Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File:                     5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier:          pKhrNJ29AMQEYhwH8SPVrttXneEmuZkf8yPeo+2SBEM=
Subject key identifier:   6A:62:FF:9E:C8:62:49:0C:33:BE:CC:81:6C:2F:99:A9:0E:EC:B3:52
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer:       /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial:       019753B4AB476FFB7E33B2CE6452B97DCA99
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number:          1511
Signing time:             Mon 09 Jun 2025 08:00:38 +0000
Manifest this update:     Mon 09 Jun 2025 08:00:38 +0000
Manifest next update:     Tue 10 Jun 2025 08:00:38 +0000
Files and hashes:         1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: qtOmVrq3cJhCpnxX+sGHkfsJW7wvw2zZWu5FLtq6Yqc=)
                          2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 08:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:b4:ab:47:6f:fb:7e:33:b2:ce:64:52:b9:7d:ca:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
        Validity
            Not Before: Jun  9 08:00:38 2025 GMT
            Not After : Jun 10 08:00:38 2025 GMT
        Subject: CN=6a62ff9ec862490c33becc816c2f99a90eecb352
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:bb:8b:6c:cd:2b:45:f4:7d:a7:fd:2c:99:32:
                    e0:f2:80:9e:14:f0:0b:dd:83:4b:44:d2:b8:05:5a:
                    13:5f:61:cf:82:bc:80:3a:57:59:c0:a5:5a:cc:1c:
                    42:21:f0:3f:d9:16:a5:e8:65:a2:28:24:05:24:28:
                    f5:1a:f9:b9:09:d9:1b:b9:0e:08:b1:5b:02:41:2b:
                    82:01:83:5b:1f:f6:cd:7c:a7:5f:56:d1:39:e7:b7:
                    16:44:e1:a8:d8:aa:1f:29:ff:35:3a:28:21:b5:ce:
                    72:97:bc:ee:c8:35:35:ce:14:52:42:c2:de:ad:82:
                    ec:a8:80:ab:6a:6f:7f:44:2e:ab:15:be:16:6f:2b:
                    55:8f:20:cd:3e:a5:0f:f6:12:68:b8:3e:7a:64:40:
                    9f:31:1c:c4:6b:70:fe:44:26:a1:b4:5d:bd:0f:ff:
                    01:ca:8a:c5:ef:a2:4f:df:de:30:67:7f:8d:f3:12:
                    e7:28:52:c4:8f:44:a8:b8:90:ff:ed:f3:8c:91:cd:
                    f0:9a:ed:9a:63:63:63:93:99:1a:e8:53:5e:6e:b9:
                    d8:c1:0f:10:4a:ea:9c:28:3f:fc:3e:c1:1a:7c:03:
                    ed:2c:f7:be:25:f0:a6:81:3e:fe:52:5a:12:2d:7a:
                    cd:48:82:7f:e0:69:5a:5c:ca:0d:e2:66:dd:71:78:
                    90:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:62:FF:9E:C8:62:49:0C:33:BE:CC:81:6C:2F:99:A9:0E:EC:B3:52
            X509v3 Authority Key Identifier:
                keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:a6:0b:e8:43:7f:7f:b0:0c:4b:7f:95:aa:55:a8:e8:7b:05:
         1e:2d:53:8d:25:03:8d:bd:bf:dc:2a:25:f4:fa:6c:58:e0:b5:
         08:9f:a3:e4:91:d7:04:60:d0:e3:e3:0c:6b:34:b2:c2:a5:ea:
         45:13:e9:9b:13:fc:69:ee:da:8c:65:5b:e1:33:b6:af:cd:72:
         e2:b8:35:93:b4:5a:0e:8c:8b:93:00:82:5a:49:11:96:34:83:
         9d:82:a7:83:dd:77:80:d9:e0:88:d4:55:b9:38:8e:28:72:e1:
         6d:1e:de:c3:72:aa:9c:7f:c8:b5:7e:2e:d0:90:f7:d1:1f:7d:
         df:4f:0d:65:17:fe:61:2b:77:54:5d:65:ae:c2:0b:31:ef:ba:
         5d:35:53:01:03:1b:de:cc:37:85:1d:0a:ff:10:ce:ca:23:4f:
         16:68:c9:2a:dc:d4:ae:81:cc:18:1a:10:7b:f2:99:32:8f:fa:
         9d:e1:21:9b:90:5d:e1:74:1e:cb:53:a9:fe:49:68:d9:e0:15:
         87:04:ca:ff:3e:86:b4:05:89:e4:1f:e2:3e:1b:cd:bf:82:2f:
         af:48:13:8a:2c:70:fd:9c:61:90:33:33:11:18:b8:8c:f3:4e:
         c1:f8:cf:c2:d2:e2:be:5b:aa:7e:65:8b:90:c1:26:8c:e5:96:
         6b:b1:69:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTtKtHb/t+M7LOZFK5fcqZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2MjM0ZWQzZDhjYTk2ZGM1MThkMzVjMWU3YzkyYmViZmNm
NmNlNGQwHhcNMjUwNjA5MDgwMDM4WhcNMjUwNjEwMDgwMDM4WjAzMTEwLwYDVQQD
Eyg2YTYyZmY5ZWM4NjI0OTBjMzNiZWNjODE2YzJmOTlhOTBlZWNiMzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg7uLbM0rRfR9p/0smTLg8oCeFPAL
3YNLRNK4BVoTX2HPgryAOldZwKVazBxCIfA/2Ral6GWiKCQFJCj1Gvm5CdkbuQ4I
sVsCQSuCAYNbH/bNfKdfVtE557cWROGo2KofKf81Oightc5yl7zuyDU1zhRSQsLe
rYLsqICram9/RC6rFb4WbytVjyDNPqUP9hJouD56ZECfMRzEa3D+RCahtF29D/8B
yorF76JP394wZ3+N8xLnKFLEj0SouJD/7fOMkc3wmu2aY2Njk5ka6FNebrnYwQ8Q
SuqcKD/8PsEafAPtLPe+JfCmgT7+UloSLXrNSIJ/4GlaXMoN4mbdcXiQpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGpi/57IYkkMM77MgWwvmakO7LNSMB8GA1UdIwQY
MBaAFOYjTtPYypbcUY01wefJK+v89s5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC85YjY3NGMtMzY1Ny00YzI1LTk5NTMt
M2Y3MDQwOTk3NjgyLzEvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC85YjY3NGMtMzY1Ny00YzI1LTk5NTMtM2Y3MDQwOTk3Njgy
LzEvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGaYL6EN/
f7AMS3+VqlWo6HsFHi1TjSUDjb2/3Col9PpsWOC1CJ+j5JHXBGDQ4+MMazSywqXq
RRPpmxP8ae7ajGVb4TO2r81y4rg1k7RaDoyLkwCCWkkRljSDnYKng913gNngiNRV
uTiOKHLhbR7ew3KqnH/ItX4u0JD30R99308NZRf+YSt3VF1lrsILMe+6XTVTAQMb
3sw3hR0K/xDOyiNPFmjJKtzUroHMGBoQe/KZMo/6neEhm5Bd4XQey1Op/klo2eAV
hwTK/z6GtAWJ5B/iPhvNv4Ivr0gTiixw/ZxhkDMzERi4jPNOwfjPwtLivluqfmWL
kMEmjOWWa7FpXg==
-----END CERTIFICATE-----
Generated at Mon Jun 9 18:53:13 2025 by rpki-client