Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File:                     5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier:          DT7Dr/ANVmrk8vWyu8jtfEJKZ2mGhKINHiJ55PVy1bc=
Subject key identifier:   59:E0:1B:E8:DE:66:BC:CE:C2:0F:96:83:1B:18:7C:A5:BC:57:1A:F1
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer:       /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial:       019757917E1FD4DD747699026936FC4CC55F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number:          1513
Signing time:             Tue 10 Jun 2025 02:00:42 +0000
Manifest this update:     Tue 10 Jun 2025 02:00:42 +0000
Manifest next update:     Wed 11 Jun 2025 02:00:42 +0000
Files and hashes:         1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: yH4cBNHwQmYJO/RWMtTr5BLEGqBNC5Orxdy5I0HqJIU=)
                          2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 02:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:91:7e:1f:d4:dd:74:76:99:02:69:36:fc:4c:c5:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
        Validity
            Not Before: Jun 10 02:00:42 2025 GMT
            Not After : Jun 11 02:00:42 2025 GMT
        Subject: CN=59e01be8de66bccec20f96831b187ca5bc571af1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:bb:20:09:3e:37:86:c0:92:2d:e7:be:70:f6:
                    cb:f1:de:66:8c:d3:e9:68:59:8e:a4:e4:63:f6:a6:
                    db:4c:ce:16:31:1a:88:6c:66:9f:ea:c0:f1:82:3a:
                    5f:ee:ed:51:fb:c1:61:1c:35:a3:8e:3f:d5:be:65:
                    50:5d:e8:45:34:45:27:61:d2:93:06:fb:97:2f:3d:
                    28:03:84:11:81:da:c4:fd:ba:e9:33:9b:4d:ba:07:
                    dc:1f:4e:c7:88:c1:f8:88:1a:a1:5b:ab:b4:50:ec:
                    41:36:c4:2f:f8:06:bd:33:2d:20:1b:21:02:bc:66:
                    1c:19:db:30:6f:03:d9:4d:11:39:14:61:3b:65:f0:
                    d6:7c:d1:dd:46:96:35:a1:e0:06:93:ae:8f:cb:ce:
                    5e:28:90:fa:24:4f:ea:43:cf:67:8c:39:f3:d3:18:
                    a4:e5:4f:45:f2:9a:ea:a3:fb:0b:e6:42:72:ae:ad:
                    43:e6:76:f0:a5:e9:58:d4:c3:34:e9:0b:3c:e1:5c:
                    14:3e:e7:ec:e4:51:46:bc:cd:ba:17:51:2e:18:85:
                    ce:cb:79:ed:e9:d2:82:0e:f7:b0:e3:6d:da:b9:17:
                    ea:b5:f6:ac:76:ad:94:20:1f:b2:c7:72:cb:ac:9a:
                    ba:97:32:9f:89:df:95:2b:eb:7c:1f:49:a6:14:fc:
                    b7:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:E0:1B:E8:DE:66:BC:CE:C2:0F:96:83:1B:18:7C:A5:BC:57:1A:F1
            X509v3 Authority Key Identifier:
                keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:8c:8e:a5:f5:09:a4:0d:3d:04:9e:8f:9e:5a:b0:48:09:f2:
         18:b3:9e:ef:4f:74:b7:f4:55:40:4c:df:73:44:85:9a:77:8c:
         e4:54:3e:42:6b:03:a7:d9:24:26:b7:90:17:cb:d6:42:b1:23:
         ee:8b:b1:12:fc:e0:e9:24:f1:aa:77:f5:9a:64:8b:61:e1:cc:
         4f:fe:d2:1f:4a:c4:8c:71:a5:ca:fc:6d:93:ce:92:fd:43:cf:
         66:8f:c3:aa:11:76:7f:0a:4d:bb:5c:0f:9b:22:72:0a:12:68:
         b9:5a:63:dc:3a:09:f9:ec:13:d3:64:83:e8:ae:b2:2f:e4:9b:
         74:f3:a9:51:c7:8e:9a:fd:61:e5:be:9c:87:18:c2:71:93:fe:
         54:17:e5:55:88:66:c7:2f:5d:dd:0e:3f:58:20:2f:2d:df:fe:
         ee:18:fe:28:fd:f8:f5:1b:4f:5f:b1:1d:5a:ae:95:27:eb:ad:
         75:0e:31:f1:7f:ec:f2:a3:48:23:3d:bd:90:36:c8:5b:1b:48:
         2e:11:15:48:a9:26:34:f6:ec:42:05:47:af:0e:45:63:a8:52:
         2b:fb:d7:18:31:64:23:69:d2:cf:21:7b:a4:99:eb:50:32:d0:
         26:31:e6:7d:8a:68:c4:e7:40:0f:f0:ac:40:ea:df:bb:9a:0a:
         04:ce:d0:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 13:00:11 2025 by rpki-client