Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File:                     TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier:          stIxVpFM/kI5/j40OaiRM47MqKW3qnv8ASU9MH0T0Hc=
Subject key identifier:   38:61:23:9D:E8:DB:1A:4A:DE:56:3A:EE:47:54:C7:2C:ED:5E:5E:3D
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer:       /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial:       019757C8533C7770C93C6C0EA79909EF9E2D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number:          1590
Signing time:             Tue 10 Jun 2025 03:00:35 +0000
Manifest this update:     Tue 10 Jun 2025 03:00:35 +0000
Manifest next update:     Wed 11 Jun 2025 03:00:35 +0000
Files and hashes:         1: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
                          2: RSXmGPfQ8mX6WcSR6Z2ZB6u7-VY.roa (hash: 9JPv5cClAHFEamsto3OfYBSv6xhBQ5Y12w+jE6Rhs80=)
                          3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: 2Km5szmK09gH88P4EKtWNQ1/Rt7FQSuZ/4Rk59q96R8=)
                          4: pPV-duHwP_qg6dqtHXTIMJzGTZk.roa (hash: alNCRojVtM9rfP6fgcCwPL9ZC8lIXb9OD5QPFguw90Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 03:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:c8:53:3c:77:70:c9:3c:6c:0e:a7:99:09:ef:9e:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
        Validity
            Not Before: Jun 10 03:00:35 2025 GMT
            Not After : Jun 11 03:00:35 2025 GMT
        Subject: CN=3861239de8db1a4ade563aee4754c72ced5e5e3d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:90:f4:29:cb:b7:2a:99:44:b2:cf:b8:a2:02:
                    0d:0b:53:a4:3b:ff:7c:0f:2e:63:37:57:a7:6b:63:
                    96:60:61:22:8a:7a:29:b4:e6:ef:48:e3:d5:0a:45:
                    84:95:23:5c:70:f0:af:d0:55:48:61:f5:5d:a4:e2:
                    50:41:d4:2b:45:5b:55:d7:3c:52:3e:51:a6:2c:18:
                    48:00:64:d0:27:73:e0:56:3b:1d:0e:ad:c5:4b:75:
                    51:a5:0e:34:8c:8e:69:7a:d7:6c:4d:c7:55:3b:db:
                    eb:0e:25:ba:d6:d7:b7:e5:de:89:9c:07:6e:82:19:
                    3a:61:15:2b:c3:17:94:7a:c1:4d:7e:24:de:ca:37:
                    8e:08:77:3e:10:c0:bf:c1:7d:01:50:23:8a:df:11:
                    7d:46:2b:59:82:c5:bb:ad:56:42:9a:1d:e9:95:a3:
                    01:5e:8d:ed:92:ab:c6:84:d2:f2:ae:8f:dd:16:a7:
                    cf:08:90:e5:03:3c:5c:7b:a3:59:60:af:be:b3:ba:
                    4b:79:3f:0d:2e:6a:83:2c:7a:48:7b:31:9b:6f:83:
                    58:37:0d:90:3f:c8:ac:4d:e4:05:07:8c:b4:e9:d4:
                    4a:f0:05:1f:38:51:08:49:06:ee:48:82:8b:ad:ad:
                    8b:d2:54:f9:47:9a:81:13:c9:c2:33:c7:36:4c:47:
                    14:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:61:23:9D:E8:DB:1A:4A:DE:56:3A:EE:47:54:C7:2C:ED:5E:5E:3D
            X509v3 Authority Key Identifier:
                keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:5e:80:2a:8c:f6:78:dc:cb:a9:e7:3a:df:fd:42:d2:73:2a:
         63:d4:70:4e:e3:17:ed:15:31:38:72:a8:1a:ed:43:e9:60:a3:
         86:9d:1a:17:0b:d7:df:c3:39:ed:97:15:fe:8a:a9:d5:65:76:
         bc:ee:c8:96:1f:d9:4c:6d:72:1c:23:54:f3:00:42:96:e6:ac:
         d1:7a:4d:31:4c:f6:24:1e:ce:86:89:da:ff:7c:5f:2a:02:d8:
         5d:9a:01:dc:0d:18:d1:b8:0b:44:19:c0:ff:c0:ab:92:83:32:
         41:46:59:ec:5e:f9:86:73:08:88:bf:e5:bb:6c:a6:03:f0:ef:
         ed:b4:0e:d4:02:ac:b6:a9:31:b7:8c:ba:23:9c:75:8e:f8:4e:
         38:25:76:7b:d3:1a:c6:bd:6d:78:b4:62:f8:ba:ce:3c:e8:af:
         e2:be:c1:45:b1:2e:ac:2a:26:d6:f1:b4:0d:9d:e1:3c:f7:a2:
         f5:ed:5e:fa:aa:19:63:0e:bf:a7:d7:03:3d:83:8e:31:ba:87:
         81:4f:73:89:4e:59:86:2f:bb:bb:ef:77:1c:a6:ad:33:3d:7b:
         4b:05:e6:c4:9e:88:fb:36:2c:dd:d7:77:30:81:b7:53:9f:76:
         b3:32:f1:19:52:d9:df:2d:37:a7:ac:1e:37:dc:aa:ce:97:c3:
         61:38:6e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:37:14 2025 by rpki-client