Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File:                     iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier:          /+1BFLAJfQb9VjIN4vd1lMsiPE+yXwIfbE68IB28mJU=
Subject key identifier:   E1:2C:51:52:8C:4D:07:53:88:C3:A0:36:62:63:23:0B:CB:56:E6:E1
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer:       /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial:       01975B37107A27FEF04ACBE12B8E932350C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number:          021D
Signing time:             Tue 10 Jun 2025 19:00:24 +0000
Manifest this update:     Tue 10 Jun 2025 19:00:24 +0000
Manifest next update:     Wed 11 Jun 2025 19:00:24 +0000
Files and hashes:         1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
                          2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: scGjsi91q1jwUyuVrHD3ovzmpFD+PwwQN55qWXPtX9Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 19:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:37:10:7a:27:fe:f0:4a:cb:e1:2b:8e:93:23:50:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
        Validity
            Not Before: Jun 10 19:00:24 2025 GMT
            Not After : Jun 11 19:00:24 2025 GMT
        Subject: CN=e12c51528c4d075388c3a0366263230bcb56e6e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:8c:4e:75:90:90:69:67:77:3c:b1:b3:38:7c:
                    a2:ba:aa:ea:4d:16:34:7c:2e:59:27:2a:be:f4:8a:
                    a0:46:ca:33:88:d9:68:a5:c2:07:3d:e4:d6:18:0d:
                    ef:e8:40:61:7d:fe:45:88:1a:46:3d:a5:cc:c4:71:
                    77:9a:b0:1c:fb:f5:97:cb:a2:83:9f:d3:76:08:7c:
                    8f:c7:63:cc:23:37:81:3a:ad:79:fd:36:cb:29:37:
                    30:70:9c:60:28:88:75:27:ff:fb:e9:5e:26:94:91:
                    b9:c3:fe:51:17:a9:71:ba:e7:7d:44:4a:30:f0:14:
                    64:77:f9:06:41:49:0e:27:64:ff:b3:b4:70:74:ef:
                    95:29:b9:b5:ac:db:74:d0:70:e9:60:06:b0:8f:d4:
                    5f:03:12:a0:b0:1a:10:f2:6d:01:66:ec:d6:be:b6:
                    e3:14:da:1b:05:9b:8a:db:0e:da:6e:da:f3:d8:4a:
                    3d:5e:34:f8:ac:30:f5:d6:ab:f4:87:f1:4a:c3:b8:
                    bc:5e:4e:4d:cd:f2:66:16:cb:ef:59:f9:55:7a:2a:
                    1c:a6:b0:81:60:dc:6c:e9:2b:26:1a:66:5b:fa:96:
                    b8:12:4f:91:dd:2d:98:28:83:4c:f5:ed:ae:25:6c:
                    86:12:cc:34:30:ad:b8:64:a9:00:da:1d:05:9d:16:
                    30:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:2C:51:52:8C:4D:07:53:88:C3:A0:36:62:63:23:0B:CB:56:E6:E1
            X509v3 Authority Key Identifier:
                keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:ef:78:74:74:c3:45:ec:3d:0f:e8:71:c0:ce:97:4c:9e:f7:
         82:75:b8:af:e1:10:74:36:45:72:c2:44:8b:77:6b:f7:62:88:
         67:f6:ad:f1:65:cd:ff:cf:3b:6a:7c:dc:60:01:8a:b0:ba:bf:
         19:55:6f:f6:0d:ed:2e:ce:8e:65:0c:86:90:e7:52:75:92:d8:
         02:aa:95:d2:fa:0b:f3:56:84:61:67:b3:dc:6f:92:de:70:93:
         7d:ff:38:6b:8b:6b:a3:ec:3d:39:83:a3:7e:3d:f5:59:d0:8e:
         d2:48:e3:8b:c8:5a:88:50:90:3e:da:6c:a3:5a:5a:16:a1:7c:
         db:31:43:53:37:05:37:66:bc:62:ab:1c:57:a6:b8:d7:ee:15:
         a8:85:f5:6f:a6:ab:dc:0d:8c:8f:4f:d6:46:34:89:1e:6c:2e:
         16:c0:61:8c:26:12:28:f3:de:04:99:3b:74:b6:38:46:01:e4:
         4e:68:32:7c:33:6d:40:67:80:97:9c:27:fa:07:87:a0:9b:9d:
         00:bb:0b:61:6b:ab:97:5f:6f:20:01:4c:f1:44:c6:43:0a:43:
         45:97:6f:30:f3:ad:5d:59:ce:fa:6c:63:bd:5b:10:d6:14:23:
         f2:35:93:21:15:51:3a:74:1b:5b:a6:e4:f8:18:83:34:9a:49:
         c3:e3:c1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 02:03:29 2025 by rpki-client