Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File:                     4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier:          b32KF2rbxYKYd51AENw15AVJJecrx3Diz3HCxBx+cHc=
Subject key identifier:   6A:8B:8E:B1:6A:A1:5C:76:7D:BC:5D:67:0A:4B:D1:E0:91:58:DA:74
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer:       /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial:       019770ACBD55B7E87A8F6579780D9DE34176
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number:          08EA
Signing time:             Sat 14 Jun 2025 23:00:58 +0000
Manifest this update:     Sat 14 Jun 2025 23:00:58 +0000
Manifest next update:     Sun 15 Jun 2025 23:00:58 +0000
Files and hashes:         1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: tkD9DlkvlvriomDf5CX1P9BKk/MnTFtiZmMGkO0eBV0=)
                          2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:ac:bd:55:b7:e8:7a:8f:65:79:78:0d:9d:e3:41:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
        Validity
            Not Before: Jun 14 23:00:58 2025 GMT
            Not After : Jun 15 23:00:58 2025 GMT
        Subject: CN=6a8b8eb16aa15c767dbc5d670a4bd1e09158da74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:1c:b8:29:09:fd:5c:41:69:f2:9c:37:57:0f:
                    cd:fe:0d:f4:75:34:4c:70:a4:90:6a:ba:a6:8c:1f:
                    19:63:58:69:b8:df:64:d8:cf:7a:92:d2:61:c9:55:
                    3e:59:0d:66:9c:a3:6d:20:b4:7c:da:07:d4:da:ee:
                    25:e3:ec:89:97:b4:32:67:e7:4d:8f:f0:dc:0a:3b:
                    61:98:f6:e2:80:3b:9a:e8:2c:5b:18:cd:2d:38:9f:
                    db:64:63:a8:40:fd:eb:b8:6e:92:61:5c:a0:6f:af:
                    7c:b1:58:7a:28:93:a8:38:de:8c:6d:52:b7:eb:d1:
                    67:2b:eb:c3:ee:cc:af:35:6b:5e:ce:43:07:2e:c7:
                    f3:6b:ea:ce:1e:01:cd:dc:bb:b8:19:14:32:55:1b:
                    92:f7:97:87:30:d0:f6:fa:dd:67:39:40:7f:56:2d:
                    86:6c:83:ba:a9:24:de:66:69:bf:0c:e2:35:3d:92:
                    78:71:dc:59:25:4a:e0:9b:f9:5c:83:66:fe:46:38:
                    58:bb:82:0c:c9:fa:71:57:d7:5f:76:b8:58:be:99:
                    21:35:fe:98:db:3a:73:e7:b9:5b:21:f7:48:e6:f2:
                    68:59:1a:32:85:97:e0:d1:ef:87:e2:03:3b:6b:ac:
                    55:c9:c4:39:9c:fa:33:d8:a3:9a:89:9c:2d:c4:ed:
                    90:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:8B:8E:B1:6A:A1:5C:76:7D:BC:5D:67:0A:4B:D1:E0:91:58:DA:74
            X509v3 Authority Key Identifier:
                keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:23:9f:c0:02:5c:5b:f7:65:7b:62:06:41:5a:c7:4d:d7:35:
         47:63:b0:ab:24:6b:cd:ef:08:ad:5a:51:89:6c:bc:03:2d:43:
         2b:eb:d1:9d:b0:0a:bb:77:bd:80:b8:d3:63:d0:c5:41:3f:09:
         5c:72:ce:27:a9:e1:c1:e2:ca:53:fc:d4:1f:4f:24:5f:f6:29:
         c9:ca:3f:2c:d8:56:91:8d:ae:44:4c:89:f0:03:77:83:38:35:
         22:82:ef:67:d4:76:9d:20:a8:5b:9e:67:ea:a6:ec:ff:36:30:
         fd:2f:ba:2f:30:7e:92:a4:e5:a8:48:1d:98:9f:2b:ff:35:37:
         86:5a:45:c0:5b:9d:07:dc:b6:74:9b:a8:be:83:e0:e5:66:cd:
         b3:af:15:f5:29:58:0a:f5:9f:56:38:31:02:f7:5b:4e:3a:6b:
         cf:84:9e:14:a4:76:c4:19:cd:0f:de:1c:87:ac:a0:6f:ec:1a:
         95:83:88:be:62:ef:77:a5:9a:06:fb:88:93:eb:fc:b7:5b:17:
         2f:b9:99:7c:0f:ff:c2:a8:b0:68:c4:ff:e6:69:aa:19:b2:2d:
         8e:00:b6:4a:e1:48:30:dd:1f:5d:44:31:48:18:d5:15:3c:89:
         b8:26:da:23:5c:d1:d6:63:2a:36:3b:cc:86:ca:79:66:c7:7c:
         ff:0f:e6:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwrL1Vt+h6j2V5eA2d40F2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNDFjODViNDc0ZThiNmMwMDg5MWQ5NTQxMjRmZjBjODEy
MDBkOGMwHhcNMjUwNjE0MjMwMDU4WhcNMjUwNjE1MjMwMDU4WjAzMTEwLwYDVQQD
Eyg2YThiOGViMTZhYTE1Yzc2N2RiYzVkNjcwYTRiZDFlMDkxNThkYTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hy4KQn9XEFp8pw3Vw/N/g30dTRM
cKSQarqmjB8ZY1hpuN9k2M96ktJhyVU+WQ1mnKNtILR82gfU2u4l4+yJl7QyZ+dN
j/DcCjthmPbigDua6CxbGM0tOJ/bZGOoQP3ruG6SYVygb698sVh6KJOoON6MbVK3
69FnK+vD7syvNWtezkMHLsfza+rOHgHN3Lu4GRQyVRuS95eHMND2+t1nOUB/Vi2G
bIO6qSTeZmm/DOI1PZJ4cdxZJUrgm/lcg2b+RjhYu4IMyfpxV9dfdrhYvpkhNf6Y
2zpz57lbIfdI5vJoWRoyhZfg0e+H4gM7a6xVycQ5nPoz2KOaiZwtxO2QAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGqLjrFqoVx2fbxdZwpL0eCRWNp0MB8GA1UdIwQY
MBaAFOBByFtHTotsAIkdlUEk/wyBIA2MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMt
NDZiYjNmYTI4YjAwLzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMtNDZiYjNmYTI4YjAw
LzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAISOfwAJc
W/dle2IGQVrHTdc1R2OwqyRrze8IrVpRiWy8Ay1DK+vRnbAKu3e9gLjTY9DFQT8J
XHLOJ6nhweLKU/zUH08kX/Ypyco/LNhWkY2uREyJ8AN3gzg1IoLvZ9R2nSCoW55n
6qbs/zYw/S+6LzB+kqTlqEgdmJ8r/zU3hlpFwFudB9y2dJuovoPg5WbNs68V9SlY
CvWfVjgxAvdbTjprz4SeFKR2xBnND94ch6ygb+walYOIvmLvd6WaBvuIk+v8t1sX
L7mZfA//wqiwaMT/5mmqGbItjgC2SuFIMN0fXUQxSBjVFTyJuCbaI1zR1mMqNjvM
hsp5Zsd8/w/mvw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 02:38:49 2025 by rpki-client