Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File:                     2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier:          qsy6zSZYd8ri8MzDLtPBAO+tlQLdQjRILjf8FxwtZu8=
Subject key identifier:   60:48:B9:0E:E5:0F:46:45:AA:9D:59:B8:EB:74:DE:F7:03:25:66:21
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer:       /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial:       019779786233B70CF2FDF410AA9F635BCEB4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number:          03A0
Signing time:             Mon 16 Jun 2025 16:00:21 +0000
Manifest this update:     Mon 16 Jun 2025 16:00:21 +0000
Manifest next update:     Tue 17 Jun 2025 16:00:21 +0000
Files and hashes:         1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: NwQC9EzSWRi4l826OeNTjZ6TT3oPzqKfQLKFstdoX1k=)
                          2: JNEydf2lKXnao8GrKqno19jXP6w.roa (hash: +0xX0M+yF7B+qU3xPS7RZz2tcDVRNPquvsVNbfH8B2E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 16:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:78:62:33:b7:0c:f2:fd:f4:10:aa:9f:63:5b:ce:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
        Validity
            Not Before: Jun 16 16:00:21 2025 GMT
            Not After : Jun 17 16:00:21 2025 GMT
        Subject: CN=6048b90ee50f4645aa9d59b8eb74def703256621
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:32:04:b1:df:54:e5:90:0d:20:89:01:20:0a:
                    9a:a9:17:62:c9:60:a9:cf:ef:ea:f9:c7:f9:7e:ec:
                    36:8e:c3:35:7c:2d:6a:ca:a4:07:98:59:0e:8e:09:
                    da:49:f3:d9:8d:fe:c5:cc:df:61:d3:c2:47:13:d5:
                    a2:2d:4c:69:5f:d1:ee:0f:05:4f:db:e6:b7:c7:e3:
                    71:c6:24:2c:e5:31:ff:9e:35:5c:b1:e2:43:54:5b:
                    8b:ed:09:8c:1c:ec:f0:75:a8:7f:9f:35:a4:5f:61:
                    a3:d2:67:7c:b2:56:1d:d5:c0:8e:ed:9a:1c:1b:4a:
                    02:5d:de:48:42:4b:a9:34:af:eb:2b:06:20:64:35:
                    8c:58:95:b3:ea:b5:2e:ca:2d:93:f1:a3:0f:68:03:
                    58:8b:2d:a4:b2:50:f6:a9:d6:ee:29:1d:ba:9f:73:
                    5e:9f:32:49:5b:d6:00:32:ab:ab:92:0f:27:63:ef:
                    bc:28:7b:e9:2f:e2:3e:aa:36:bd:00:26:12:43:64:
                    8a:9d:d3:d7:dd:51:b4:8e:90:e7:d5:4c:03:5d:41:
                    40:98:71:16:c4:bc:ea:dd:46:5a:78:71:ee:ed:6b:
                    c5:e4:db:e9:64:ee:af:09:a5:93:1f:ae:d0:f6:3d:
                    42:ec:da:3e:9d:05:91:4c:d9:f3:1d:2d:76:e3:a2:
                    fb:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:48:B9:0E:E5:0F:46:45:AA:9D:59:B8:EB:74:DE:F7:03:25:66:21
            X509v3 Authority Key Identifier:
                keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:0e:46:ef:70:ef:5e:0e:9a:a1:8a:85:f5:97:6c:c3:9e:17:
         0a:94:39:e0:f8:33:ff:82:bf:5b:51:0b:a3:8f:75:01:16:cd:
         36:d0:e5:bc:4f:b5:8a:4b:60:15:e7:08:7d:92:76:87:09:a4:
         83:fe:8a:07:07:fe:cf:6d:b4:df:c3:58:be:a2:30:85:90:ab:
         8c:76:06:e8:d1:37:2b:ef:6c:0a:fd:13:74:36:47:04:5a:3e:
         c2:df:6a:3d:71:23:77:f6:ea:45:6f:71:15:9f:8f:3b:bb:2e:
         85:cb:ac:45:e1:78:13:c3:84:84:54:c0:15:f7:70:e2:ba:a5:
         56:4d:b6:5b:39:57:1d:99:fe:df:26:50:c6:a4:67:9e:8c:c0:
         79:8d:02:ef:87:9c:ea:c0:92:4d:e9:cc:43:a2:10:7a:17:0f:
         99:8a:5e:2a:33:7b:09:ff:29:2a:04:d4:69:24:22:b5:d2:47:
         2e:8d:29:b6:ae:e4:16:8b:d0:17:41:a7:25:bd:8c:96:82:05:
         63:d8:8c:0f:41:53:0b:0c:ad:3c:82:32:5b:2d:80:32:12:5d:
         f9:a6:d4:c4:bc:66:67:6e:ae:cf:d1:54:3e:53:ca:f3:b4:f2:
         ec:fa:d7:16:8e:66:99:4a:73:81:d1:ca:f2:31:1c:2a:6d:5d:
         6e:3e:88:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:24:20 2025 by rpki-client