Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File:                     4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier:          FGwyDH0IkcfHr3NKmYNXGVmdvLJ0L51080Kf61gyRpQ=
Subject key identifier:   2E:CE:9C:3F:42:36:87:DB:2F:69:7B:D1:12:B9:8D:81:B1:11:0E:70
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer:       /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial:       0197673B9D138124BE10B377E9508775A7B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number:          12D4
Signing time:             Fri 13 Jun 2025 03:00:49 +0000
Manifest this update:     Fri 13 Jun 2025 03:00:49 +0000
Manifest next update:     Sat 14 Jun 2025 03:00:49 +0000
Files and hashes:         1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: MPW8da9PuGpTS6rMsPR04cohbd0lWZaqpZGhSUsVZ78=)
                          2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:3b:9d:13:81:24:be:10:b3:77:e9:50:87:75:a7:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
        Validity
            Not Before: Jun 13 03:00:49 2025 GMT
            Not After : Jun 14 03:00:49 2025 GMT
        Subject: CN=2ece9c3f423687db2f697bd112b98d81b1110e70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:57:8b:ac:5c:55:a3:86:e7:39:33:68:74:e3:
                    d5:a8:09:16:45:99:f7:b0:e4:07:34:b0:dd:cc:f4:
                    19:5f:83:6b:4e:e3:98:5d:f7:e7:41:d3:5f:dc:2b:
                    2d:c9:b5:ac:76:dc:2c:d6:5f:a0:e8:a9:b2:d3:69:
                    0b:7f:bc:e1:62:82:b9:56:80:93:6c:72:6b:36:e5:
                    f2:c2:d0:60:a8:46:7c:6a:90:6b:7b:d6:b0:b2:0e:
                    95:60:f5:ff:01:7c:57:ee:b6:a2:2c:27:7b:2d:9f:
                    a3:ff:fc:d5:bd:77:3f:26:ae:bf:fd:f8:3e:c2:d6:
                    ea:fb:33:c3:6b:53:e0:f9:f3:bb:6e:f8:23:85:e5:
                    a5:35:9e:80:1d:4b:63:ee:30:f9:2f:ba:d9:98:14:
                    96:6c:75:c9:39:ef:aa:d9:aa:41:8a:59:bd:81:7a:
                    b1:4d:51:10:9c:1e:0b:aa:8a:af:59:33:6e:29:1e:
                    cd:43:4e:68:0c:0f:fa:13:36:f0:1e:1f:38:5d:12:
                    48:c0:9b:65:84:f5:11:7c:73:44:9e:8a:ee:9e:25:
                    c9:98:9f:7b:a2:ec:76:6b:ca:c3:ac:70:ce:a6:cc:
                    8a:00:ab:c3:29:aa:c5:54:ca:e5:37:49:06:e0:47:
                    b4:7b:87:13:8e:86:34:a7:f1:22:62:47:31:1b:bc:
                    5b:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:CE:9C:3F:42:36:87:DB:2F:69:7B:D1:12:B9:8D:81:B1:11:0E:70
            X509v3 Authority Key Identifier:
                keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:21:ac:e2:49:d8:da:53:14:eb:bd:09:e5:1e:cd:f5:32:09:
         c0:a5:38:88:44:42:a2:30:d3:ef:46:ff:a1:55:c8:16:d8:80:
         62:60:af:64:77:39:be:77:d0:0c:c3:06:e0:02:af:bc:c6:26:
         a7:22:35:6a:38:7b:b8:41:7c:31:1c:43:59:b1:7d:96:26:a8:
         e5:e3:5c:e9:e0:42:2c:98:c4:58:82:29:eb:98:07:93:91:cb:
         16:a9:e4:ed:78:74:65:49:29:70:1f:04:17:ea:bf:6c:fb:16:
         bf:f7:65:fd:ae:ea:41:98:fa:a4:e2:02:42:19:95:e8:19:97:
         07:a7:c3:02:c3:be:5b:e1:a2:36:4b:ba:b3:38:07:2d:af:18:
         3e:d9:c3:46:55:76:11:73:9d:17:b1:f9:73:25:82:27:76:83:
         52:03:4e:90:88:b4:ca:24:50:fe:22:12:27:a6:ba:6a:4c:13:
         3e:d7:73:a7:fe:c7:94:19:8e:a5:65:0d:12:8d:16:f2:4a:d0:
         f1:7e:82:9f:62:69:7d:bd:26:0f:c2:13:fb:c9:7d:c4:9a:cc:
         89:8e:e7:99:22:f1:6f:7b:db:80:03:c9:7b:63:fe:16:0e:28:
         6a:92:e8:5e:14:1e:8a:5d:b6:30:a4:05:66:2f:9c:4a:9e:30:
         73:b5:8e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 07:45:45 2025 by rpki-client