Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
File:                     kGlKYihmrhWO0ofSUz1AuqvqbX0.mft (raw, json)
Hash identifier:          12sKKT24xGTs4+iRK+bUo1z100sIfO2FKuIFC5BeB4o=
Subject key identifier:   17:27:5D:BE:0F:5E:74:E9:F2:FD:9B:A2:72:A2:35:32:54:68:31:6A
Authority key identifier: 90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
Certificate issuer:       /CN=90694a622866ae158ed287d2533d40baabea6d7d
Certificate serial:       01987DF800E10070128A6B64F4E8BD5C06C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
Manifest number:          0477
Signing time:             Wed 06 Aug 2025 06:01:01 +0000
Manifest this update:     Wed 06 Aug 2025 06:01:01 +0000
Manifest next update:     Thu 07 Aug 2025 06:01:01 +0000
Files and hashes:         1: 9VYK0oHjjTC_b68oAyoNi7RTStA.roa (hash: 95NE4Wq8cotxnefZwzo13t7L9p4u4ZGJ0NIa1wNiJCg=)
                          2: bq3CHdF3ToMivmK2PU155LcLlRo.roa (hash: E2q6lH9inJ5ZH1jaNhC41RHD+yk7srEkGUdyytaHjj0=)
                          3: kGlKYihmrhWO0ofSUz1AuqvqbX0.crl (hash: KNPjQR1j7cA5mMF3xH6j3n2VCLA/DorQir/18Mdx35Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 06:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:f8:00:e1:00:70:12:8a:6b:64:f4:e8:bd:5c:06:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=90694a622866ae158ed287d2533d40baabea6d7d
        Validity
            Not Before: Aug  6 06:01:01 2025 GMT
            Not After : Aug  7 06:01:01 2025 GMT
        Subject: CN=17275dbe0f5e74e9f2fd9ba272a235325468316a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:30:74:2c:1c:92:6e:ce:0c:81:6e:cb:9a:dd:
                    34:21:30:eb:bd:c5:bc:20:28:ee:45:ff:63:23:c3:
                    c5:55:45:0e:ae:ca:41:74:9c:5b:ae:be:f4:45:bd:
                    10:65:3d:4d:1a:0b:22:bf:54:9d:58:66:d8:11:ac:
                    3d:b8:3a:55:ed:fe:4f:e0:9a:32:f7:0e:82:47:1c:
                    b5:ae:6d:d2:eb:53:8d:91:e6:fd:07:03:eb:3f:b6:
                    3c:01:a7:c8:d8:70:62:46:6f:72:8e:90:f0:f9:e1:
                    ef:cf:4e:19:14:30:b3:88:c4:68:04:a5:db:46:f9:
                    ce:56:05:66:c9:51:54:e5:73:aa:69:b6:f3:fe:11:
                    4a:81:74:f6:9d:a1:eb:4d:12:89:94:6c:bc:d1:bc:
                    28:7a:39:c8:01:a0:3c:15:61:95:f0:92:ad:bb:b3:
                    b2:a6:be:44:cc:33:de:f8:ea:36:da:5a:38:2e:47:
                    dd:41:db:44:2d:35:c1:66:62:dd:2d:fa:80:c3:c2:
                    05:08:5c:cb:de:f0:db:85:71:bd:20:2f:6c:ba:fa:
                    f8:ff:54:90:fc:59:d9:41:88:89:d4:01:18:3d:ae:
                    b6:63:71:77:3a:4f:cb:e9:91:c2:fe:9a:10:98:4a:
                    cb:be:cd:73:93:18:42:60:c9:0f:3b:59:de:97:87:
                    c4:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:27:5D:BE:0F:5E:74:E9:F2:FD:9B:A2:72:A2:35:32:54:68:31:6A
            X509v3 Authority Key Identifier:
                keyid:90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:05:33:9d:44:02:4d:61:f5:4c:76:9c:cc:b0:73:b9:b9:92:
         2c:b7:d2:57:72:38:8c:84:ca:75:95:48:a2:c7:05:ea:72:73:
         f6:58:57:ed:c5:b9:c5:f7:47:b9:e0:51:c9:78:aa:03:35:0c:
         6a:30:11:69:4d:a1:e5:93:5d:33:6e:fc:f5:0f:dc:e6:9b:66:
         cf:4d:dc:63:30:ff:2a:96:6a:34:35:7e:ba:7e:de:85:7a:d7:
         a5:1a:12:0f:fe:95:76:1c:49:12:4b:e2:d2:c0:a8:f9:14:11:
         e1:ab:44:03:b2:12:73:62:73:f7:15:d8:7c:f2:a6:84:14:ea:
         27:85:4d:c8:07:55:a4:31:ca:32:9e:22:74:af:cf:a0:2c:41:
         dd:54:a0:da:ad:a8:71:bf:8f:1b:2b:cd:3b:ff:4e:0d:88:32:
         24:97:a5:97:a3:7f:90:49:26:a1:74:34:0f:79:32:e1:9f:5f:
         d2:16:d7:6b:9e:68:53:f2:ef:20:15:27:46:83:59:3d:ed:eb:
         2e:42:7f:3b:50:bb:34:19:9b:a3:0f:ac:96:51:87:03:f2:87:
         c1:99:2d:7e:d0:1a:dc:8f:71:91:1d:61:f2:5e:02:c6:90:c3:
         50:a9:93:f6:ae:d9:17:76:5e:74:d2:e0:20:04:6a:23:d3:3f:
         17:55:3f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:05:58 2025 by rpki-client