Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File:                     PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier:          o/u/6l0oAabS/qW8gFPHAbAZ/vQsb/e9pDKnbRgXmm4=
Subject key identifier:   4C:31:51:4C:BE:BE:3E:54:A7:7C:91:AB:FB:5F:D6:49:40:34:7F:AD
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer:       /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial:       01975BDC09FF02229C8C25817C8DB6BA6569
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number:          1587
Signing time:             Tue 10 Jun 2025 22:00:36 +0000
Manifest this update:     Tue 10 Jun 2025 22:00:36 +0000
Manifest next update:     Wed 11 Jun 2025 22:00:36 +0000
Files and hashes:         1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: E0AkQ84w+pwCqTJyoEvlpiF6JbzHU+KhM90Zau/jHRk=)
                          2: tlchQmDxgjTRo1pLaspfZw12O3A.roa (hash: 6bDu460ilvbyFwMJbm1Vw+QewREO9nGYqnB3iYaAR4Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:45:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:dc:09:ff:02:22:9c:8c:25:81:7c:8d:b6:ba:65:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
        Validity
            Not Before: Jun 10 22:00:36 2025 GMT
            Not After : Jun 11 22:00:36 2025 GMT
        Subject: CN=4c31514cbebe3e54a77c91abfb5fd64940347fad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:c9:c1:e3:3f:82:91:59:7e:57:ce:99:2b:9b:
                    56:87:cc:e7:8c:9f:d7:16:43:da:79:e2:fe:35:c2:
                    30:a2:df:82:91:b6:42:d0:ee:44:a9:b2:34:68:13:
                    1f:80:9c:50:ee:93:73:20:bc:10:10:21:ce:56:7d:
                    37:0c:9b:6c:8c:6d:07:c5:40:ef:53:51:02:18:bf:
                    e1:fa:78:88:c4:cd:ef:5c:c2:69:d7:41:17:00:90:
                    7d:2a:79:45:cb:ff:42:92:03:1e:41:66:3e:a4:d0:
                    d6:41:91:8c:8f:8d:c6:4f:34:9a:4f:c1:37:af:33:
                    a1:7e:e7:8e:31:60:12:93:33:8b:0c:c5:0c:89:e0:
                    90:38:f4:77:09:d9:f6:75:d2:45:59:a0:32:4e:09:
                    19:5e:24:6c:70:a7:9d:5d:76:eb:b7:38:81:f3:92:
                    1e:5d:bf:c6:be:c2:1f:36:e7:ae:de:56:b4:d9:61:
                    a7:5f:69:b8:e4:82:b7:cf:bf:e1:4b:d8:b7:b5:d7:
                    38:40:17:d0:1a:98:b9:cd:62:39:b5:70:a1:84:9d:
                    c2:db:ca:2c:c4:0b:2d:67:59:fc:c2:94:c3:be:f9:
                    90:22:6e:c0:83:4d:38:0d:03:3e:52:20:6b:4c:f7:
                    d1:70:62:f7:93:c2:be:75:ee:db:7d:59:0f:10:db:
                    b0:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:31:51:4C:BE:BE:3E:54:A7:7C:91:AB:FB:5F:D6:49:40:34:7F:AD
            X509v3 Authority Key Identifier:
                keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:b3:6e:71:e4:05:25:10:03:a7:b1:45:b5:46:83:13:17:5a:
         c5:e0:f5:b4:cd:3f:85:b2:e5:38:35:28:df:72:db:1f:d0:70:
         75:87:78:6d:0c:2f:ff:fd:97:79:72:b3:7b:07:dd:a6:cd:69:
         88:bb:8c:c6:e2:dd:d3:f4:11:e7:80:59:10:70:9d:e3:48:a5:
         25:c6:20:b7:fe:b3:4c:f9:51:b8:57:37:62:fa:3c:27:aa:3c:
         ae:07:da:31:25:20:cd:0c:0b:27:02:d5:59:65:00:a8:56:d3:
         f4:90:c2:b4:7f:a7:b9:68:e2:80:06:61:2a:10:82:d6:7d:17:
         58:6d:7f:a7:f7:bd:bf:8e:de:76:17:a5:37:79:c5:1c:9b:f9:
         5b:04:0c:d2:16:a0:f9:85:cf:ad:b6:a7:0e:c3:cf:c5:6b:a0:
         4b:ed:e5:23:f5:84:72:f0:96:81:82:7d:23:31:d7:91:d7:38:
         2a:3f:b0:b9:ec:05:b2:62:28:5a:01:04:1a:f8:8b:17:6f:b0:
         fc:66:24:ac:9b:b2:99:a6:21:c0:c5:02:ac:84:1e:f3:81:b7:
         37:07:00:20:bf:bb:78:7e:9f:5b:94:66:a0:ba:b7:8a:35:77:
         bf:4c:26:4d:e0:ee:ee:6f:70:2b:e2:7d:b8:e4:55:00:b7:74:
         04:e7:15:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:38:25 2025 by rpki-client