Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File:                     QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier:          gc1HZV9Y3rblEzpi1ZSJ8IlQjXk1cA2ouey1vRmKfnY=
Subject key identifier:   37:DD:76:73:D0:78:FD:00:B3:CF:1D:4B:4C:A7:20:1A:E6:07:A2:D0
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer:       /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial:       019758DABCC2A4E669B0B2034D07AF201E2C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number:          1514
Signing time:             Tue 10 Jun 2025 08:00:19 +0000
Manifest this update:     Tue 10 Jun 2025 08:00:19 +0000
Manifest next update:     Wed 11 Jun 2025 08:00:19 +0000
Files and hashes:         1: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: bKcndDmTT4v2380faZCZXtFuCELjflkqS061HEm0eEw=)
                          2: j37XoMC3UG0E_oUwTDht88JJrh8.roa (hash: cqy63HfmTCUoUdF/JZjPLrFzuSfjpRSNk0rinu9lqNQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 08:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:da:bc:c2:a4:e6:69:b0:b2:03:4d:07:af:20:1e:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=42a6e640198013de12a251f086030cd78c732516
        Validity
            Not Before: Jun 10 08:00:19 2025 GMT
            Not After : Jun 11 08:00:19 2025 GMT
        Subject: CN=37dd7673d078fd00b3cf1d4b4ca7201ae607a2d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:66:11:0d:eb:f2:14:c1:b3:f5:be:c1:ea:c3:
                    5b:76:1c:98:ee:b7:b0:f9:e2:79:d5:2e:85:0d:22:
                    88:ae:af:b8:d5:a0:d1:54:de:9b:9a:18:75:72:40:
                    56:fc:d7:00:6d:5b:f2:47:9b:b7:a0:0e:56:92:f1:
                    b7:d4:e7:46:1c:77:6f:be:75:d0:53:2d:50:c9:30:
                    0f:d2:be:a5:68:40:a1:01:bd:94:28:e6:ce:a6:27:
                    80:16:6f:9f:be:e5:73:d4:36:8a:32:2b:f6:5c:6e:
                    65:48:9f:83:97:48:28:58:3e:72:2f:4a:ce:44:00:
                    e2:56:69:a2:0f:60:6b:48:3b:56:39:a1:f4:5d:20:
                    dc:34:05:d1:bf:88:6a:d3:12:db:b3:de:4a:75:bc:
                    17:7c:28:db:b1:ae:90:96:37:c9:0d:df:c9:da:a7:
                    6a:84:b9:e7:ff:f9:4f:81:6d:54:96:71:bb:39:d6:
                    ef:fe:b5:ac:6f:e8:c1:5b:0c:f1:0a:76:9c:db:3c:
                    cb:ce:b8:22:6d:6c:3d:5b:10:4a:03:9a:ff:5a:fb:
                    d0:c0:27:b5:c9:a1:cb:96:fb:b7:a8:fb:73:8f:f4:
                    0f:46:37:c0:f4:37:1e:ff:ef:56:74:2b:52:0c:aa:
                    22:26:ac:c3:98:6b:9e:55:06:58:84:b7:96:01:a0:
                    f6:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:DD:76:73:D0:78:FD:00:B3:CF:1D:4B:4C:A7:20:1A:E6:07:A2:D0
            X509v3 Authority Key Identifier:
                keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:2d:b2:d5:52:c7:28:1d:de:0a:a8:4e:65:6d:ed:1d:33:8b:
         d4:c4:99:cc:2e:dd:f0:7a:7a:99:ee:a4:ae:af:8b:2e:0e:b0:
         44:0f:32:b8:2f:f6:b3:a3:04:e5:24:ab:0a:a6:43:c0:1f:52:
         bf:e1:2b:b3:3d:f5:6d:ae:89:eb:1f:53:c0:c6:78:8f:50:05:
         ac:2d:d8:e9:f4:ba:f5:14:7c:a2:9c:1b:09:dd:a1:51:75:f6:
         51:43:bb:66:ab:01:4c:b1:05:85:6b:33:13:35:82:e3:61:c3:
         97:40:95:32:ed:f4:5f:59:c0:58:9a:1d:2e:06:66:f8:e8:d3:
         ab:e9:18:89:28:b7:ae:e7:bc:e7:72:f6:9c:02:55:21:52:89:
         7a:66:95:e3:13:6d:4f:a6:05:19:fd:15:5a:99:6d:2a:9d:2c:
         95:25:92:77:11:42:9c:6e:c5:bd:e4:56:9f:70:03:1b:3a:c4:
         78:86:1b:a8:13:0b:eb:ba:ad:ca:8e:96:a6:9e:7b:08:06:8e:
         ae:39:ee:d7:aa:99:ab:25:16:8b:31:2c:01:4e:bc:b3:0d:03:
         53:88:65:e7:8d:ee:39:12:02:fe:10:86:fc:e8:ce:e2:db:1c:
         ea:05:9e:5f:e7:ec:4e:0a:50:f0:eb:9a:81:f6:ba:95:fa:44:
         3b:19:2c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:23:23 2025 by rpki-client