Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File:                     4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier:          0Awt/NPzyIgxYCXNtg3PhwrZKrYzZa+tCFye+2m6xQg=
Subject key identifier:   95:88:4E:7A:74:28:99:00:9C:65:C6:1C:48:57:5D:9E:B7:AB:B8:4F
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer:       /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial:       01976C98B0BA26127B800E21F9AA1FB23802
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number:          0558
Signing time:             Sat 14 Jun 2025 04:00:35 +0000
Manifest this update:     Sat 14 Jun 2025 04:00:35 +0000
Manifest next update:     Sun 15 Jun 2025 04:00:35 +0000
Files and hashes:         1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: B9VQhvKa0HW+Iot6YinbFBvC0YHMdqYtuC0YPxbZ+2g=)
                          2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:98:b0:ba:26:12:7b:80:0e:21:f9:aa:1f:b2:38:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
        Validity
            Not Before: Jun 14 04:00:35 2025 GMT
            Not After : Jun 15 04:00:35 2025 GMT
        Subject: CN=95884e7a742899009c65c61c48575d9eb7abb84f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:a2:29:85:4d:51:d6:23:cd:5f:45:db:66:cc:
                    c2:20:90:b5:e0:6f:86:be:b4:61:23:a7:49:66:5e:
                    e8:32:6b:9c:5e:06:1c:15:86:d3:ae:77:5b:91:c5:
                    6c:56:cd:80:0d:f7:e8:ec:7d:97:3c:14:e5:c2:d0:
                    df:7b:c5:fa:e9:63:80:f4:d7:e6:8c:41:64:c1:da:
                    c2:e9:49:68:9a:90:6b:c2:af:da:b2:e7:d1:55:1e:
                    9a:48:1d:3d:5b:22:75:ad:7a:e2:13:48:18:c7:11:
                    77:49:61:45:8e:ee:8a:e6:ea:64:87:7d:4f:aa:1f:
                    bd:f2:cd:fa:6c:55:d9:59:b1:9f:85:01:2d:14:61:
                    7b:1e:cf:2c:f5:85:1d:1e:81:eb:50:02:7c:cb:cf:
                    24:8f:d5:f8:f8:60:6e:65:ff:91:3e:82:4d:1f:15:
                    de:71:4f:10:0e:17:9e:4a:cf:f9:47:75:8f:67:63:
                    84:89:f7:44:7e:93:ed:b9:66:3f:a0:4c:77:3a:8e:
                    9d:15:c0:29:0f:92:e9:ed:bc:60:9f:f4:1c:03:fc:
                    02:2e:f7:7b:2e:50:45:01:f2:a1:88:f1:bb:92:57:
                    46:6c:56:5e:23:3d:63:b4:3b:ee:ec:f3:e5:8c:b4:
                    3d:99:4c:fd:7a:23:d5:6d:6b:18:27:e4:7b:11:e9:
                    23:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:88:4E:7A:74:28:99:00:9C:65:C6:1C:48:57:5D:9E:B7:AB:B8:4F
            X509v3 Authority Key Identifier:
                keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:c8:14:46:dd:c0:b6:eb:b6:2b:0b:a0:d4:96:e6:22:05:1f:
         49:d9:57:a0:c9:67:e4:9b:26:f7:a1:b9:72:9a:c2:fe:f6:4f:
         9c:35:75:83:e0:b9:0c:aa:e6:c6:49:ac:f1:46:80:ca:ed:04:
         be:69:19:2a:2e:05:6f:b8:31:93:9b:91:1b:07:29:38:e1:04:
         a4:a8:91:15:79:ea:63:b2:75:00:c7:2f:b3:a9:0c:a0:07:a0:
         3f:bc:33:5a:96:97:58:a6:94:09:04:88:ae:0b:51:b4:08:8f:
         db:15:6a:33:dd:f5:37:c6:5f:cb:c8:4b:52:09:43:be:67:d5:
         19:ad:37:b5:a1:e5:d7:91:00:9c:94:3e:d5:ad:89:8b:87:9a:
         66:56:6a:ea:47:fe:17:71:bc:e7:3d:c9:5d:3e:75:b0:36:8a:
         38:b6:2b:88:a0:72:7b:32:89:38:6f:b6:2c:ca:98:d6:9b:6c:
         02:17:1a:e9:6e:fe:f6:06:b8:6b:6a:81:8d:67:3b:5c:60:a8:
         ef:a4:d9:7d:c3:58:84:5a:fd:19:0e:92:9e:38:d4:51:ea:0d:
         22:e4:9d:b4:34:ca:a7:fb:1c:10:45:f9:ee:96:99:f7:82:c4:
         15:a5:51:4e:fe:53:ee:be:4a:c2:57:0b:27:0e:0c:7a:e8:88:
         05:e9:51:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:05:26 2025 by rpki-client