Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File:                     G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier:          try4O/Pcw2zxTmKvf/ki5AkWvrxpitgf/ODNAW9ow74=
Subject key identifier:   1B:1F:52:8E:23:43:AB:85:54:A9:20:0A:8E:7F:1F:44:37:BE:F1:6B
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer:       /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial:       01976B4F429C3D0DA985D231C8A47920E959
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number:          1520
Signing time:             Fri 13 Jun 2025 22:00:45 +0000
Manifest this update:     Fri 13 Jun 2025 22:00:45 +0000
Manifest next update:     Sat 14 Jun 2025 22:00:45 +0000
Files and hashes:         1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: xOvNuXutuNyjBYdOEw29BHt4p4nV30wnbWxaNPxdzcQ=)
                          2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 22:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:4f:42:9c:3d:0d:a9:85:d2:31:c8:a4:79:20:e9:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
        Validity
            Not Before: Jun 13 22:00:45 2025 GMT
            Not After : Jun 14 22:00:45 2025 GMT
        Subject: CN=1b1f528e2343ab8554a9200a8e7f1f4437bef16b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:76:d0:19:5d:ad:41:c5:6f:3d:44:6c:73:ca:
                    0b:34:03:67:d7:78:19:fd:47:79:12:5e:02:36:b4:
                    5a:fe:f4:c5:a2:56:27:d8:0a:3c:ce:1b:32:ab:13:
                    0a:09:40:b1:e2:1e:30:e0:8d:06:9b:d9:f0:af:32:
                    cd:61:6b:9f:91:18:b6:9a:90:31:4d:11:b7:cd:8a:
                    d6:04:ab:fd:67:3f:96:ea:0e:a9:bd:6e:91:98:e9:
                    cc:74:6e:db:ec:e8:09:14:94:06:7d:f8:12:4d:5c:
                    bd:b5:6f:ff:e8:e0:f9:b5:b5:34:9a:7d:b7:79:a4:
                    de:8d:8c:88:f4:0a:6a:51:67:e8:fc:bc:00:5c:aa:
                    62:8d:bc:e6:f2:ea:b1:33:c0:f1:c9:b5:f9:e5:48:
                    94:be:1b:56:6a:7c:50:29:fd:33:1e:70:de:17:30:
                    96:fc:23:80:99:a6:b7:45:e0:7b:54:b8:77:35:31:
                    4d:3c:3e:fc:94:50:c7:f3:2c:6f:96:46:97:f1:7b:
                    75:76:80:e8:f9:06:65:a7:b8:3b:40:59:0f:ee:70:
                    09:48:9a:47:9a:6a:f5:8a:df:f7:b6:57:28:68:33:
                    27:d0:60:6f:b0:40:a4:f0:98:b3:83:e4:71:46:93:
                    84:1d:88:50:63:6a:8b:11:47:4a:54:81:ba:e8:8b:
                    80:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:1F:52:8E:23:43:AB:85:54:A9:20:0A:8E:7F:1F:44:37:BE:F1:6B
            X509v3 Authority Key Identifier:
                keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:e1:78:2a:b5:1f:70:76:06:79:30:8b:90:85:6d:a9:fd:c9:
         d6:8f:7f:cc:b5:3a:fa:f5:1c:02:d9:a6:51:8f:07:6a:ff:b8:
         0d:f1:8b:3f:5a:8b:a8:82:30:54:39:fc:1f:4e:ee:1e:68:d4:
         9e:63:1e:f8:7f:fe:9c:ca:99:61:38:aa:1f:8c:a5:ed:6f:ba:
         f5:c9:5d:9a:b8:bb:0d:43:e1:ec:69:70:f0:cf:98:00:2d:36:
         6c:e6:fe:86:cf:e7:de:ce:ee:e0:c0:c9:ea:1b:e6:c2:65:42:
         0c:f0:09:a9:c7:59:9c:81:3f:24:0e:1a:3b:e5:53:14:9f:79:
         2c:cb:3e:ad:e9:29:2d:e1:8a:0c:d5:7e:e5:e4:9d:76:15:ae:
         d5:c3:76:da:1c:2a:73:1d:34:7c:90:f0:0a:37:ae:f4:1b:b7:
         1a:35:01:e9:53:81:46:a6:fd:4b:fa:b4:01:e7:ce:f4:26:95:
         1b:ae:75:d8:8b:eb:37:dd:1a:78:de:ca:ce:8c:1c:59:72:b0:
         31:fe:bc:06:c6:46:e0:4a:bc:60:3c:e1:8e:ad:18:6a:a1:43:
         97:2d:66:36:4a:07:7b:7d:70:cc:be:e6:7e:37:d9:c5:19:c2:
         d3:66:cf:b7:5b:6e:61:43:81:dd:63:87:e0:8c:9a:cb:8f:9a:
         48:d4:a0:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrT0KcPQ2phdIxyKR5IOlZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiZWJkMzNkNGNkNDU0NjVlZmE1MGZhYTgyNGZiODEyYzQx
NzNhMjcwHhcNMjUwNjEzMjIwMDQ1WhcNMjUwNjE0MjIwMDQ1WjAzMTEwLwYDVQQD
EygxYjFmNTI4ZTIzNDNhYjg1NTRhOTIwMGE4ZTdmMWY0NDM3YmVmMTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHbQGV2tQcVvPURsc8oLNANn13gZ
/Ud5El4CNrRa/vTFolYn2Ao8zhsyqxMKCUCx4h4w4I0Gm9nwrzLNYWufkRi2mpAx
TRG3zYrWBKv9Zz+W6g6pvW6RmOnMdG7b7OgJFJQGffgSTVy9tW//6OD5tbU0mn23
eaTejYyI9ApqUWfo/LwAXKpijbzm8uqxM8DxybX55UiUvhtWanxQKf0zHnDeFzCW
/COAmaa3ReB7VLh3NTFNPD78lFDH8yxvlkaX8Xt1doDo+QZlp7g7QFkP7nAJSJpH
mmr1it/3tlcoaDMn0GBvsECk8Jizg+RxRpOEHYhQY2qLEUdKVIG66IuAIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBsfUo4jQ6uFVKkgCo5/H0Q3vvFrMB8GA1UdIwQY
MBaAFBvr0z1M1FRl76UPqoJPuBLEFzonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDkt
OGFiNWViNTU4NDczLzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDktOGFiNWViNTU4NDcz
LzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEuF4KrUf
cHYGeTCLkIVtqf3J1o9/zLU6+vUcAtmmUY8Hav+4DfGLP1qLqIIwVDn8H07uHmjU
nmMe+H/+nMqZYTiqH4yl7W+69cldmri7DUPh7Glw8M+YAC02bOb+hs/n3s7u4MDJ
6hvmwmVCDPAJqcdZnIE/JA4aO+VTFJ95LMs+rekpLeGKDNV+5eSddhWu1cN22hwq
cx00fJDwCjeu9Bu3GjUB6VOBRqb9S/q0AefO9CaVG6512IvrN90aeN7KzowcWXKw
Mf68BsZG4Eq8YDzhjq0YaqFDly1mNkoHe31wzL7mfjfZxRnC02bPt1tuYUOB3WOH
4Iyay4+aSNSgng==
-----END CERTIFICATE-----
Generated at Sat Jun 14 05:19:55 2025 by rpki-client