Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
File:                     StRn8W0JUeQwcTgyxsdZVh52BB8.mft (raw, json)
Hash identifier:          lrlOMWWDsOOrtuzPAiLZwYwBtx7DgIDjspPwCc7oYzg=
Subject key identifier:   7D:5F:31:18:8F:8E:3E:DB:68:C6:18:59:11:41:3C:8E:E2:B4:97:A2
Authority key identifier: 4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F
Certificate issuer:       /CN=4ad467f16d0951e430713832c6c759561e76041f
Certificate serial:       019772D18D199F9F1B56CFDF15DD16CACB9E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
Manifest number:          1592
Signing time:             Sun 15 Jun 2025 09:00:25 +0000
Manifest this update:     Sun 15 Jun 2025 09:00:25 +0000
Manifest next update:     Mon 16 Jun 2025 09:00:25 +0000
Files and hashes:         1: 0qO4O1iuPzCMlLlUt1HamKiYOoA.roa (hash: cgE/JK3sVjQnbjv1N0QFg9l7ug/Hstmhscf6qZhJ3xA=)
                          2: StRn8W0JUeQwcTgyxsdZVh52BB8.crl (hash: m93QjBE1uw9+3PjD/x8oLvJUUHzAHgWkXy/eo2/qKR4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:72:d1:8d:19:9f:9f:1b:56:cf:df:15:dd:16:ca:cb:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ad467f16d0951e430713832c6c759561e76041f
        Validity
            Not Before: Jun 15 09:00:25 2025 GMT
            Not After : Jun 16 09:00:25 2025 GMT
        Subject: CN=7d5f31188f8e3edb68c6185911413c8ee2b497a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:b3:e6:38:0c:ff:09:f0:e3:94:9e:19:b2:48:
                    85:14:3c:c3:6e:74:2d:16:43:2f:c3:a7:bb:24:23:
                    2a:9c:e7:8a:18:11:84:31:e6:6a:ff:15:a4:38:a3:
                    f1:bb:67:d5:ac:02:9c:5f:e2:27:3e:d6:fc:dd:16:
                    4d:53:57:8d:d5:62:5a:8b:40:b4:ee:13:86:99:c3:
                    17:d1:09:29:d3:a9:b3:ba:43:b4:9c:96:8a:95:65:
                    73:e8:99:bc:bd:f9:1e:38:4f:93:c6:9d:2b:81:5e:
                    10:4c:a3:c2:dc:17:40:bd:b7:29:57:e3:e5:fa:4a:
                    87:33:1c:10:15:cd:12:cd:e2:08:48:54:55:c6:88:
                    70:20:cd:d9:56:ae:a6:e5:62:be:b1:30:d5:66:71:
                    f0:c0:78:2d:16:af:64:d7:58:5a:32:95:d3:82:29:
                    65:e6:a4:d1:20:cf:92:1f:4d:75:81:09:e0:17:72:
                    04:ba:32:6b:44:69:0d:58:4f:15:56:76:97:7c:82:
                    ef:80:71:0d:32:5b:7b:13:70:1d:47:b5:a2:d5:c3:
                    fb:25:8f:3f:46:32:3d:29:d4:47:ab:1f:cd:59:44:
                    65:9f:0d:3a:7b:59:58:d0:54:47:9f:bf:1c:26:a5:
                    a3:55:42:06:ab:e4:ac:b0:bd:95:24:6d:8e:bd:99:
                    3e:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:5F:31:18:8F:8E:3E:DB:68:C6:18:59:11:41:3C:8E:E2:B4:97:A2
            X509v3 Authority Key Identifier:
                keyid:4A:D4:67:F1:6D:09:51:E4:30:71:38:32:C6:C7:59:56:1E:76:04:1F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StRn8W0JUeQwcTgyxsdZVh52BB8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/338605-4db4-4ede-a310-5642353d431a/1/StRn8W0JUeQwcTgyxsdZVh52BB8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:36:dc:0f:36:13:ab:5c:0c:9a:80:5c:6c:f1:c9:79:91:86:
         b3:6b:da:f1:bc:6f:92:f7:61:6f:11:84:b9:4f:ae:4e:53:2f:
         09:ab:af:27:37:2b:2e:2b:41:db:9a:99:44:f3:a0:8e:d4:40:
         19:87:bc:2c:f6:27:df:14:54:8f:18:0e:34:b6:d7:96:0b:d1:
         46:4b:04:ec:a7:bb:fb:7b:36:5f:c4:91:3e:ed:81:55:2a:c9:
         f3:37:2f:6b:3c:c6:f2:f7:91:d5:6c:5f:ea:59:48:13:00:a7:
         82:21:1c:e0:44:30:a8:1a:cb:55:69:5e:d5:3f:93:bd:53:57:
         30:1e:01:6d:64:cd:72:67:21:eb:5b:22:58:b5:a4:15:4c:96:
         d9:18:db:8f:a8:aa:f1:14:b9:29:7a:3a:90:82:8d:79:f8:4f:
         73:83:e8:74:f4:4e:79:e5:46:5a:c0:83:70:b9:93:e6:ea:b8:
         05:2f:a8:1d:b6:14:15:0f:74:5d:90:15:13:56:22:ec:77:62:
         d7:cd:a7:62:b4:3a:93:ac:fb:bb:75:ba:88:2b:0a:e9:84:d0:
         98:f5:81:0e:a9:d1:37:5b:e0:62:85:33:a6:ae:1f:66:d0:3c:
         e6:0b:45:b3:08:31:b3:4a:e1:c7:17:2d:4e:97:12:45:ce:5e:
         e1:6a:9d:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdy0Y0Zn58bVs/fFd0WysueMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhZDQ2N2YxNmQwOTUxZTQzMDcxMzgzMmM2Yzc1OTU2MWU3
NjA0MWYwHhcNMjUwNjE1MDkwMDI1WhcNMjUwNjE2MDkwMDI1WjAzMTEwLwYDVQQD
Eyg3ZDVmMzExODhmOGUzZWRiNjhjNjE4NTkxMTQxM2M4ZWUyYjQ5N2EyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbPmOAz/CfDjlJ4ZskiFFDzDbnQt
FkMvw6e7JCMqnOeKGBGEMeZq/xWkOKPxu2fVrAKcX+InPtb83RZNU1eN1WJai0C0
7hOGmcMX0Qkp06mzukO0nJaKlWVz6Jm8vfkeOE+Txp0rgV4QTKPC3BdAvbcpV+Pl
+kqHMxwQFc0SzeIISFRVxohwIM3ZVq6m5WK+sTDVZnHwwHgtFq9k11haMpXTgill
5qTRIM+SH011gQngF3IEujJrRGkNWE8VVnaXfILvgHENMlt7E3AdR7Wi1cP7JY8/
RjI9KdRHqx/NWURlnw06e1lY0FRHn78cJqWjVUIGq+SssL2VJG2OvZk+tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1fMRiPjj7baMYYWRFBPI7itJeiMB8GA1UdIwQY
MBaAFErUZ/FtCVHkMHE4MsbHWVYedgQfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3RSbjhXMEpVZVF3Y1RneXhzZFpWaDUyQkI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zMzg2MDUtNGRiNC00ZWRlLWEzMTAt
NTY0MjM1M2Q0MzFhLzEvU3RSbjhXMEpVZVF3Y1RneXhzZFpWaDUyQkI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8zMzg2MDUtNGRiNC00ZWRlLWEzMTAtNTY0MjM1M2Q0MzFh
LzEvU3RSbjhXMEpVZVF3Y1RneXhzZFpWaDUyQkI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbDbcDzYT
q1wMmoBcbPHJeZGGs2va8bxvkvdhbxGEuU+uTlMvCauvJzcrLitB25qZRPOgjtRA
GYe8LPYn3xRUjxgONLbXlgvRRksE7Ke7+3s2X8SRPu2BVSrJ8zcvazzG8veR1Wxf
6llIEwCngiEc4EQwqBrLVWle1T+TvVNXMB4BbWTNcmch61siWLWkFUyW2Rjbj6iq
8RS5KXo6kIKNefhPc4PodPROeeVGWsCDcLmT5uq4BS+oHbYUFQ90XZAVE1Yi7Hdi
182nYrQ6k6z7u3W6iCsK6YTQmPWBDqnRN1vgYoUzpq4fZtA85gtFswgxs0rhxxct
TpcSRc5e4Wqdnw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 12:25:10 2025 by rpki-client