Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File:                     4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier:          pn0BZyHM/vYzKv+QPX36auaFDsnNVsAyFgAqtWm+Zro=
Subject key identifier:   21:52:BA:98:1B:20:78:B6:43:21:84:07:5E:37:A9:93:4D:59:62:84
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer:       /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial:       01976929C942ACE00B80A92CCC1447583ACE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number:          12D5
Signing time:             Fri 13 Jun 2025 12:00:35 +0000
Manifest this update:     Fri 13 Jun 2025 12:00:35 +0000
Manifest next update:     Sat 14 Jun 2025 12:00:35 +0000
Files and hashes:         1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: QiJuEj5p9pSOgxjCVupgmpR05VAN7jNyEdXIeCyTrBA=)
                          2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:29:c9:42:ac:e0:0b:80:a9:2c:cc:14:47:58:3a:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
        Validity
            Not Before: Jun 13 12:00:35 2025 GMT
            Not After : Jun 14 12:00:35 2025 GMT
        Subject: CN=2152ba981b2078b6432184075e37a9934d596284
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:31:de:6a:00:2d:91:3c:c1:66:12:61:d3:e6:
                    c6:ee:6c:92:ec:56:e1:3d:b3:14:e9:9f:3b:2e:ae:
                    87:6f:ec:49:4e:ac:a7:39:05:77:fc:11:db:ef:5a:
                    f6:91:90:31:8b:64:a8:4a:3b:90:a6:fc:73:de:79:
                    ab:7d:98:54:b1:b1:e7:c6:55:ca:59:40:b0:8a:15:
                    e9:7d:52:a2:44:87:ac:13:21:68:33:d2:71:b8:34:
                    ba:48:45:50:ba:dc:da:3b:e5:55:c2:1e:0d:e5:78:
                    b2:8a:01:31:97:29:ea:10:03:73:0a:5c:c6:d5:8d:
                    f5:55:99:26:b9:f7:b2:84:43:18:62:12:77:c3:f0:
                    be:9a:25:62:f1:79:b3:05:cf:28:7f:f7:fe:96:40:
                    c7:6a:cf:f3:ed:66:9b:4f:92:e7:da:c4:4e:bd:97:
                    e0:98:91:65:97:b4:8e:b7:93:4a:0a:0e:d2:30:c7:
                    fb:fd:6e:d7:51:20:60:8a:b3:87:05:02:ee:3d:ee:
                    69:79:76:74:8a:d5:5b:6f:b3:6c:5c:c4:24:e8:90:
                    4b:3f:47:df:22:87:c5:fe:bc:93:18:63:99:5a:52:
                    f6:b1:ed:73:6b:e1:b3:1d:c3:8a:1e:75:64:50:5e:
                    84:3c:14:68:d6:e5:ae:36:60:40:c9:d8:5c:24:84:
                    66:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:52:BA:98:1B:20:78:B6:43:21:84:07:5E:37:A9:93:4D:59:62:84
            X509v3 Authority Key Identifier:
                keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:3b:76:83:8e:3a:57:67:d4:eb:4d:35:20:4e:0a:9f:fd:e5:
         6c:90:d1:df:05:d3:7e:ef:c7:f8:6e:84:aa:fa:89:10:43:07:
         27:14:63:6f:46:2c:cc:d1:89:51:7d:4e:c4:60:30:75:7a:96:
         16:6f:f5:9d:08:a9:bf:61:7d:e2:24:84:ca:b4:99:e9:00:c5:
         71:b4:56:72:0a:f7:50:cf:63:ba:c6:f1:11:79:3a:03:e7:c7:
         f5:9c:b4:ef:57:7b:ed:31:29:96:6d:e2:7c:ec:ed:c1:81:40:
         b8:5b:3e:a8:fd:e8:14:d5:86:d4:0d:1b:43:eb:af:16:41:21:
         fd:52:f6:4f:d5:72:c0:6c:f0:3c:a3:da:49:21:5f:56:f2:dc:
         8a:2e:a4:1c:49:b2:13:65:94:d6:c2:82:9b:79:38:d5:84:d2:
         5f:4c:2d:35:f9:3b:47:d2:22:87:8d:b2:0f:ee:c1:43:6e:29:
         90:3d:34:03:24:04:6c:49:d2:93:71:85:88:d2:d2:94:02:fe:
         1c:db:a8:7f:24:67:48:1d:4c:23:be:81:e3:9c:58:cc:c4:43:
         a1:b6:f5:d5:b3:8c:11:3f:0e:14:95:c8:51:c8:73:9f:dd:5e:
         73:eb:a7:3f:4c:ec:59:18:ef:2f:a7:71:e5:8e:aa:ec:db:06:
         9e:06:a9:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:08:53 2025 by rpki-client