Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File:                     4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier:          EDYyKNi6/IL7B5X1WwhLe2fnyQDobxIWBGzhWOWXQ8w=
Subject key identifier:   99:EB:02:1A:37:FF:D3:C5:A9:31:D7:E3:51:0C:39:38:D9:D6:9C:53
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer:       /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial:       0197575A935E5AF03EEFB652B743F81E4439
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number:          054D
Signing time:             Tue 10 Jun 2025 01:00:43 +0000
Manifest this update:     Tue 10 Jun 2025 01:00:43 +0000
Manifest next update:     Wed 11 Jun 2025 01:00:43 +0000
Files and hashes:         1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: oZ3KliMvUYYE/Bw5hy2NinoXsukLmPhcKFmaaIy86LQ=)
                          2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:5a:93:5e:5a:f0:3e:ef:b6:52:b7:43:f8:1e:44:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
        Validity
            Not Before: Jun 10 01:00:43 2025 GMT
            Not After : Jun 11 01:00:43 2025 GMT
        Subject: CN=99eb021a37ffd3c5a931d7e3510c3938d9d69c53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:b7:7a:74:87:a2:5d:f4:ed:56:8c:4c:4c:2a:
                    86:63:72:a1:be:ac:ee:76:fa:4f:f5:a7:c1:cb:d9:
                    4f:1a:ac:97:fa:1b:f8:bc:9e:75:e2:47:70:ed:4a:
                    9e:c6:2b:cf:2e:65:37:2a:75:3b:a8:b4:2a:8e:60:
                    0a:3c:9b:f3:83:39:01:f6:cf:fe:12:30:4d:a3:86:
                    22:70:99:10:cd:26:e7:39:84:91:50:6b:09:8d:1a:
                    18:d0:63:0b:2f:ae:dc:cf:3f:42:8a:4c:f5:1c:d6:
                    38:fa:cc:c3:98:ae:3b:80:97:e9:d3:a2:0a:be:8c:
                    1b:83:c0:ef:d8:ad:cc:15:34:86:d4:a2:7c:db:56:
                    9d:29:93:24:6b:52:e8:64:6e:4c:92:5b:f4:63:63:
                    d1:79:3d:bd:04:b2:22:fe:2d:1c:df:75:85:59:d0:
                    5c:cd:6b:f4:9e:33:32:83:dd:b8:4b:e7:56:06:72:
                    59:45:a2:b9:14:dc:f3:05:d2:02:5d:2f:24:19:0d:
                    20:f8:e2:8e:05:4f:73:12:f0:b8:c5:bd:d4:bf:fd:
                    7a:72:25:de:73:6a:72:e0:34:43:fb:15:56:64:dd:
                    28:ee:a5:9d:de:3e:97:29:8d:c1:f5:27:39:ad:b3:
                    82:87:4b:1d:17:2f:ec:c2:37:c7:e5:09:10:f8:41:
                    49:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:EB:02:1A:37:FF:D3:C5:A9:31:D7:E3:51:0C:39:38:D9:D6:9C:53
            X509v3 Authority Key Identifier:
                keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:33:7f:47:37:d8:a0:99:53:30:cd:f4:77:5f:5c:21:d8:1c:
         1e:ea:59:94:b9:88:27:96:e0:61:60:01:5d:88:b7:89:57:b1:
         30:a6:01:bd:05:b9:51:36:f1:18:62:0f:31:91:31:7d:92:ff:
         de:88:a5:a6:54:b3:5f:6d:cd:b4:dc:85:9b:c7:72:cb:0a:bb:
         7a:d9:a6:01:06:23:07:14:e8:d6:4c:96:10:2e:85:d9:0d:9b:
         f6:73:be:96:96:90:28:f1:ab:33:80:25:68:7a:e1:dc:30:e6:
         1e:bb:ca:ee:63:5f:c6:1f:75:f2:c5:49:a2:fd:2b:a5:ef:b9:
         e5:ab:4e:77:61:d7:43:d2:01:1f:47:d7:de:d7:c5:11:35:2a:
         a4:84:96:5a:67:21:37:d2:e8:44:66:5f:5e:84:21:a9:cb:04:
         7c:14:bd:31:43:7d:c6:6d:4c:3f:4a:f9:f6:8e:ef:72:82:94:
         b4:33:82:b0:75:99:1e:f8:1f:af:ed:04:f8:c5:a6:79:8a:06:
         18:47:89:ec:dd:64:31:19:9e:03:05:59:30:9a:5b:5c:be:de:
         c1:b5:95:29:9a:6d:f6:af:0e:2e:89:44:5a:a1:49:73:de:08:
         ff:4d:63:cf:ad:74:f5:58:64:69:38:01:b7:e6:c2:f4:f6:2c:
         c7:bf:f6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:47:16 2025 by rpki-client