Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
File:                     kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json)
Hash identifier:          iY0fx5Y0Kun82gkoSdpF8t7xXGJpigQv4asv1cc/L84=
Subject key identifier:   30:74:AC:91:28:27:3D:4B:29:9D:EB:42:D2:75:65:60:1D:4E:2A:2B
Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
Certificate issuer:       /CN=913836859c6ce1869340edf1f273709b8094d9d4
Certificate serial:       019768BC164D8DBA402002F8C4E24AA7F839
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
Manifest number:          14F4
Signing time:             Fri 13 Jun 2025 10:00:46 +0000
Manifest this update:     Fri 13 Jun 2025 10:00:46 +0000
Manifest next update:     Sat 14 Jun 2025 10:00:46 +0000
Files and hashes:         1: i0znYyDIsk78QzCDDCTg60lK9ig.roa (hash: aeDo1wq5VczgcfrDX0J+4eB6IcjwVsRwiJM6vkXROSk=)
                          2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: wqextgymf13j8FGqehSK2+lUVj5sVOR2uShWQhkc1YU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:bc:16:4d:8d:ba:40:20:02:f8:c4:e2:4a:a7:f8:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4
        Validity
            Not Before: Jun 13 10:00:46 2025 GMT
            Not After : Jun 14 10:00:46 2025 GMT
        Subject: CN=3074ac9128273d4b299deb42d27565601d4e2a2b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:88:7a:e2:12:bf:5f:cc:37:eb:6a:ae:3a:4d:
                    c4:da:87:7b:f3:78:c6:1e:88:a9:e4:e6:7a:ed:e3:
                    f9:0e:67:db:c7:1d:34:e6:39:dd:2a:85:77:f1:35:
                    89:7a:30:64:ba:94:e2:74:55:58:2e:9e:89:ce:81:
                    12:cb:b8:55:b3:53:20:30:4b:cc:8d:4b:c5:ef:5a:
                    88:c3:a9:b5:ed:82:73:57:56:f2:72:14:26:e3:62:
                    e0:c2:55:ca:a0:0b:20:e0:1e:e4:77:16:16:c4:0a:
                    e9:c3:59:e3:e1:0c:db:d4:5e:37:fa:07:72:92:cb:
                    2d:30:76:ac:39:61:d1:e3:e1:a8:bd:50:67:a5:77:
                    20:40:b7:b4:3e:4c:28:43:59:2b:be:b2:87:e1:ac:
                    4b:59:d0:12:d2:72:36:8e:b3:33:0d:70:cb:3a:f2:
                    1c:01:ee:f9:40:3f:be:61:bb:3e:03:2f:e1:86:bb:
                    53:d3:7b:84:6f:ce:b2:2c:24:03:5b:bc:6e:c4:43:
                    e9:1b:e2:a2:fe:cc:cc:9f:a6:a6:9b:07:ef:69:ce:
                    59:24:74:df:d6:78:25:cb:ed:1e:e2:83:19:90:d0:
                    44:30:03:ed:05:fa:e6:c9:25:da:ae:7b:fe:51:f3:
                    eb:e2:f5:5f:95:a7:bd:20:98:81:bc:95:46:db:d2:
                    a8:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:74:AC:91:28:27:3D:4B:29:9D:EB:42:D2:75:65:60:1D:4E:2A:2B
            X509v3 Authority Key Identifier:
                keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:7a:fd:bc:0b:b4:62:38:49:7d:20:1e:d5:71:64:0e:37:1d:
         42:ac:d8:44:75:c8:1e:be:d7:17:3b:99:7a:57:89:68:5e:01:
         0d:fc:b9:f4:a3:46:54:c1:19:68:df:16:33:c6:32:4d:cb:eb:
         66:22:62:43:9b:b0:84:55:fd:86:e4:40:db:7c:a8:e3:eb:ff:
         18:e5:48:c5:00:c8:7b:11:18:80:93:b7:d4:0a:e8:56:aa:ef:
         4f:35:cc:b4:d5:e8:71:15:bb:d2:3d:64:4f:94:58:9e:ae:5a:
         93:5b:2e:6e:ea:af:64:14:4e:84:01:18:8d:e4:72:e6:93:72:
         27:e9:2d:6d:72:8a:27:c5:69:00:af:1f:02:a4:25:ce:c0:17:
         c8:bb:52:14:21:c8:38:4f:15:5c:2d:5f:bf:77:eb:21:c6:c2:
         9f:95:22:b3:f7:aa:48:85:c5:aa:a5:86:59:66:6d:57:e7:b5:
         e3:b8:49:2b:fe:71:c8:0f:2e:86:15:78:f9:cb:2d:a4:be:b8:
         b3:6f:82:09:6b:81:3c:04:f0:cb:0e:57:55:e8:bd:7f:a7:db:
         b3:52:59:52:8b:92:5f:b1:71:03:5e:a0:99:68:e3:28:b0:fa:
         2a:75:1d:be:4c:75:db:57:b5:3d:9c:88:41:43:5e:93:dd:75:
         c6:8e:af:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 16:39:04 2025 by rpki-client