Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File:                     iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier:          tuFK4py/XwISrigKzjDH7mbpBK6TRzUVC9xjbkeEyqE=
Subject key identifier:   26:C6:9C:ED:33:5C:FE:32:16:25:08:67:0A:B1:C6:88:63:30:BE:BB
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer:       /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial:       01976C9870E95C08197CC00027B8BE494F9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number:          0226
Signing time:             Sat 14 Jun 2025 04:00:19 +0000
Manifest this update:     Sat 14 Jun 2025 04:00:19 +0000
Manifest next update:     Sun 15 Jun 2025 04:00:19 +0000
Files and hashes:         1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
                          2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: bstnQBD1eXMjUV5ZU/mGfRSsAGoOi7Ee05docOJ86y4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:98:70:e9:5c:08:19:7c:c0:00:27:b8:be:49:4f:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
        Validity
            Not Before: Jun 14 04:00:19 2025 GMT
            Not After : Jun 15 04:00:19 2025 GMT
        Subject: CN=26c69ced335cfe32162508670ab1c6886330bebb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:97:fe:34:5a:07:e6:92:03:2e:5e:48:7c:f1:
                    1b:5f:00:ba:fe:b1:cb:60:29:77:d5:fe:4f:98:79:
                    07:83:e4:f5:0f:ff:b3:9c:35:30:fc:ab:84:5c:97:
                    7a:3c:1c:25:db:03:ad:39:d6:da:9b:2c:b2:5d:85:
                    0b:38:7c:ed:54:b0:7c:9f:80:85:7c:7c:51:ce:2f:
                    51:44:c3:3a:f8:d2:7e:22:03:aa:2e:5b:90:9d:f5:
                    e6:ae:c7:73:1e:f7:30:e6:81:8c:87:7e:a9:5b:3e:
                    69:ba:d8:ed:56:e7:6b:6b:87:fe:ba:bd:46:ff:41:
                    21:5a:14:5d:63:bb:13:4b:27:ca:04:d0:a5:4c:38:
                    16:bd:9c:f1:d7:db:55:8e:02:26:a4:a0:84:e4:0f:
                    04:a8:8d:81:dc:ee:a4:75:6a:c7:51:5a:65:ea:1c:
                    9e:17:42:56:8b:58:1f:23:2c:f3:09:d8:a4:9c:1a:
                    37:a2:f4:65:7e:f6:ba:83:60:b4:ea:00:1c:c4:12:
                    67:8d:80:2e:07:17:92:a0:23:a3:26:c6:43:ca:db:
                    34:06:a7:18:55:00:a8:fb:cb:fe:04:a2:c4:7f:42:
                    e4:37:bf:48:5f:0c:8e:96:38:ef:d7:1b:5f:45:4c:
                    ad:64:fb:a2:13:c4:a4:27:f7:0c:5b:4d:5c:03:da:
                    5a:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:C6:9C:ED:33:5C:FE:32:16:25:08:67:0A:B1:C6:88:63:30:BE:BB
            X509v3 Authority Key Identifier:
                keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:62:64:b7:33:90:44:a5:26:71:91:09:f4:9a:05:13:c6:0e:
         9f:3a:bd:ed:84:c0:6d:6e:9e:eb:f2:01:60:94:78:09:34:9e:
         3f:66:1e:5a:95:77:e0:cd:b5:77:ba:21:9a:0a:f9:de:ca:bc:
         a7:7d:04:49:a8:80:0b:7d:85:3e:8a:fd:41:af:f9:c7:1e:b3:
         6d:7d:53:08:da:81:a3:33:96:1f:75:8a:ef:e0:77:ae:46:bf:
         9e:08:1a:04:e3:06:b6:19:94:2d:78:8a:15:25:40:d6:c3:75:
         be:1f:92:0b:0c:94:34:48:cd:5e:6f:a3:14:ca:fe:5e:7c:52:
         a7:34:80:a3:e4:4c:31:82:b3:29:03:bd:c5:2d:9c:60:30:0b:
         94:ed:d4:be:88:b3:b0:ed:48:83:e0:b9:07:8b:89:3c:54:1a:
         9f:91:62:33:43:7b:17:91:95:39:61:a0:7e:c2:77:fd:af:81:
         4b:d8:6d:c3:10:1f:fd:94:57:8a:f9:09:66:a4:9f:ae:88:fc:
         c4:bf:20:9a:2d:8c:f9:c6:33:ae:6e:d6:c5:4c:98:67:6e:54:
         e8:af:9d:7b:ec:20:3f:65:71:ec:89:c0:a4:db:f9:bf:b7:79:
         c8:94:a4:5e:a3:1a:24:a1:75:31:fc:fb:b8:7f:1f:5f:f1:f8:
         e0:d3:10:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 07:25:42 2025 by rpki-client