Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File:                     KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier:          tluwkSsxGqM7NLCLVdpalOi9FV3D4C1kOMKhDgtVku4=
Subject key identifier:   24:3C:33:85:87:14:72:78:C2:A8:D5:05:63:54:24:0C:28:96:62:90
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer:       /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial:       01976A3C53C758A4612C3F15B40C4BB78302
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number:          158F
Signing time:             Fri 13 Jun 2025 17:00:27 +0000
Manifest this update:     Fri 13 Jun 2025 17:00:27 +0000
Manifest next update:     Sat 14 Jun 2025 17:00:27 +0000
Files and hashes:         1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
                          2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: cQ9dZwH2xvk5kDH2GP0P8lPDBEMpMkU0SysJUzFQtSk=)
                          3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:3c:53:c7:58:a4:61:2c:3f:15:b4:0c:4b:b7:83:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
        Validity
            Not Before: Jun 13 17:00:27 2025 GMT
            Not After : Jun 14 17:00:27 2025 GMT
        Subject: CN=243c338587147278c2a8d5056354240c28966290
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:ee:ef:30:9d:06:b8:27:c1:47:82:ac:d0:6c:
                    cf:fb:0f:b8:90:ad:64:e4:16:b7:7a:e9:ed:1d:a7:
                    c7:c1:65:12:f7:1c:d5:ab:6c:3c:88:8d:3a:9a:d6:
                    4f:57:83:9b:c7:4b:bd:63:44:7d:b5:d0:65:97:c9:
                    8d:d8:d4:6e:86:a2:e1:c6:2c:ad:c1:ea:46:75:08:
                    ff:31:1f:d3:c0:a6:c9:a0:ba:40:1b:26:dd:23:1e:
                    ce:fa:7d:a1:68:6b:88:4b:61:02:20:92:3d:75:16:
                    74:8b:5d:6e:3f:a8:2f:b1:da:ee:00:0d:bf:55:7c:
                    6d:f2:9e:b8:0d:86:a0:73:db:0e:14:2e:da:0b:9d:
                    1b:54:b6:cb:ef:6a:6f:c1:91:8c:08:9f:99:b9:fd:
                    2e:9e:a3:5f:08:12:37:49:b6:5e:39:d4:c7:6b:d6:
                    64:04:17:a4:ee:58:cd:68:d6:40:b8:65:cb:28:cc:
                    63:8c:af:ad:3e:26:48:61:c4:0b:b9:cb:8f:63:9f:
                    eb:e1:61:40:66:d0:84:3c:39:08:3b:f0:74:8e:d3:
                    11:d3:7a:4d:ee:85:e7:f1:ea:34:1f:c3:ba:b5:12:
                    d6:9c:17:bd:50:88:2d:3e:f0:df:5d:9c:a6:41:d1:
                    d8:1a:4d:7a:f7:86:36:80:ba:d9:70:e9:16:a9:f7:
                    a8:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:3C:33:85:87:14:72:78:C2:A8:D5:05:63:54:24:0C:28:96:62:90
            X509v3 Authority Key Identifier:
                keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c4:30:58:9c:8c:8d:ca:98:ea:11:f7:50:3f:25:18:31:e1:bc:
         40:49:aa:d4:bb:26:49:1b:0f:81:6a:f1:90:20:1b:23:56:70:
         6a:6c:a6:34:4a:2e:dc:2d:98:18:b7:17:37:15:da:21:3d:bb:
         e7:9a:f1:c7:d6:1e:c6:d5:1b:d1:24:47:5e:df:40:67:12:d5:
         7e:6d:b0:38:bf:69:2f:1c:3f:0c:8c:da:26:16:ad:d2:7a:58:
         c8:91:99:5d:ff:7a:3c:fb:ee:c2:c7:a9:53:89:58:7d:2e:98:
         d6:b7:a4:24:94:65:cc:ab:34:b5:47:3e:8b:d4:ff:f7:74:2f:
         f8:e8:d6:7c:bd:63:1c:a5:f7:df:c6:37:3f:20:bb:20:c6:f0:
         3b:d3:42:ca:a0:06:6c:8e:f7:e5:e0:77:cb:f2:16:2c:39:ba:
         f4:db:05:5b:cc:d2:64:8f:8d:e5:c0:b3:f4:69:27:d5:0d:db:
         de:63:8f:f8:4a:ba:85:bc:b6:ee:c4:54:3f:1f:b3:73:fa:8d:
         9c:0c:c1:67:ca:c5:be:dd:1c:75:2f:6e:c9:30:71:b4:5c:02:
         b9:9a:2c:5d:5b:5a:e2:0f:c9:83:c6:07:de:18:42:2e:3d:bf:
         ee:ca:13:98:57:77:38:eb:02:6d:f5:6b:9d:17:0d:77:01:0b:
         e4:e1:6f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:53:26 2025 by rpki-client