Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
File:                     pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json)
Hash identifier:          Tq58R81d2P/nPxUFnzS4YjeaVxpvRMbSDUNUCbC0c9g=
Subject key identifier:   90:F8:16:03:0E:41:BE:22:BA:4B:8B:32:97:DD:25:DC:43:64:06:FE
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Certificate issuer:       /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial:       0197681779533912A7636E2CD7CD2E396D6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
Manifest number:          1363
Signing time:             Fri 13 Jun 2025 07:00:58 +0000
Manifest this update:     Fri 13 Jun 2025 07:00:58 +0000
Manifest next update:     Sat 14 Jun 2025 07:00:58 +0000
Files and hashes:         1: 3nrrtsZJ-IpATR6f6X0fXP8P3Ds.roa (hash: dHLYJp8vBdcpEI62KQkymjAsJXGywGpijB0UQKFJ6p4=)
                          2: b3rpvlrUc4F3iSwCht-ScFiNdQU.roa (hash: IxL38OMcTHb5h0kfUl/vgqGG9zstz9MS/9BQOovbMEE=)
                          3: o-IAHNtlfJTe0lrMjkAn3EfKWfQ.roa (hash: 4yZoP16QAdZ03Ygf8PchIKIjGuMurg8hghXjeARQmNw=)
                          4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: ANXrmOq3XzuzDIeGOs1006mcc5AYlCdiXsXkHEk1svI=)
                          5: z9pY0mNZw1275Un36HrGri4KO4o.roa (hash: YWMIyf15z9zL0EObbho/vFT6JF3XUpar4rPteqovYLo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:17:79:53:39:12:a7:63:6e:2c:d7:cd:2e:39:6d:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
        Validity
            Not Before: Jun 13 07:00:58 2025 GMT
            Not After : Jun 14 07:00:58 2025 GMT
        Subject: CN=90f816030e41be22ba4b8b3297dd25dc436406fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f7:40:f6:3e:f1:8e:6b:f8:38:46:22:7d:89:69:
                    c6:ba:f6:54:f0:95:b1:32:0a:61:f5:65:83:23:b6:
                    f3:42:0c:c3:ad:c7:e8:45:9e:4c:04:d0:c1:08:e2:
                    14:30:23:89:09:9a:bf:d4:63:7b:12:c5:52:41:3a:
                    41:09:59:f7:da:54:5f:98:79:9f:0f:e4:25:58:09:
                    f7:bf:b2:6a:e2:c8:b5:fe:4f:cf:16:c4:c5:e7:b5:
                    58:f1:c0:d7:90:0f:b3:11:ed:cc:8f:33:d2:4a:63:
                    2b:5a:ed:99:82:bd:3d:bf:d7:ac:7e:64:9d:f8:1d:
                    af:cd:54:a5:7a:62:7d:f5:a2:3b:31:0c:3f:7e:21:
                    62:dd:14:f3:56:f0:04:92:37:11:fc:57:4c:7e:6c:
                    e9:1d:5a:4b:95:67:3d:fb:3b:d2:09:ed:46:16:0d:
                    d0:19:6d:e0:4b:d4:fb:4b:f8:11:01:f1:2e:85:71:
                    1a:2f:18:f4:37:ed:6c:1f:dc:86:6b:6b:a7:72:f5:
                    03:5a:a1:f5:85:78:bf:4e:44:5b:60:97:31:6b:79:
                    bd:80:8c:3c:a3:e6:61:ee:98:18:f6:d6:d9:9b:25:
                    82:68:57:51:e6:8b:20:72:c1:a9:fd:f0:82:11:9d:
                    f5:35:b6:0e:9c:45:ec:ad:23:8d:72:db:33:07:b4:
                    6c:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:F8:16:03:0E:41:BE:22:BA:4B:8B:32:97:DD:25:DC:43:64:06:FE
            X509v3 Authority Key Identifier:
                keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:b4:e2:e0:49:e9:31:83:9c:db:77:71:8b:d9:76:fe:f4:9a:
         45:e3:fe:4d:c6:ac:e4:f0:0d:33:90:b5:43:88:50:f4:bf:db:
         04:fc:35:ce:be:35:80:df:0f:ca:e8:1b:8f:94:a1:05:eb:c9:
         c6:9c:4b:51:b3:9e:98:4a:22:18:d7:cc:9e:38:f9:12:d2:cf:
         73:92:99:a5:d9:5e:23:7c:c1:92:bd:e1:91:69:87:8d:8d:df:
         62:ce:1c:3f:09:d6:cb:e2:13:68:69:8a:3f:85:93:ac:df:a3:
         02:5d:92:8c:2f:be:d2:94:ab:f3:72:a9:9f:e8:f9:40:75:d6:
         c8:7c:37:c4:53:46:38:d7:51:4a:d6:ed:15:ba:4d:5e:10:85:
         2c:2b:cc:34:e8:f3:87:33:9d:81:13:40:75:ab:37:27:e4:aa:
         da:5b:d3:7a:b1:57:97:7d:96:52:b8:a5:3e:77:08:3e:ed:3c:
         17:b7:c8:41:34:80:45:6f:24:de:43:a2:1a:c7:01:e6:fc:c8:
         ae:ea:27:6b:b2:d7:8e:76:8d:33:24:92:b9:cb:a9:57:40:1b:
         08:48:b4:e5:0f:54:84:82:8c:4e:8e:2c:c2:fa:88:bb:95:7f:
         f5:7b:00:75:48:fe:76:21:25:96:10:f0:19:75:1d:95:8b:92:
         45:36:83:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:38:05 2025 by rpki-client