Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
File:                     Ym0k1r81OWP-WvolsKWWZxUqhtA.mft (raw, json)
Hash identifier:          +w+v7jtfKAbCWzf0bVKiQhn5PS6tg3nk1ngVcCA8kQA=
Subject key identifier:   92:16:48:70:1A:D1:3C:97:3B:60:F8:80:B0:31:E4:BF:3F:4B:E2:DE
Authority key identifier: 62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
Certificate issuer:       /CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Certificate serial:       019763277CEB197225D6974EA66EED19EF2A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
Manifest number:          0D19
Signing time:             Thu 12 Jun 2025 08:00:21 +0000
Manifest this update:     Thu 12 Jun 2025 08:00:21 +0000
Manifest next update:     Fri 13 Jun 2025 08:00:21 +0000
Files and hashes:         1: XsLpmpu2xvBP4JjcplMw-4A56mY.roa (hash: zDQ4NxbIV24C02r59jK+8GO4r9TIoUq4yC6lv1rRxf0=)
                          2: Ym0k1r81OWP-WvolsKWWZxUqhtA.crl (hash: v8PQ3a1pAf6rPnxPbNHXcBmiD/nug8gCTSk+nKhgNxQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 08:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:27:7c:eb:19:72:25:d6:97:4e:a6:6e:ed:19:ef:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=626d24d6bf353963fe5afa25b0a59667152a86d0
        Validity
            Not Before: Jun 12 08:00:21 2025 GMT
            Not After : Jun 13 08:00:21 2025 GMT
        Subject: CN=921648701ad13c973b60f880b031e4bf3f4be2de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:5a:f4:e7:69:75:df:60:00:d6:e2:a3:0d:7b:
                    52:90:f0:de:26:40:e5:fc:e2:12:39:00:48:bc:b8:
                    75:3f:1f:eb:c9:db:1f:7a:85:81:30:40:8e:ff:bc:
                    8c:c1:cd:06:d7:d2:f6:ff:08:d0:18:c0:59:e1:0e:
                    3c:86:61:8a:62:51:f1:82:c6:63:ef:65:77:c7:0b:
                    3b:60:c4:95:97:89:51:1b:1b:fb:bf:e7:5f:1e:62:
                    b1:f9:48:02:1e:ce:89:64:5e:a4:34:1f:2b:e3:82:
                    64:1d:12:73:e2:db:2e:8c:79:27:2e:12:cc:83:e9:
                    5d:70:4f:d6:0a:1f:34:58:25:3e:1c:55:41:fc:4a:
                    d7:c4:bf:59:f1:f1:ac:f6:9a:5a:00:43:86:08:92:
                    fa:66:e1:1f:40:ac:57:65:d6:67:00:ec:50:12:d7:
                    43:a0:00:19:66:48:26:f4:78:38:6f:bb:29:fb:8b:
                    65:79:55:c6:5d:18:1c:f5:f2:ab:af:31:4e:37:b3:
                    0b:61:b4:08:cc:e3:ce:cb:46:bc:e9:97:05:3e:c6:
                    20:a4:89:5f:14:5d:01:1b:45:e0:d9:b1:b0:07:fb:
                    ac:7d:2c:cb:12:6b:c1:ae:2c:88:da:40:6f:0f:69:
                    26:b4:21:26:07:d7:da:ff:55:5a:19:99:58:1e:c3:
                    49:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:16:48:70:1A:D1:3C:97:3B:60:F8:80:B0:31:E4:BF:3F:4B:E2:DE
            X509v3 Authority Key Identifier:
                keyid:62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:22:c6:ba:2d:73:e9:1a:96:e4:4f:97:4c:d2:47:45:f8:1e:
         74:98:ac:3c:07:80:10:e4:44:4e:6a:f5:bf:9c:a2:c9:05:6f:
         a1:72:35:42:31:37:a3:d2:67:f8:e4:f5:5a:b2:2d:59:d4:c8:
         32:b6:c0:f8:27:3d:b3:3d:53:2d:59:0f:9a:65:79:e6:87:fc:
         44:45:63:a6:5d:49:d8:2b:91:77:64:31:eb:df:e6:69:f3:e9:
         8d:d6:ab:a3:a1:5f:ea:7a:2c:25:e9:a8:2f:e8:de:75:cb:ed:
         b8:ff:4d:87:24:81:eb:fc:c6:55:70:97:9c:3d:dd:f6:39:98:
         97:2f:00:82:dc:34:1b:b1:b0:9b:85:23:e5:2a:7b:a7:15:c6:
         b1:f6:15:ad:3a:b8:30:59:9f:cf:ef:87:ee:1b:fd:ba:af:fc:
         0b:45:6e:8c:08:49:47:d1:31:41:af:81:14:ed:2e:de:db:d0:
         d3:0a:85:6e:2a:a9:f1:68:5f:de:3a:49:a3:ac:f2:08:bb:f1:
         5d:dc:1a:fc:f6:5c:b6:b4:68:98:4b:bc:55:0e:46:aa:e3:71:
         0c:fe:ff:3a:79:24:18:1d:c7:bb:28:37:db:6c:90:04:cf:ee:
         c3:b3:1c:a9:b9:ad:c6:f8:dd:96:bf:d7:a0:d6:f4:aa:9e:93:
         58:55:4e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:46:52 2025 by rpki-client