Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
File:                     5O8X9MtP6SrQU-7yXznWOuEgfdM.mft (raw, json)
Hash identifier:          6H+5cN96zDg7G29/QqYhyrYJbxKJ7os/IJgqn04p80c=
Subject key identifier:   5E:59:1D:30:58:AA:A6:A8:DF:73:0D:DE:C0:80:88:56:71:B4:B8:F0
Authority key identifier: E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
Certificate issuer:       /CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Certificate serial:       01975422BE22727EB6F7E037089FDC751002
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
Manifest number:          01B8
Signing time:             Mon 09 Jun 2025 10:00:52 +0000
Manifest this update:     Mon 09 Jun 2025 10:00:52 +0000
Manifest next update:     Tue 10 Jun 2025 10:00:52 +0000
Files and hashes:         1: 5O8X9MtP6SrQU-7yXznWOuEgfdM.crl (hash: F6XbGazUJ4nTwzaKRZ01wF+yl8B43Z/GykfD6lUJeV0=)
                          2: hkqw3W9-pdwewEMPwrQBPExOldQ.roa (hash: GNMEaQG7JI+6R+GxCRi11C7wb2KrqYyAM0elThFtbVY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:22:be:22:72:7e:b6:f7:e0:37:08:9f:dc:75:10:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
        Validity
            Not Before: Jun  9 10:00:52 2025 GMT
            Not After : Jun 10 10:00:52 2025 GMT
        Subject: CN=5e591d3058aaa6a8df730ddec080885671b4b8f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:ee:d2:68:6e:45:52:be:f8:d1:d2:34:a5:01:
                    05:ec:eb:10:d4:cc:14:50:cf:fa:a3:25:be:f5:62:
                    03:5c:c8:a1:e5:62:10:a8:6e:3e:38:dd:4b:c2:fb:
                    ee:ce:0c:9e:17:e1:73:04:d4:13:b5:68:88:11:16:
                    14:47:74:1f:b5:fd:f6:a8:6d:8f:44:64:ed:33:86:
                    b3:df:0f:a7:2c:3a:09:3b:44:37:30:66:e4:dc:b4:
                    64:18:b7:dc:82:d0:da:a1:fc:32:9d:af:d9:fd:0a:
                    5c:89:07:de:96:2d:92:aa:63:0f:80:3c:34:7b:82:
                    d5:ee:ee:84:d8:c7:02:b3:13:91:8f:98:0a:9e:27:
                    f2:ab:2d:ef:a3:be:60:ca:dc:b2:6a:02:20:eb:69:
                    ef:46:d4:ae:27:5f:93:b8:dd:56:c5:86:1c:79:80:
                    fc:9b:63:9b:f3:ad:2a:94:05:f1:70:f4:f4:0b:dd:
                    f2:20:c0:ea:67:e3:64:f2:47:45:51:d0:67:1f:a4:
                    20:f3:74:c7:1d:d0:8f:98:03:c7:b6:ee:4f:95:20:
                    0b:c7:43:3c:0b:d0:6f:45:04:2f:ae:38:9e:b0:83:
                    3b:96:1f:b0:65:db:d6:c8:c3:2a:00:71:44:ec:26:
                    27:4f:a9:98:56:85:1f:16:29:be:08:fd:6c:3a:c6:
                    ef:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:59:1D:30:58:AA:A6:A8:DF:73:0D:DE:C0:80:88:56:71:B4:B8:F0
            X509v3 Authority Key Identifier:
                keyid:E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:ba:af:b1:91:b3:ab:3c:76:60:72:d7:ec:8b:bd:87:55:d3:
         08:6b:59:29:f5:d8:ee:b9:4c:71:e3:65:d8:bd:64:34:e9:64:
         1c:62:8b:b1:2b:30:5e:e5:17:5e:9f:92:bb:b9:f9:93:e3:dc:
         2c:11:76:ff:97:60:b8:20:0f:4f:9b:33:51:18:43:ec:a5:84:
         ee:87:1d:04:e2:96:ae:22:6e:81:95:09:87:7d:20:3b:36:58:
         d9:76:1b:10:91:38:07:f6:98:74:e4:6a:ad:22:f9:67:01:08:
         22:c4:b0:ce:84:2c:c4:d4:98:7d:64:18:33:f6:b2:a9:8b:ce:
         96:82:eb:82:c0:bb:40:e5:59:3c:90:a5:cf:4a:2a:7f:52:c8:
         38:32:46:ba:c9:15:5d:86:6d:ca:ac:14:41:73:1b:ce:7c:05:
         d3:5e:7e:f1:7d:91:77:a0:d4:18:5e:12:7f:b0:70:7e:e5:49:
         13:60:37:94:23:f8:49:4b:9f:ef:08:37:60:e8:cd:c4:a2:7b:
         7f:31:c5:48:20:48:45:a4:27:01:4e:3d:f7:ea:fb:95:e7:b6:
         91:b9:13:e1:6e:f4:10:4c:ca:5f:04:df:6a:1c:39:9a:56:89:
         57:a7:0d:c2:6c:56:ec:d9:70:38:82:e8:05:a1:80:80:84:e2:
         0d:04:66:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:55:21 2025 by rpki-client