Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File:                     TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier:          1uR5tM/POYIrzgj7thIdRkqEQaoqXwdRqh9Jc2O+fOY=
Subject key identifier:   87:D4:11:C5:06:DA:D3:9A:17:A7:7A:68:81:D6:22:8E:67:84:C5:99
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer:       /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial:       019753EB8C43566AD207746D6B0181BB8CF1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number:          158E
Signing time:             Mon 09 Jun 2025 09:00:35 +0000
Manifest this update:     Mon 09 Jun 2025 09:00:35 +0000
Manifest next update:     Tue 10 Jun 2025 09:00:35 +0000
Files and hashes:         1: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
                          2: RSXmGPfQ8mX6WcSR6Z2ZB6u7-VY.roa (hash: 9JPv5cClAHFEamsto3OfYBSv6xhBQ5Y12w+jE6Rhs80=)
                          3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: gjkkAzE6LVYOKumC7smoiTGS85/kVQ/nUou+9NZq3p0=)
                          4: pPV-duHwP_qg6dqtHXTIMJzGTZk.roa (hash: alNCRojVtM9rfP6fgcCwPL9ZC8lIXb9OD5QPFguw90Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:eb:8c:43:56:6a:d2:07:74:6d:6b:01:81:bb:8c:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
        Validity
            Not Before: Jun  9 09:00:35 2025 GMT
            Not After : Jun 10 09:00:35 2025 GMT
        Subject: CN=87d411c506dad39a17a77a6881d6228e6784c599
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:a9:dd:e7:0d:0e:d2:69:1d:e0:26:60:54:48:
                    d6:b1:85:a7:90:70:e7:ce:49:18:bf:57:db:2e:0d:
                    d5:9e:cd:22:f9:4a:5a:88:73:b1:ce:cb:71:f4:b0:
                    72:12:26:64:4e:02:85:a7:fa:3a:5f:a2:21:cb:49:
                    18:b9:92:6f:d4:6a:56:e4:f2:66:e7:ec:59:9c:bb:
                    b3:05:0b:f6:17:be:76:03:89:92:1a:e9:38:56:03:
                    d5:ec:39:34:e3:a2:9b:9e:50:df:65:9e:55:b2:7c:
                    b2:61:3d:6e:db:8f:2d:21:93:66:ba:44:6e:3e:cf:
                    fa:b1:3b:a3:51:99:97:a4:4c:a2:9c:9e:ce:4b:4a:
                    94:af:36:30:cd:6b:eb:e8:93:35:35:0f:3f:f7:dd:
                    0f:08:81:df:3a:81:34:4f:98:f9:b5:cd:bf:c0:4d:
                    47:a0:e5:5b:c2:d0:57:c9:af:41:6c:e3:6e:01:2a:
                    62:78:5d:a5:fb:f9:c5:e3:d1:19:3a:80:ec:24:c7:
                    c8:fc:e3:c3:2b:56:4f:82:37:74:4d:92:ff:ea:05:
                    a0:65:98:fb:af:e7:ec:34:02:1c:9f:f8:41:b2:3f:
                    a6:3a:02:13:be:51:5f:97:db:58:f5:a7:7f:56:84:
                    7b:87:8a:13:0b:bf:2b:4b:c8:50:1c:d4:88:a4:76:
                    06:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:D4:11:C5:06:DA:D3:9A:17:A7:7A:68:81:D6:22:8E:67:84:C5:99
            X509v3 Authority Key Identifier:
                keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:a5:de:c2:65:96:9e:60:5a:f9:3a:a7:f7:aa:35:13:11:a8:
         59:42:b4:59:b5:bb:c7:63:e1:6d:4b:5b:61:1b:51:7c:e9:f2:
         f5:7a:9f:43:29:95:f6:89:88:48:e2:12:9d:29:00:fd:ce:63:
         b5:71:a2:fd:c9:a7:23:55:3e:4f:2d:d6:40:4d:2d:e1:df:d8:
         3c:a7:1e:22:4c:c7:92:d7:0e:2d:68:dc:0e:64:12:75:4b:54:
         d8:1f:8b:98:f4:c2:71:b1:06:9f:ce:65:ae:84:82:11:fd:b9:
         6c:4d:dd:ab:9b:62:54:51:02:30:40:ef:72:ff:54:af:c2:8d:
         ac:69:65:60:7b:1c:7b:fe:a0:8f:5d:5a:45:69:f3:b1:74:87:
         02:42:b4:4e:01:2b:28:16:31:f8:94:32:0e:dd:66:d6:43:a0:
         8a:65:4c:20:7d:40:23:bb:dc:04:3f:cb:a0:4a:4b:64:57:19:
         9e:92:21:89:d3:54:10:4e:b7:1d:04:ed:2f:34:63:5c:c7:d4:
         e1:ae:42:e3:2d:ba:9c:92:d5:fa:3e:ed:01:af:51:00:3a:80:
         85:cd:b2:25:e4:db:53:f3:f7:02:f3:fa:21:fb:8f:58:d0:d6:
         7e:bb:73:0c:38:3d:cd:55:93:9f:10:c9:13:b6:e0:07:ac:a7:
         23:2f:45:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:34:14 2025 by rpki-client