Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File:                     bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier:          nlc1xlcTGmGCN5b7uVoWfOZ2Zu1MNwnc0goKXUR4DzM=
Subject key identifier:   93:87:8D:1A:57:BE:5F:AB:20:D8:01:F4:42:96:A0:E3:1F:36:72:D0
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer:       /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial:       01975AC9544FEEFD83F78D50EDA1A89E6F3E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number:          1586
Signing time:             Tue 10 Jun 2025 17:00:32 +0000
Manifest this update:     Tue 10 Jun 2025 17:00:32 +0000
Manifest next update:     Wed 11 Jun 2025 17:00:32 +0000
Files and hashes:         1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
                          2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: 0fGcL/jw+zjqpRPDxZ6h3aefbDDsxfi2k+ZMFLRsQ84=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:c9:54:4f:ee:fd:83:f7:8d:50:ed:a1:a8:9e:6f:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
        Validity
            Not Before: Jun 10 17:00:32 2025 GMT
            Not After : Jun 11 17:00:32 2025 GMT
        Subject: CN=93878d1a57be5fab20d801f44296a0e31f3672d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:b9:ae:41:08:e3:04:45:ce:ea:3d:55:47:4e:
                    2f:c2:a2:2d:a9:19:cd:a3:a0:fd:f7:bf:f6:2e:95:
                    1f:5d:62:05:c2:6a:77:6b:47:35:69:0e:f8:4f:37:
                    be:46:73:3f:bb:23:5d:ce:94:69:a9:50:d0:e4:5d:
                    c5:08:73:a0:2d:fb:ff:db:27:2d:09:51:7a:a2:8f:
                    83:27:09:11:ee:75:3d:2e:66:87:b0:a0:bf:fe:af:
                    c4:fa:d9:26:79:c6:30:56:37:12:13:2d:fd:1e:cf:
                    31:ca:dd:8c:01:3f:7f:c9:71:59:70:19:bd:be:55:
                    40:79:98:98:b8:35:1b:90:46:a4:56:60:e3:8e:7f:
                    60:b0:d3:b5:b8:2a:2b:37:35:51:d2:e9:02:d8:a0:
                    af:5f:3b:05:58:a6:57:e8:2d:b7:93:5c:2f:30:ab:
                    30:07:f9:db:7d:b1:3c:80:b8:11:d6:fb:3e:65:f9:
                    3b:58:ac:a1:25:04:30:77:36:29:2c:fc:d9:df:62:
                    8a:88:53:52:a0:b7:56:5d:b9:f4:e3:4a:44:d2:3b:
                    73:be:2f:27:52:36:7b:0c:d7:22:79:8c:d8:c7:f4:
                    67:c9:09:19:d0:ac:08:6a:30:eb:d9:a9:1b:f1:67:
                    16:d3:7c:4f:8d:92:7a:f2:cf:50:0e:98:fc:27:83:
                    18:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:87:8D:1A:57:BE:5F:AB:20:D8:01:F4:42:96:A0:E3:1F:36:72:D0
            X509v3 Authority Key Identifier:
                keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:c8:d9:d7:35:a4:c4:e7:64:b5:f6:04:3d:cc:96:87:f2:2e:
         fa:dc:a9:8d:b5:7b:8b:0c:90:a7:8b:4e:4a:f2:17:fc:58:57:
         ea:e5:70:bc:80:e9:21:72:f1:3b:8a:c1:e4:be:57:63:22:6e:
         01:96:40:6b:51:9e:3d:7a:74:26:29:25:48:ad:f2:d4:28:9f:
         d4:9d:91:ce:d8:36:94:30:8a:f8:47:5b:eb:b7:33:75:69:1f:
         60:c8:1f:78:7c:71:02:45:9e:b1:ea:be:e8:5d:2f:df:ce:24:
         03:b0:e4:7c:ea:a4:85:f9:13:b7:bc:f5:c4:d4:a3:53:07:bd:
         a5:08:a0:71:1a:78:ba:b6:e2:75:26:f4:ed:a8:f9:bc:58:e8:
         52:3f:60:45:32:67:a6:d4:58:e4:e3:63:87:84:7d:fd:77:b0:
         45:b3:84:41:ee:6e:df:bf:9d:d1:db:56:32:9a:13:2e:75:5c:
         fd:c3:cc:7f:47:a5:be:57:e1:14:77:a5:2b:7c:43:6f:29:fe:
         87:91:a9:32:9d:24:1e:db:75:5c:36:77:ae:1a:e0:c9:f0:5b:
         e5:c0:73:ee:39:85:ca:2b:8a:ee:b9:64:fc:05:b2:83:cb:0d:
         0c:14:00:d2:c9:0e:01:9d:da:23:b7:97:b6:d8:e5:63:42:6d:
         67:6f:e1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 19:24:29 2025 by rpki-client