Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File:                     StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier:          eKCTEIPCIjrJ4xAPfxAZl+Y1+T0c1LFbt2E2cXwYXN4=
Subject key identifier:   C8:94:05:59:60:E8:D0:2C:1C:5E:12:41:D1:8B:B3:90:6E:24:90:E2
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer:       /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial:       019757C83AC2D496CF8B1D21171F9EC1EC8D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number:          1584
Signing time:             Tue 10 Jun 2025 03:00:29 +0000
Manifest this update:     Tue 10 Jun 2025 03:00:29 +0000
Manifest next update:     Wed 11 Jun 2025 03:00:29 +0000
Files and hashes:         1: 0qO4O1iuPzCMlLlUt1HamKiYOoA.roa (hash: cgE/JK3sVjQnbjv1N0QFg9l7ug/Hstmhscf6qZhJ3xA=)
                          2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: fmiCgqvGpePFHcaOBBynIYm/LZ/FwR9DCIlyml+2Oas=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:c8:3a:c2:d4:96:cf:8b:1d:21:17:1f:9e:c1:ec:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
        Validity
            Not Before: Jun 10 03:00:29 2025 GMT
            Not After : Jun 11 03:00:29 2025 GMT
        Subject: CN=c894055960e8d02c1c5e1241d18bb3906e2490e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:b0:af:bc:1b:0d:c2:54:36:4b:a5:6a:40:ac:
                    7c:f2:01:5d:25:0d:42:8b:13:1b:4a:00:7a:5a:cf:
                    2e:68:6d:87:54:b1:b5:8f:37:4b:9f:6b:c4:c8:5e:
                    7a:a7:e2:28:b2:0f:c5:fe:6f:53:93:52:09:0b:a1:
                    64:4e:8e:40:e6:11:a3:72:34:55:c0:88:a3:db:62:
                    7b:b5:42:e1:48:ed:af:1e:00:89:94:54:f9:33:b3:
                    34:07:87:ea:ba:1f:57:b4:26:4b:8a:1f:d5:3a:87:
                    ff:bb:12:ee:ca:a9:76:7c:60:b9:ff:ce:2a:0c:26:
                    b6:09:ff:77:36:1e:ba:ad:65:44:fe:41:fb:8c:c5:
                    16:15:12:72:bb:dc:aa:f6:33:f4:75:2c:0b:d2:0b:
                    d2:bf:9d:6c:91:3e:6b:9b:66:7f:a8:d5:6f:2a:e5:
                    5d:0c:ab:f4:a1:b5:d9:f7:6c:b5:a8:22:34:01:ba:
                    c6:e1:4c:99:e7:cc:c0:43:72:e2:c4:ea:fa:55:86:
                    2a:b2:37:06:4f:fc:8c:f8:9e:fd:21:a4:df:a5:8b:
                    3a:af:f1:32:56:a7:56:c3:7f:66:2f:a4:61:5f:92:
                    41:f0:4f:db:24:1c:ca:ea:82:1b:a5:dc:e3:e8:bc:
                    a5:df:99:bd:4d:8a:e5:70:6a:c6:e3:9f:46:fd:5b:
                    c6:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:94:05:59:60:E8:D0:2C:1C:5E:12:41:D1:8B:B3:90:6E:24:90:E2
            X509v3 Authority Key Identifier:
                keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:5a:77:c1:b4:5e:8b:2b:70:82:a0:47:63:28:a3:66:01:d7:
         60:31:27:8b:8c:1f:e9:b7:f8:c2:c7:3a:4a:a9:c3:c1:ce:ef:
         01:83:b3:c0:74:fa:f1:ee:12:3c:64:a6:11:99:bc:80:7c:8e:
         e5:7c:eb:bf:87:03:a0:91:4b:bc:a8:ca:87:cb:85:93:29:9d:
         84:ef:34:ea:24:aa:ad:cb:ff:d9:67:1f:e4:eb:14:66:55:bf:
         dd:c6:9f:e3:fa:de:84:a6:fa:04:f5:8d:55:9a:f8:41:38:eb:
         9f:4d:f6:81:ce:04:7e:0f:82:21:ee:1b:1e:36:d8:b9:cf:85:
         fe:93:d6:09:3e:65:e8:07:aa:5a:e2:05:2d:d9:c3:cb:1a:8a:
         75:0e:2e:7e:ae:cb:60:c7:91:a5:32:5f:8c:e9:a1:e8:ed:3b:
         45:9a:44:97:bb:9e:dc:ef:32:77:1a:8a:98:1c:85:59:23:ec:
         be:37:fe:c5:1a:4e:3d:1e:ec:e4:c7:61:7b:9b:8d:87:ca:4c:
         f2:8f:cc:d3:86:f9:5c:e4:98:84:f6:65:ec:2d:b6:8b:90:88:
         ba:18:2e:b2:e8:d4:ec:ae:61:0a:bc:a0:f6:85:ac:00:ec:8c:
         57:3f:2a:14:87:c0:05:00:f4:21:b5:b1:59:8c:18:b0:73:15:
         80:eb:e4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 08:33:11 2025 by rpki-client