Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File:                     53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier:          oAVoGoDD1cOzsaY4qNfwSVlJl8L50XGZY10p8JiIsfY=
Subject key identifier:   03:3F:B4:8A:0F:71:6A:33:31:D4:21:00:FF:6C:44:57:53:86:92:A6
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer:       /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial:       019762BA07F00503B43F40ECFBA2FB630580
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number:          1589
Signing time:             Thu 12 Jun 2025 06:00:48 +0000
Manifest this update:     Thu 12 Jun 2025 06:00:48 +0000
Manifest next update:     Fri 13 Jun 2025 06:00:48 +0000
Files and hashes:         1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: FReT24QwT0vaKd8pcty3G8YGagV++es2zeNIALRyVWA=)
                          2: NSSboe1wxlMIOf4H1ym0BPT-rCY.roa (hash: dKR82CR6RtrhKiyhhDRuSTP5OlKpaGcPWazs+LJAU9w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:ba:07:f0:05:03:b4:3f:40:ec:fb:a2:fb:63:05:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
        Validity
            Not Before: Jun 12 06:00:48 2025 GMT
            Not After : Jun 13 06:00:48 2025 GMT
        Subject: CN=033fb48a0f716a3331d42100ff6c4457538692a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b3:25:9a:f5:cf:5d:f1:5c:a3:80:ef:6c:27:
                    b3:fc:78:c5:7c:a6:ad:3e:9e:05:0f:4a:e3:cb:ac:
                    a8:4d:27:29:e0:84:ff:cd:b3:6f:fc:76:ce:8e:b6:
                    86:9b:28:2b:72:09:11:61:20:1e:8f:5c:58:50:09:
                    f7:d3:85:91:63:95:0c:17:42:2a:91:5e:25:43:ee:
                    82:c1:99:c5:92:c5:c7:d0:ff:1e:0d:f8:b6:b9:44:
                    1b:84:32:44:aa:d9:bd:4e:97:d6:9c:5d:b7:52:34:
                    11:fd:47:50:93:34:bd:59:02:bb:c5:cc:9e:8f:2a:
                    af:07:81:fe:5f:5a:27:ba:6a:c8:18:50:cc:3c:4d:
                    0d:3c:e9:26:10:2b:48:f6:c4:bd:e8:5a:ab:62:55:
                    be:c7:48:e3:30:6e:e2:7e:6b:18:78:02:15:d1:e1:
                    3e:33:cb:13:61:fb:67:90:fb:12:72:48:3f:f5:13:
                    c7:07:fd:99:da:ab:b8:53:44:42:fa:17:ca:e5:2c:
                    f7:8f:07:17:d9:11:d5:e2:dd:f8:db:64:a9:5c:21:
                    84:8d:04:45:dc:5d:1e:cb:a6:3a:7c:b2:b3:8f:45:
                    1f:fe:40:9d:b1:ff:6c:a5:cd:72:da:c0:94:41:3a:
                    81:5b:b3:d5:28:50:bc:09:f2:0f:66:79:63:ea:2d:
                    dc:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:3F:B4:8A:0F:71:6A:33:31:D4:21:00:FF:6C:44:57:53:86:92:A6
            X509v3 Authority Key Identifier:
                keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:95:dd:1f:85:2d:16:db:60:69:b3:2c:08:22:53:ca:c3:a6:
         d5:83:73:a5:de:7c:cd:a4:50:b4:a1:23:71:cb:d2:36:f5:3c:
         bd:34:76:22:bd:e0:a8:9b:bf:bd:87:c3:79:b8:f2:c0:af:b2:
         04:f5:52:f7:6a:8f:6c:68:b1:51:ca:14:17:21:33:e4:35:04:
         39:df:42:62:07:b1:6b:b4:ba:ab:29:39:33:5b:f3:7e:ba:eb:
         d2:8b:7e:88:72:ab:73:e2:dc:39:08:75:b6:12:ef:24:4d:1c:
         a9:6c:c6:42:bc:a2:e2:4b:fd:a5:56:d0:2e:41:1c:f8:63:78:
         17:86:6a:0d:29:85:f8:a1:2d:84:82:4c:b3:7e:49:f4:3b:bd:
         ea:7a:13:71:b6:bb:55:36:71:03:14:16:fc:88:70:01:f4:3b:
         26:f0:86:26:c4:da:d5:c6:f0:aa:fc:6b:2e:34:8a:f5:5c:5e:
         6a:fc:a2:16:cf:a3:ff:16:6b:03:45:26:0e:b2:1c:58:8a:eb:
         16:3a:44:b7:d1:a0:5d:92:13:dc:af:fa:3e:8c:1b:b6:18:db:
         42:f5:47:d5:09:f9:6b:21:58:ec:e3:8b:f0:c6:76:09:f0:f5:
         df:78:88:3c:f5:ad:a2:19:59:33:f5:39:41:7f:8c:be:77:9e:
         cf:0b:dd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 10:43:10 2025 by rpki-client