Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File:                     xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier:          JA2WHYO0fPbqqJ4iltI3/ceNHTOxoSaJIGcs3pPztS8=
Subject key identifier:   54:AC:1D:A1:77:6C:C5:BD:A2:57:73:8E:C9:E4:B5:A9:16:5D:23:47
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer:       /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial:       0197C8039FE0002AFFBC358B900C99E303A6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number:          1551
Signing time:             Tue 01 Jul 2025 22:02:50 +0000
Manifest this update:     Tue 01 Jul 2025 22:02:50 +0000
Manifest next update:     Wed 02 Jul 2025 22:02:50 +0000
Files and hashes:         1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
                          2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 2tBJzoNIhKz/xau1cYXU9hHxsMAbvRXt3YxM/ERV4Uc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 02 Jul 2025 16:57:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c8:03:9f:e0:00:2a:ff:bc:35:8b:90:0c:99:e3:03:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
        Validity
            Not Before: Jul  1 22:02:50 2025 GMT
            Not After : Jul  2 22:02:50 2025 GMT
        Subject: CN=54ac1da1776cc5bda257738ec9e4b5a9165d2347
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:be:8e:32:14:94:65:d3:00:bf:47:1a:da:c9:
                    ba:f7:f6:56:96:4c:10:91:88:0b:91:d1:22:e5:32:
                    c5:5d:f0:a5:80:60:c2:c7:d7:4d:1b:6c:d5:80:ec:
                    f3:4c:47:d3:fa:53:09:65:38:9d:e7:4e:f9:dd:58:
                    40:13:79:98:05:56:8c:50:d2:77:4f:25:17:cd:db:
                    af:cd:cd:0d:24:87:51:ee:88:f9:b5:47:f4:aa:26:
                    59:89:1e:75:a5:f5:79:31:0e:7f:25:77:9a:74:85:
                    74:c8:59:1e:91:8e:c2:be:9d:ff:6d:2e:f3:7a:df:
                    0c:23:82:56:ae:1f:7a:19:d6:96:c6:df:76:5e:cc:
                    54:ce:6a:61:99:6b:09:ca:b3:70:42:a9:cb:d1:81:
                    64:73:0c:aa:48:40:79:7c:ef:f9:81:0e:74:73:bc:
                    67:d3:fb:f1:9e:f6:9c:63:fb:92:90:37:58:63:da:
                    9d:37:9e:19:07:f8:b8:38:7b:5d:62:78:9d:e1:af:
                    ab:33:c7:6c:dd:1b:4e:e0:c2:f1:b9:c5:06:9d:4d:
                    44:fb:53:71:0e:58:89:5b:f9:a0:b8:71:b8:71:09:
                    c3:f9:96:50:ae:ad:ed:d3:98:53:77:0f:7f:b6:26:
                    72:cc:53:7c:68:e1:7f:fd:5b:72:fb:1f:60:f8:71:
                    de:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:AC:1D:A1:77:6C:C5:BD:A2:57:73:8E:C9:E4:B5:A9:16:5D:23:47
            X509v3 Authority Key Identifier:
                keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:88:1a:2c:34:fc:9f:08:03:c6:83:11:ff:c8:bc:44:d0:68:
         e2:7a:7e:7f:d5:00:9f:c2:b8:a2:bc:37:97:b7:18:d7:14:56:
         f3:ae:42:12:d0:fe:33:b4:af:87:d7:2f:0b:3a:ea:81:3e:3c:
         55:4d:69:ab:d9:3c:ef:18:ab:51:f1:08:a8:f8:4b:c4:54:8f:
         80:1f:68:e8:42:bb:2f:09:0c:39:24:ed:d1:13:61:c0:cc:49:
         f5:5c:31:6e:f7:37:81:ca:cc:64:e6:bd:ed:c6:70:61:88:31:
         47:d5:99:75:04:28:72:c0:56:1e:ae:2f:3d:ac:25:67:6e:ac:
         97:09:0c:fc:16:75:83:92:42:ec:00:88:e2:0b:52:77:d7:7f:
         9d:a6:39:1a:92:62:fa:98:77:23:66:aa:26:a5:1a:38:20:45:
         ae:ed:12:32:3e:63:0f:f3:ca:62:ac:dd:cb:da:18:07:e3:19:
         5b:db:2d:c4:60:6e:23:cd:22:d4:b1:b4:42:13:24:33:41:d4:
         a0:91:9e:a5:90:f6:4a:f0:f3:03:e5:9c:1c:f9:38:98:d9:5b:
         eb:a7:76:e8:4d:b0:c5:8b:f6:97:ee:ad:5e:c0:0f:e3:6a:ef:
         c2:ef:31:24:9a:eb:b7:4b:30:15:32:de:84:cf:bc:2b:23:9e:
         13:18:41:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 01:45:08 2025 by rpki-client