Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File:                     KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier:          wZD6pWdLz69dtOifufvuPoEIncvmO/pdCOOtlS3oMLU=
Subject key identifier:   01:E1:0F:B6:CB:2D:EE:06:3E:0D:29:04:90:07:7F:38:A5:84:5A:92
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer:       /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial:       0197684DF42012482D339F7C6B1690B7C356
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number:          158E
Signing time:             Fri 13 Jun 2025 08:00:28 +0000
Manifest this update:     Fri 13 Jun 2025 08:00:28 +0000
Manifest next update:     Sat 14 Jun 2025 08:00:28 +0000
Files and hashes:         1: 8U2ACQzYPSPV3L5sSEkKCsB8pBA.roa (hash: ZbH4IgJyW8KkApU2bDE8XFDW+P9+bjUQNudFm1PbyTE=)
                          2: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: Bh7hpX4r9gMjBE+GTln7biFZuJbBDsO5dL8NESHTqew=)
                          3: Ra0sgLWf3JdJbcM4jauXm0fPx4g.roa (hash: ymRkXWhwSlWVwmfkCY22bMBdImNrCEWfsZ+bTko6SjM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4d:f4:20:12:48:2d:33:9f:7c:6b:16:90:b7:c3:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
        Validity
            Not Before: Jun 13 08:00:28 2025 GMT
            Not After : Jun 14 08:00:28 2025 GMT
        Subject: CN=01e10fb6cb2dee063e0d290490077f38a5845a92
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:d4:37:77:f0:f2:5e:6a:46:85:96:50:b4:e6:
                    f2:0f:3b:29:77:ec:60:77:94:26:71:fb:fb:57:b2:
                    0d:14:99:66:47:7a:d3:37:c6:dc:20:4a:0b:6d:9d:
                    52:8f:ac:fb:3e:17:c0:cf:23:cb:99:87:43:b0:00:
                    ab:f3:56:13:11:07:78:87:7f:70:ac:65:de:ff:57:
                    aa:49:ba:fe:7e:61:ed:97:34:d6:15:45:c2:52:34:
                    7f:58:8f:90:51:de:e0:9b:28:0a:73:bb:99:a9:22:
                    0f:56:08:7b:1b:77:61:6c:05:74:3e:27:2b:fc:91:
                    e4:1f:71:cd:cf:73:c6:4d:5e:4e:63:5f:de:cb:b9:
                    39:38:be:9c:2b:31:71:d3:21:ba:86:50:16:57:c5:
                    2e:2d:e1:05:a4:af:c1:76:6a:ec:93:92:a7:e1:87:
                    c2:79:d0:d0:e4:cb:e1:58:d4:e1:d0:9b:6c:5f:d5:
                    12:4c:3e:6d:21:27:84:da:82:df:c0:d3:8c:76:1a:
                    66:c2:d5:4a:45:5d:4c:18:83:9b:95:a2:11:c9:6b:
                    5e:2b:a3:a3:3b:76:97:54:ca:47:80:5c:b3:dc:fc:
                    ff:84:58:75:37:01:c4:cf:17:a6:ca:f9:de:45:e5:
                    52:14:c8:42:8b:fa:b7:13:6f:cd:e6:eb:8e:0f:72:
                    80:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:E1:0F:B6:CB:2D:EE:06:3E:0D:29:04:90:07:7F:38:A5:84:5A:92
            X509v3 Authority Key Identifier:
                keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:c8:30:79:a0:da:0c:35:a2:e4:db:08:28:76:08:22:7c:b7:
         c8:ab:6b:9b:ce:0e:1f:dc:0a:a3:15:39:49:07:b1:82:8d:8f:
         7f:67:57:d9:69:8d:fc:25:a0:86:ab:38:6a:56:4e:82:f3:8f:
         cd:f2:29:4e:b4:0b:33:9c:e8:91:81:6d:76:0f:50:b3:db:e7:
         7d:66:e5:ff:07:99:bb:be:c9:78:96:71:83:65:8b:91:e0:25:
         3d:3e:3c:b6:3b:8f:a8:4f:8b:7e:8c:51:22:62:52:c7:3a:0f:
         58:6a:ed:be:eb:84:7e:e2:b2:55:3a:e9:60:87:2f:b4:ce:99:
         80:13:04:43:e0:5a:0c:85:e1:51:d8:d2:13:87:52:08:e4:e9:
         fa:4c:7a:0c:6b:42:5a:e1:5b:59:ef:c9:ac:dd:d7:55:3f:82:
         0e:1c:04:cc:de:1e:64:a8:ae:12:58:94:8b:93:bf:44:fa:42:
         b3:d7:4b:eb:8e:4e:24:5c:61:14:82:e5:ea:30:65:3f:63:98:
         17:bc:61:0f:d0:69:56:aa:f5:5f:9a:d8:56:71:e5:4d:d6:0f:
         d0:b7:7b:ce:8e:d9:70:b7:cc:04:6b:59:83:74:de:10:35:71:
         ed:29:6a:22:a9:fb:12:3d:fb:79:e0:24:ff:c4:d3:58:e1:ec:
         c8:af:9e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 16:39:18 2025 by rpki-client