88:dd:ed:c0:7a:83:65:02:82:a4:3b:e3:3e:92:04:
         97:52:0d:46:7c:f3:f6:35:58:01:1c:28:cd:88:eb:49:51:0f:
         c4:b0:7a:27:a8:66:cf:72:86:86:67:e9:6c:76:80:b7:78:6a:
         4a:0b:4b:a3:39:d7:ac:fe:b7:34:99:e3:ff:ce:40:df:31:c9:
         d2:cd:2d:27:9e:8d:04:25:0d:43:c6:ff:05:ea:ad:08:db:4c:
         b8:e9:c3:23:38:1c:cc:7d:06:8d:e8:55:19:de:b0:23:8d:6e:
         12:33:64:71:73:a2:45:50:1f:85:6c:7a:2d:cf:95:c0:b6:a8:
         55:36:de:13:b0:0e:e9:57:80:65:4c:3d:11:de:14:5e:c9:28:
         97:26:bb:14:17:fc:a6:91:19:8c:9f:b5:55:15:c7:4e:c5:e1:
         9c:2b:a1:bb:1e:0a:41:48:16:ed:73:d6:80:74:dd:be:d4:fb:
         4d:e2:ed:6e:6a:fe:7f:44:52:ae:38:1a:0d:6a:c4:a5:c8:6c:
         0f:b3:77:27:03:d2:c9:e2:15:a6:fd:b1:c4:34:9e:ff:b5:ec:
         5d:58:0b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:07:12 2025 by rpki-client