Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
File:                     aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft (raw, json)
Hash identifier:          iPbAleR/vzEFTl27p5AimZesAkQHu/PpVBWdmkelQdU=
Subject key identifier:   F3:E9:CA:F3:A1:1A:DD:88:36:66:18:C8:E5:CB:65:FA:1B:84:A2:07
Authority key identifier: 68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
Certificate issuer:       /CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Certificate serial:       01968812850651C510CD80A717318FC921DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
Manifest number:          03D6
Signing time:             Wed 30 Apr 2025 19:00:37 +0000
Manifest this update:     Wed 30 Apr 2025 19:00:37 +0000
Manifest next update:     Thu 01 May 2025 19:00:37 +0000
Files and hashes:         1: N-BSf874DQvK549b1pSEfsfJ-W8.roa (hash: bW40XSisvNpm05Mkk5fR9GiNdKpGc7uzNKkhrhBHqx4=)
                          2: aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl (hash: U2o73/wTl7MoBYula4j7U+aJTFiiHZqdxKx1dCLOR8A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 01 May 2025 13:16:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:88:12:85:06:51:c5:10:cd:80:a7:17:31:8f:c9:21:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
        Validity
            Not Before: Apr 30 19:00:37 2025 GMT
            Not After : May  1 19:00:37 2025 GMT
        Subject: CN=f3e9caf3a11add88366618c8e5cb65fa1b84a207
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:86:aa:fe:7b:7a:44:91:a8:9a:84:6e:c1:ba:
                    85:ac:ec:d3:e0:59:de:fe:e5:a1:1a:94:d9:26:60:
                    2e:98:a5:2d:a9:3a:ce:a9:2f:71:f4:41:91:a7:91:
                    7c:b3:ac:b9:d6:f8:2b:4b:ef:cc:61:47:94:ee:17:
                    ef:ef:87:e7:79:9d:7e:1c:43:8a:06:6a:c5:32:dc:
                    18:cd:c4:12:bb:15:e4:ca:f3:7b:a5:54:82:ca:ad:
                    54:80:17:c9:31:32:fa:8e:5f:3f:c3:c0:db:15:ab:
                    6d:38:d9:12:eb:3e:e3:0a:b2:4c:ff:21:79:8d:7a:
                    47:e9:10:9c:eb:0f:78:80:df:66:2b:bc:ee:14:50:
                    d3:b4:45:c5:d6:66:08:b6:32:f2:f1:04:94:61:5b:
                    b5:f7:88:21:87:0a:d1:ec:69:d3:14:29:60:53:71:
                    60:3e:f1:74:ee:91:e4:4a:26:08:22:91:ac:2d:e7:
                    6b:44:79:9f:cf:6a:25:e2:50:17:0d:b4:9e:97:20:
                    72:38:e3:9f:5a:a9:c3:c9:0e:05:54:85:5e:4f:e4:
                    1e:9c:30:b9:f1:78:a9:bd:70:89:c8:f5:68:d7:3b:
                    8e:df:ef:1a:25:9c:ff:6a:38:ab:0b:ff:ba:cc:5b:
                    fc:c8:c7:6f:be:68:f7:4a:db:26:09:a3:af:9e:4e:
                    2b:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:E9:CA:F3:A1:1A:DD:88:36:66:18:C8:E5:CB:65:FA:1B:84:A2:07
            X509v3 Authority Key Identifier:
                keyid:68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:b4:61:3d:2e:fc:3e:d0:17:c5:24:95:34:b5:77:08:9e:e8:
         ad:62:1d:38:7a:58:29:9a:d6:33:75:35:f6:a0:69:3d:97:e4:
         82:3d:04:70:d0:ea:60:71:d6:02:db:81:4a:ba:54:11:29:ae:
         01:a6:a6:e0:02:da:dc:e6:1a:c0:f3:a4:63:0e:e2:15:e6:aa:
         f0:80:91:44:64:9b:3e:87:36:a0:c0:60:2f:50:ce:0f:ac:34:
         f4:03:93:c8:a0:e4:ad:0e:c6:e6:e5:d9:d4:db:b8:19:9e:40:
         fc:58:7d:1b:1a:ce:46:4a:c6:32:30:70:8d:c4:de:e8:d7:c4:
         83:cb:b4:45:7b:2d:54:33:c6:18:00:5f:4f:6c:1b:c2:45:f1:
         c8:8c:86:48:be:c4:08:6d:77:ca:19:71:c4:2e:af:17:fc:dc:
         f9:b2:65:e0:8f:ed:c6:08:88:ae:b1:b5:f5:c4:4a:48:93:59:
         71:3e:80:49:ff:6d:c6:01:0e:4c:9d:ea:08:48:88:b2:a6:b6:
         1c:fe:ce:45:0c:48:23:0c:b3:8b:47:0b:ff:fd:71:64:53:be:
         64:f1:60:9f:4c:ee:81:7a:2a:84:b7:87:69:98:e7:0d:af:65:
         69:e6:cd:d5:8f:bd:80:7d:d6:58:07:2f:59:4a:dd:6c:18:9a:
         0c:0a:dd:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:26:38 2025 by rpki-client