Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
File:                     TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json)
Hash identifier:          RqK4rvxxsMsW7eyVEWY76ok1+sBch5fK1vZXEfxqKVg=
Subject key identifier:   A9:34:46:EC:79:D5:97:9D:C4:BD:DC:2D:9A:B3:9C:D4:0B:31:5E:03
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Certificate issuer:       /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial:       0197703EAE31D910021AA02E3EBC9F711194
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
Manifest number:          1592
Signing time:             Sat 14 Jun 2025 21:00:45 +0000
Manifest this update:     Sat 14 Jun 2025 21:00:45 +0000
Manifest next update:     Sun 15 Jun 2025 21:00:45 +0000
Files and hashes:         1: 6aBtyL1HCBLQz8Fcxx2-wbI-JSY.roa (hash: s+Yjky9WV0WGtiJ2UXV97kZc6gRv1napm2o37+mL6NI=)
                          2: R0B0S-Vvq6PSGq8IAqKsdnjdNUo.roa (hash: jZBNXVMhAxnq4wWzeXUVcxAP1mha5zeShrdHGeYvBL4=)
                          3: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: TR/KLNzAsD51fT8RTtgyUn8LymDV2xD/L1PSiwDNGDc=)
                          4: snxuxsWrIVBOH4PJX-798Ws3-_I.roa (hash: eUyKfNa1R42Kf80mOcHHq43jou6WV27ocUUMJBjr/10=)
                          5: wnKhG27ddvv9DbopEcZ0e8BfSyE.roa (hash: 5bhpzUqfkiYr3WyfWoYZHsfUt3MVDy9FbR7pi02+AvQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:3e:ae:31:d9:10:02:1a:a0:2e:3e:bc:9f:71:11:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
        Validity
            Not Before: Jun 14 21:00:45 2025 GMT
            Not After : Jun 15 21:00:45 2025 GMT
        Subject: CN=a93446ec79d5979dc4bddc2d9ab39cd40b315e03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:7c:44:7e:e3:b9:bc:13:5d:21:df:3e:07:c2:
                    42:b9:29:8c:cf:56:b5:36:5e:7f:d2:f0:ca:07:4f:
                    fc:6a:8e:c5:0a:85:b3:b7:5e:f9:a5:33:08:24:77:
                    7a:a5:d5:a1:6d:77:21:c2:48:24:2d:be:15:d1:c2:
                    dc:9f:37:52:e5:76:93:50:a1:bf:7a:0d:f3:78:df:
                    c8:d4:de:34:51:c3:45:4d:f1:20:ed:96:d2:30:9b:
                    5b:c9:17:e1:41:1b:86:a7:d3:55:af:91:06:36:a8:
                    0f:a3:21:a0:25:61:01:61:16:5d:c5:86:42:a8:c0:
                    35:a4:b9:f8:c0:ba:2e:84:03:c1:0a:48:ce:d3:3a:
                    61:d9:fd:68:93:f3:db:45:f1:9b:b0:21:14:1c:4f:
                    8a:b1:da:11:da:5f:8c:b0:0b:b5:7d:71:61:b9:d9:
                    a0:f7:7a:f9:2e:c6:b8:8a:52:52:d1:59:87:c0:05:
                    fb:19:f0:c7:75:b1:9e:55:ae:d1:1c:23:12:b6:a4:
                    f8:83:5c:78:f1:bc:3d:45:d3:99:94:35:7a:2c:63:
                    bd:ae:eb:74:5e:81:cc:b8:a7:22:c3:14:27:f9:9a:
                    b9:34:75:8b:24:95:0e:a9:61:1a:a8:c8:8a:9c:a9:
                    57:c1:da:9c:1d:11:3e:fa:9a:ea:75:1e:41:5b:f4:
                    5c:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:34:46:EC:79:D5:97:9D:C4:BD:DC:2D:9A:B3:9C:D4:0B:31:5E:03
            X509v3 Authority Key Identifier:
                keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:0c:f5:28:5d:64:9b:c6:92:0e:00:5c:e3:98:e3:32:ab:0d:
         02:43:4b:c4:bb:13:e9:34:97:98:cd:74:f3:bf:20:60:b3:10:
         3b:b3:d3:7c:4f:3d:12:fe:6a:14:3c:3e:8f:2f:33:08:56:bc:
         f6:b5:5d:42:84:94:8b:4c:64:2f:cd:d1:7c:37:cf:84:2f:e1:
         d8:73:fd:f5:78:e4:e0:c2:04:d2:1e:c5:18:a4:d4:50:9e:94:
         cf:63:cf:28:72:3e:93:5f:cf:81:b9:f5:2e:70:75:e2:3c:5a:
         66:e6:e2:17:68:c5:65:ab:1b:d0:3d:eb:d1:92:8a:ec:42:8c:
         d0:00:98:f8:31:d4:08:2d:69:a6:4c:a8:d7:30:69:45:03:42:
         df:15:0d:23:c0:ea:b7:e7:c0:21:a9:f2:85:1d:02:50:64:c6:
         5f:a4:1a:5a:89:3e:3a:e1:7f:2d:bc:8d:e7:7c:81:c5:55:de:
         e6:ff:a7:f8:81:7e:b1:53:64:59:5f:34:53:df:a5:44:97:01:
         97:11:60:03:cb:a0:9d:88:06:d2:fe:6f:fe:05:e1:c3:56:60:
         4c:b1:0b:c7:67:65:87:b2:28:27:e9:62:d4:01:90:c2:2e:3d:
         94:1c:66:77:22:43:ec:40:c5:10:b5:4b:16:fc:59:eb:9f:3e:
         9b:f1:9a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:02:39 2025 by rpki-client