Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File:                     53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier:          a6Mxz+eKWiUES16kjwVEExXX1QhL8nnUM5FN/kXrs8I=
Subject key identifier:   31:E7:A1:52:83:34:A0:0D:76:FB:D0:65:3B:51:3A:FC:44:39:CD:5F
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer:       /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial:       019760CBC362B70FFAAA284F5678D33F001D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number:          1588
Signing time:             Wed 11 Jun 2025 21:00:55 +0000
Manifest this update:     Wed 11 Jun 2025 21:00:55 +0000
Manifest next update:     Thu 12 Jun 2025 21:00:55 +0000
Files and hashes:         1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: 99BRwRd+xZEx1GCkXkHTpbNkuPXCgSNFwDH8dI2m/DU=)
                          2: NSSboe1wxlMIOf4H1ym0BPT-rCY.roa (hash: dKR82CR6RtrhKiyhhDRuSTP5OlKpaGcPWazs+LJAU9w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:cb:c3:62:b7:0f:fa:aa:28:4f:56:78:d3:3f:00:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
        Validity
            Not Before: Jun 11 21:00:55 2025 GMT
            Not After : Jun 12 21:00:55 2025 GMT
        Subject: CN=31e7a1528334a00d76fbd0653b513afc4439cd5f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:d5:c8:8c:f0:0e:46:9c:2b:d3:71:e3:30:52:
                    87:23:c5:0b:0a:bd:24:08:02:98:41:39:50:14:5c:
                    80:92:77:18:dc:46:20:d1:e1:bf:78:59:77:99:b3:
                    89:42:27:fa:c8:80:c8:52:99:84:ee:32:27:8d:79:
                    c5:bc:24:8c:c6:b2:56:0b:2a:21:97:50:67:08:80:
                    8d:c2:ca:d1:4f:34:77:f1:ca:04:47:ab:aa:88:58:
                    91:8a:c2:21:1a:4f:af:df:13:b2:79:be:8b:f2:78:
                    8d:45:91:29:72:a0:11:4d:81:7e:4a:9f:8b:63:03:
                    f3:9a:45:dd:20:42:67:f1:73:74:f8:52:70:cf:70:
                    cb:cf:b8:35:09:82:27:79:d8:39:af:aa:af:ce:a0:
                    6d:fe:fd:ad:ab:8e:06:4b:74:30:1a:b7:a8:d1:ad:
                    34:1e:ab:9c:a0:72:9d:f2:10:3b:85:5b:a3:aa:08:
                    d3:aa:2c:57:b6:59:b4:e9:15:26:70:da:17:60:43:
                    bd:30:f5:ee:d7:fd:49:d3:ab:dc:46:0c:ba:13:b4:
                    89:f6:9b:80:fc:00:ac:8e:a3:4e:56:cf:60:75:4a:
                    69:7a:5d:29:d8:96:ac:2b:4c:e3:0f:f0:9e:92:2b:
                    be:95:3f:1c:f2:9b:0f:2e:30:8a:5c:77:e8:19:2d:
                    f3:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:E7:A1:52:83:34:A0:0D:76:FB:D0:65:3B:51:3A:FC:44:39:CD:5F
            X509v3 Authority Key Identifier:
                keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:92:ac:49:81:2f:88:2a:d9:0c:61:2b:ac:15:da:e8:9e:af:
         94:94:65:39:06:6b:14:36:58:63:cb:62:87:8c:bd:63:85:84:
         9d:70:f6:ab:b5:00:d3:20:5c:ed:e0:b5:b6:59:e7:80:9f:67:
         2a:ab:22:bf:9d:b6:95:cd:d7:e5:a3:5e:7e:e2:4b:3e:16:52:
         08:7d:fe:a7:b0:85:d1:4d:36:67:87:b9:b3:1e:95:18:87:fd:
         06:35:07:79:38:44:25:55:62:ca:42:02:e9:57:90:f2:03:a7:
         44:56:b0:b7:f9:97:29:68:66:77:6e:8b:a3:0f:fb:d4:1b:b3:
         f6:d4:0d:41:43:61:5f:6c:a5:e1:6e:7a:f2:b8:f8:87:ce:c3:
         f3:8b:ab:46:f7:d6:39:c0:e0:37:90:15:c3:69:b3:38:0d:f8:
         72:82:ff:33:5b:ac:60:af:24:50:24:10:6f:2f:e5:e8:70:36:
         fa:a0:3f:ea:be:e4:28:ad:20:6d:60:9d:f3:f7:e9:91:ad:d1:
         75:58:e5:38:41:25:d0:ef:a8:5f:fa:88:74:15:ae:55:35:58:
         1e:2d:22:e9:cd:1d:59:fb:4b:bd:f5:32:c2:35:24:7a:d9:b3:
         b7:21:07:d0:96:ba:41:61:ce:73:f6:3c:d8:93:6c:43:8b:31:
         fb:c6:39:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 01:30:31 2025 by rpki-client