Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
File:                     TLbePNkQ87_3_4Xe1FLEMbHopSA.mft (raw, json)
Hash identifier:          OQzi4o1NOY8JCKAGVS5aWtoexgDgE7bxcHWyBB1qlig=
Subject key identifier:   96:EC:52:F3:D3:CB:0B:13:2F:25:6B:5D:77:A6:98:2F:B8:5F:8A:DE
Authority key identifier: 4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
Certificate issuer:       /CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Certificate serial:       01977E313C512A0DEC3B4E169D6A6CD7A2DA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
Manifest number:          1599
Signing time:             Tue 17 Jun 2025 14:00:45 +0000
Manifest this update:     Tue 17 Jun 2025 14:00:45 +0000
Manifest next update:     Wed 18 Jun 2025 14:00:45 +0000
Files and hashes:         1: TLbePNkQ87_3_4Xe1FLEMbHopSA.crl (hash: 5DtBdkzwpMZS05VjlTaAzwgunA3fv8KxG6BgDe7SdZM=)
                          2: kE8LdGAFW614HUcjN1MoZxFokJs.roa (hash: XYMGtkKoA87TX5nzm+UQ3ylduTU9EvUGKlmdAtXqyu4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 18 Jun 2025 13:26:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7e:31:3c:51:2a:0d:ec:3b:4e:16:9d:6a:6c:d7:a2:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
        Validity
            Not Before: Jun 17 14:00:45 2025 GMT
            Not After : Jun 18 14:00:45 2025 GMT
        Subject: CN=96ec52f3d3cb0b132f256b5d77a6982fb85f8ade
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:8f:0d:35:76:a6:97:f8:47:14:fb:18:83:c0:
                    7e:46:47:8b:43:5d:c9:90:2a:bf:46:7d:90:44:0e:
                    67:16:6c:30:44:1e:a3:8d:05:c1:f3:3f:e5:d2:9e:
                    aa:b1:0c:b9:f2:15:cc:8e:cc:81:96:11:34:b7:35:
                    f5:f9:db:56:4b:74:37:ba:de:13:89:7a:51:2a:6e:
                    68:a6:e7:92:46:9e:c7:83:e0:02:31:a8:77:68:03:
                    26:bf:07:ad:ac:da:35:14:da:c0:0d:92:6a:c1:5f:
                    1a:0c:c6:a7:47:b4:f3:7b:6e:fd:24:f0:10:e5:18:
                    29:f9:0f:f7:b9:ee:a3:d0:e0:a3:76:d7:45:3d:71:
                    86:a3:90:9d:e5:2a:43:b6:d4:85:68:bd:10:96:b4:
                    06:59:69:3f:c2:1a:21:ff:4d:4f:9a:da:37:46:3a:
                    4a:df:7c:91:20:7b:a2:f8:73:39:18:7b:ce:ad:33:
                    48:13:4e:13:af:4c:b5:2a:14:52:0c:2a:c4:80:da:
                    96:8d:6e:12:30:68:ae:ac:74:27:00:7e:48:d3:cf:
                    59:57:07:18:d7:b6:8f:9d:be:5c:2c:18:94:b6:41:
                    bd:3f:af:b0:6a:a6:23:4b:96:06:8a:18:76:d5:eb:
                    6d:11:41:52:8d:ef:ce:f6:b0:13:43:83:e5:1b:e8:
                    5c:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:EC:52:F3:D3:CB:0B:13:2F:25:6B:5D:77:A6:98:2F:B8:5F:8A:DE
            X509v3 Authority Key Identifier:
                keyid:4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d1:1b:5e:e4:83:fc:9a:e5:46:8d:18:09:e3:db:7c:b8:c6:5e:
         d0:49:29:ba:f7:c4:73:af:6b:68:1f:57:0d:3f:36:c7:c4:5d:
         ac:a3:2c:23:60:2e:f2:ec:3a:4d:ff:bd:5d:06:8c:3c:a7:0c:
         05:73:c0:b1:b7:6e:42:1a:79:bc:5b:e6:2d:09:56:11:6f:d9:
         a4:91:06:ce:0d:60:f0:60:42:46:3d:55:3b:fb:e5:ff:ca:0e:
         dc:0b:59:77:cc:04:94:0d:fe:a2:f0:14:15:75:f1:90:53:97:
         bb:a7:75:45:90:29:d3:43:2e:c8:37:8f:b7:86:5e:02:47:38:
         58:2b:dc:e8:ea:0a:b9:6d:24:d0:f6:4a:87:8f:9f:ab:fa:ac:
         71:e5:f0:6c:ac:88:cd:6b:8d:1d:2c:5c:e7:a5:5b:2d:19:7a:
         4d:8f:1e:f8:29:e5:ff:cd:e6:57:97:28:3c:a3:0f:5c:9e:dd:
         41:84:51:40:2b:1d:d8:9c:92:14:34:20:2e:29:2f:c1:43:c7:
         57:89:25:16:c2:11:bf:b2:27:63:67:ed:ea:41:e1:f2:cf:f0:
         dc:8d:77:6f:11:a9:cd:a2:34:c4:8f:ce:ac:2f:06:12:38:96:
         b1:fc:66:91:68:d9:40:74:14:bc:9f:2e:d4:74:14:c9:c8:c1:
         b3:80:5a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 00:06:38 2025 by rpki-client