Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File:                     4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier:          9f8DUKzN06B913ksF0wFVKzrpabCFUNLqmoWUrZY6g0=
Subject key identifier:   19:1A:C3:D3:28:17:09:EF:E7:67:83:57:D7:78:D3:CC:F5:2E:0E:B7
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer:       /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial:       019764DEEA89CE9C08FDC289564A375466DA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number:          0554
Signing time:             Thu 12 Jun 2025 16:00:19 +0000
Manifest this update:     Thu 12 Jun 2025 16:00:19 +0000
Manifest next update:     Fri 13 Jun 2025 16:00:19 +0000
Files and hashes:         1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: YSJ6YH9UHh7SBbEd06I5Q+gxd7chHq7H+mq0nYaDF8Q=)
                          2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 16:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:de:ea:89:ce:9c:08:fd:c2:89:56:4a:37:54:66:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
        Validity
            Not Before: Jun 12 16:00:19 2025 GMT
            Not After : Jun 13 16:00:19 2025 GMT
        Subject: CN=191ac3d3281709efe7678357d778d3ccf52e0eb7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:6c:3a:74:d3:b8:a4:4b:01:cf:1e:bf:c0:8c:
                    1f:60:2e:07:de:a8:ad:2b:7c:e5:5d:29:c8:1f:f7:
                    1d:23:67:ba:1d:11:96:d3:b7:da:62:19:db:2f:cc:
                    1a:56:a4:73:e5:2c:2f:81:6c:86:b1:e6:27:c7:70:
                    58:b4:91:95:4b:3c:07:5e:a6:66:53:63:a6:8a:bd:
                    6b:16:0b:54:b9:b9:b0:49:89:bf:08:79:31:9e:78:
                    86:50:1f:92:af:28:53:c0:f1:fd:ba:48:55:02:69:
                    8b:6e:a6:73:18:d4:33:41:be:68:7f:37:de:af:a6:
                    93:0b:b1:4e:26:df:43:9b:42:7e:97:6f:c7:4e:3a:
                    11:d2:72:c1:0b:84:7e:bd:ac:06:28:1b:f3:e7:7e:
                    6c:da:b9:08:c9:75:6e:5c:e2:86:e6:4b:7a:44:45:
                    52:ee:d7:7b:6b:07:cb:74:20:cd:08:61:cf:ef:41:
                    27:be:84:17:c7:f0:46:9f:2b:4d:79:96:6d:3a:c9:
                    29:af:d0:f3:10:8d:c9:80:7f:a8:49:ee:84:ce:18:
                    5a:9a:bf:01:5b:02:7c:74:2d:17:78:f1:ba:47:a0:
                    f4:cf:b9:bd:bd:4a:69:b5:d1:68:f3:e8:d5:68:1f:
                    10:80:90:95:ed:8d:4d:26:9b:60:dd:5f:4e:09:f5:
                    a4:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:1A:C3:D3:28:17:09:EF:E7:67:83:57:D7:78:D3:CC:F5:2E:0E:B7
            X509v3 Authority Key Identifier:
                keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:ea:67:54:60:85:8d:46:a6:f4:5e:e5:ae:30:71:74:96:b8:
         7a:72:5a:fe:63:dc:82:b6:3d:ba:bb:2b:df:ff:aa:b8:3d:37:
         29:0b:de:ef:9e:45:2b:f7:33:5f:0c:77:03:e9:8d:7e:9b:3c:
         8d:f2:70:ea:49:a5:ba:d6:a5:de:0c:a2:1f:24:72:78:49:45:
         b4:f7:85:79:7b:bc:bc:cf:59:89:63:84:01:3f:59:31:0d:6c:
         ac:ab:86:dc:8d:da:e3:bc:b2:f8:29:de:a7:40:29:02:ed:fc:
         1d:dc:13:a3:83:a8:b1:51:c4:2c:5f:06:bc:96:68:d6:3f:fb:
         e9:e1:db:aa:b6:9f:74:52:5e:61:17:b5:b4:15:aa:95:dd:b6:
         1d:f0:c0:14:51:a0:1e:df:f7:82:84:7a:f1:1f:83:b0:49:81:
         34:07:9c:8c:3b:7e:ea:23:ad:29:9b:bf:3d:80:2b:74:38:6d:
         e2:9f:8a:09:17:ac:46:86:76:9f:9e:5c:dd:e7:68:d9:31:d1:
         88:b6:43:7d:5e:56:04:18:b6:fb:8e:2b:ac:bf:99:d6:06:3d:
         da:1b:3d:33:70:76:2d:b8:2d:5e:c7:51:db:64:70:b5:e1:fa:
         36:7f:35:9a:bc:ff:0f:f2:21:84:de:12:77:30:a9:d9:ba:8e:
         bf:c2:d4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:40:20 2025 by rpki-client