Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File:                     oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier:          w3MhiS270tcAeu2i80xMmAuIAZ3FpXESGolCx57kqgM=
Subject key identifier:   57:8A:C2:72:3A:E0:A3:9E:F4:94:3A:F6:8F:02:22:1D:FE:05:F6:0A
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer:       /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial:       0197CC15CA23314D6DC3B34A402FE858C3E1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number:          051B
Signing time:             Wed 02 Jul 2025 17:01:09 +0000
Manifest this update:     Wed 02 Jul 2025 17:01:09 +0000
Manifest next update:     Thu 03 Jul 2025 17:01:09 +0000
Files and hashes:         1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
                          2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: mGwgqR/uy9XLHL5WwMeCyHMleu8ZSd2+5i6i7LxQxsw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 03 Jul 2025 17:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:cc:15:ca:23:31:4d:6d:c3:b3:4a:40:2f:e8:58:c3:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
        Validity
            Not Before: Jul  2 17:01:09 2025 GMT
            Not After : Jul  3 17:01:09 2025 GMT
        Subject: CN=578ac2723ae0a39ef4943af68f02221dfe05f60a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:81:62:fa:2f:d4:7b:28:94:75:64:e6:84:6b:
                    23:5a:56:94:85:a9:a1:6a:99:fc:f5:3c:5f:d7:46:
                    df:dd:34:b1:88:68:31:54:94:3b:77:ce:78:63:7b:
                    ff:ad:4a:5b:c5:0c:04:69:a1:07:04:55:93:4a:1f:
                    b8:fb:c9:5a:7e:7f:be:c0:15:18:44:cb:16:1f:ad:
                    5d:26:12:07:2d:a6:b8:89:bc:a9:45:3b:b9:bd:6b:
                    39:c1:14:10:f2:69:ab:08:7f:ec:82:55:ce:15:ac:
                    58:10:74:7e:05:6b:6b:66:de:6a:23:a5:c8:03:a4:
                    f4:45:78:80:89:d4:66:09:28:24:71:c0:b2:2d:14:
                    62:65:44:45:53:c9:61:19:c2:49:75:96:d4:af:3d:
                    40:1e:2c:76:ac:9c:e9:d0:c4:0b:03:c9:73:35:79:
                    17:f2:53:5c:7a:62:86:9d:7e:4a:1f:12:bd:d5:61:
                    55:1b:0c:a7:ef:45:ee:ac:a5:6e:d6:a1:80:75:96:
                    c5:73:d8:6e:7a:76:c2:3d:1d:e3:f1:4b:c1:21:67:
                    37:1f:c8:b1:aa:97:a1:65:c6:ad:98:31:53:c2:68:
                    40:02:b0:3e:2a:93:1c:d8:83:24:a3:3f:e3:fd:92:
                    c1:72:e1:a8:0c:93:99:2a:5e:9e:90:51:44:84:a3:
                    f7:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:8A:C2:72:3A:E0:A3:9E:F4:94:3A:F6:8F:02:22:1D:FE:05:F6:0A
            X509v3 Authority Key Identifier:
                keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:ef:12:b1:e4:35:a7:3b:24:96:6e:c5:6b:c3:b8:fc:69:7a:
         70:00:e3:81:59:56:1d:91:ff:df:ab:af:a8:e4:2a:fe:fb:16:
         49:01:3d:51:7d:cc:0e:93:1c:d4:26:ed:e4:6e:0f:29:68:32:
         6d:55:3e:95:77:f1:3c:eb:c5:ac:58:fe:14:d6:dc:74:f3:ae:
         13:dd:e8:02:4d:df:bd:7e:26:2b:49:94:0c:82:97:82:24:fb:
         f3:93:b6:f7:1d:1f:46:35:da:bb:45:cb:d2:72:3f:78:2d:8b:
         6d:7d:31:07:74:ce:25:d6:51:bd:c7:10:84:1e:1c:13:30:f9:
         a9:4c:40:4f:35:89:f5:fb:12:0e:46:da:1b:ea:53:db:66:d7:
         c6:91:a1:66:c9:4e:9c:96:e8:2a:c6:6e:54:fa:4e:0d:3f:03:
         39:cf:69:47:f6:c7:f0:da:ac:a7:97:a2:44:45:4a:af:78:e7:
         ef:c0:2d:05:e9:c6:c0:f1:1f:3d:a5:bf:4d:e0:96:9d:ad:0d:
         e1:5e:4a:d5:a2:bd:60:b0:52:d2:1e:39:fd:76:74:57:7d:65:
         ec:90:7a:6b:18:da:84:09:1d:f7:c2:97:c2:35:7b:d0:ee:7f:
         fe:23:b3:4d:65:ff:20:88:ff:4f:47:aa:9e:a4:24:e1:9c:98:
         f2:da:a9:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 02:44:12 2025 by rpki-client