Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File:                     PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier:          5+F7S3CDQ88gjhaD5E2mBEgOlbiGtm+YHhrQsGwb7wM=
Subject key identifier:   B5:90:4C:F6:5B:37:81:12:3C:4E:E2:BF:A3:A7:60:44:3A:0F:EE:6D
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer:       /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial:       0197730894903FD1A2061E9D1707F9CB6FAB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number:          1593
Signing time:             Sun 15 Jun 2025 10:00:31 +0000
Manifest this update:     Sun 15 Jun 2025 10:00:31 +0000
Manifest next update:     Mon 16 Jun 2025 10:00:31 +0000
Files and hashes:         1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: vdOihf5dslQ2E6d/bAppvFG5AgqOCwooXmAZ3GIbVhQ=)
                          2: tlchQmDxgjTRo1pLaspfZw12O3A.roa (hash: 6bDu460ilvbyFwMJbm1Vw+QewREO9nGYqnB3iYaAR4Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:08:94:90:3f:d1:a2:06:1e:9d:17:07:f9:cb:6f:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
        Validity
            Not Before: Jun 15 10:00:31 2025 GMT
            Not After : Jun 16 10:00:31 2025 GMT
        Subject: CN=b5904cf65b3781123c4ee2bfa3a760443a0fee6d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:42:03:bb:63:45:12:5e:90:f6:7b:d6:94:00:
                    1b:d4:35:e8:bc:37:d8:94:5d:8c:c0:97:22:57:61:
                    00:2a:4f:c3:36:0c:3c:20:ec:24:b1:b7:7f:fb:a1:
                    f9:30:e5:b1:d1:07:93:e2:52:43:6b:14:f9:50:9b:
                    52:fb:29:53:cd:fd:cb:0f:1a:8e:db:93:10:52:24:
                    bd:c5:a5:ed:39:d0:1f:b5:09:68:a5:4c:9c:9e:10:
                    0d:16:af:6b:b2:8a:9d:1c:1a:70:8d:62:31:1f:71:
                    9e:bd:12:40:18:28:5d:aa:9a:b8:a9:6a:51:53:0f:
                    04:a3:06:37:d2:81:74:62:af:30:80:40:cd:13:d5:
                    de:03:cc:dd:23:ff:c1:6c:9b:da:c1:de:31:33:0e:
                    ce:7b:09:a1:7e:20:5c:ae:2d:73:b1:1d:f6:9f:89:
                    21:56:0b:eb:40:1e:5e:12:fb:00:97:2e:09:1c:fe:
                    c9:bc:c8:eb:ce:6e:4b:e4:75:fe:dc:c9:63:41:1f:
                    40:76:9e:5d:ad:f6:14:b2:8f:6f:2f:db:5d:71:63:
                    98:2b:39:a2:36:fc:2b:88:e1:e1:5d:ed:57:72:1c:
                    a0:e1:12:06:09:97:76:a2:06:8d:3d:29:f4:b9:0c:
                    02:ba:54:35:57:06:f1:75:be:c6:0b:b8:7d:51:10:
                    f3:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:90:4C:F6:5B:37:81:12:3C:4E:E2:BF:A3:A7:60:44:3A:0F:EE:6D
            X509v3 Authority Key Identifier:
                keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:d6:bf:f0:17:a7:ad:16:1b:97:90:7d:36:8b:6b:c4:cf:f2:
         18:25:5d:7f:09:be:fd:0b:31:54:28:78:95:45:17:d9:47:a8:
         6e:99:a7:ee:d9:a2:6c:1b:42:39:cb:f5:1b:8f:04:1e:11:86:
         40:9d:ac:f5:8d:c3:14:b6:c5:24:fe:94:df:17:a7:f7:ce:d9:
         ee:df:30:e4:21:b0:52:80:03:43:e3:77:05:02:f5:cd:bb:25:
         d6:26:46:50:9e:a1:9f:5e:f4:3c:e7:20:27:83:25:9b:72:ab:
         3f:86:35:87:7e:f6:a7:4a:87:d2:08:e7:6b:25:6e:4e:7c:5a:
         ab:51:01:b9:c9:e2:00:bb:2b:4e:80:e3:23:b3:2d:f3:e6:a3:
         67:85:25:fd:c2:eb:71:d6:07:b2:71:58:f6:7a:10:45:08:40:
         ea:fc:6a:f0:70:aa:c8:24:97:f2:d8:d1:db:6e:02:39:44:ea:
         94:d2:34:44:43:e6:31:e8:0d:6c:d3:63:23:e5:0c:4e:7c:ec:
         53:71:f0:9a:da:b2:9b:ca:bf:6f:a8:7d:af:2e:15:c1:c1:0d:
         a9:71:56:d5:7b:fe:1b:63:c2:12:09:86:37:ac:ed:85:23:ad:
         bd:39:4f:90:1f:54:98:b0:1f:3c:36:87:b8:a5:c3:05:fd:e6:
         d4:fe:9b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:26:15 2025 by rpki-client