Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File:                     2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier:          VqjDQUWtapYBZY1Jz4xHXs+zJpdI5L91zAwyT+nP3ag=
Subject key identifier:   91:44:99:3F:04:76:68:4B:A9:48:43:02:E8:D4:91:2C:87:5B:C3:C2
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer:       /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial:       019773ADCCD89256443ADB22B1049CCC89F9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number:          039D
Signing time:             Sun 15 Jun 2025 13:00:59 +0000
Manifest this update:     Sun 15 Jun 2025 13:00:59 +0000
Manifest next update:     Mon 16 Jun 2025 13:00:59 +0000
Files and hashes:         1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: TKVz+qn4IlqhEMH3p/PBkCDFzMZD22FVo0vuaqhD1vE=)
                          2: JNEydf2lKXnao8GrKqno19jXP6w.roa (hash: +0xX0M+yF7B+qU3xPS7RZz2tcDVRNPquvsVNbfH8B2E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 13:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:ad:cc:d8:92:56:44:3a:db:22:b1:04:9c:cc:89:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
        Validity
            Not Before: Jun 15 13:00:59 2025 GMT
            Not After : Jun 16 13:00:59 2025 GMT
        Subject: CN=9144993f0476684ba9484302e8d4912c875bc3c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:89:cc:63:06:bf:a9:e2:a5:00:0e:bc:37:96:
                    75:df:68:b3:6a:d9:3a:6a:a4:03:c2:3a:07:57:ff:
                    06:b4:ea:56:10:46:ce:35:8f:a6:64:8f:d2:f4:54:
                    c0:79:3d:43:1b:22:b4:5c:b6:14:86:32:bb:f0:e7:
                    d9:92:59:10:05:b6:9c:d3:02:68:2d:bc:73:8a:5b:
                    4c:49:74:0d:e8:8c:1b:70:95:71:70:3f:c3:8d:ac:
                    b2:50:91:1c:d7:99:56:8c:d6:01:55:cd:12:c2:95:
                    89:09:d1:83:d3:eb:cb:5e:31:e4:75:a7:40:0a:60:
                    3e:d3:e3:aa:7b:c2:f0:a0:5b:5d:ca:62:7f:20:0a:
                    a4:fa:32:79:8c:b7:9c:7d:ea:e7:5d:a7:f3:5d:0b:
                    2d:b6:ba:20:6f:c2:26:89:e7:20:30:4d:46:2c:99:
                    34:0d:20:5d:18:cb:c1:de:8a:2d:ce:4e:27:2d:72:
                    3f:3a:31:9e:44:20:7d:4e:0c:03:f1:a9:c8:23:86:
                    4b:bc:bc:b3:e4:34:15:fd:93:09:6f:d7:15:ce:fd:
                    17:2d:8d:ba:07:d2:08:c2:eb:ed:05:83:1d:f1:20:
                    a4:8b:6a:14:96:b8:6d:04:a4:58:97:1c:c7:54:4d:
                    12:a7:1b:68:9a:58:a6:48:ba:bc:d9:19:de:66:9b:
                    99:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:44:99:3F:04:76:68:4B:A9:48:43:02:E8:D4:91:2C:87:5B:C3:C2
            X509v3 Authority Key Identifier:
                keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:46:1f:13:44:f7:13:06:e3:fc:ad:b4:87:53:f5:a2:fe:2c:
         0d:be:5e:a6:de:10:6d:1c:11:b7:5f:d4:ac:cf:48:c5:1f:55:
         3c:0f:9f:97:06:0d:bd:8f:81:f0:0e:7a:22:e6:43:df:a5:e8:
         0d:9e:68:ac:c5:60:8b:77:2b:c4:f8:e6:6f:03:dc:f7:29:56:
         68:22:ef:84:13:5a:f2:65:b3:14:da:8a:e8:0b:fd:bd:f6:a9:
         eb:46:00:d2:58:36:13:0b:7f:7b:6b:ae:18:58:5c:83:b5:87:
         82:05:e3:4e:ae:b8:bd:c5:d7:ce:02:9f:d4:ac:c4:98:c7:ca:
         12:a1:d2:85:e6:0d:8e:26:72:10:5f:f1:82:74:82:fa:c0:61:
         03:79:63:a6:08:18:bf:03:61:1b:75:57:26:3b:f7:ae:3c:05:
         4e:42:70:28:74:89:81:1a:7e:c0:2a:68:55:95:db:09:74:53:
         b3:7d:3b:59:67:66:20:81:02:51:9a:33:b2:0c:46:cd:6a:d1:
         aa:18:5c:e7:2b:9d:79:bb:6d:54:0d:99:d3:d3:24:23:61:e6:
         8d:31:4a:d1:43:92:ee:0f:53:39:02:aa:72:2e:a7:43:b8:9f:
         46:81:12:81:88:e8:ae:e9:a5:36:9e:91:f9:b1:95:81:3f:3e:
         54:c3:ae:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 19:27:25 2025 by rpki-client