Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File:                     xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier:          Dq2L84AkP1aZayqWvP622lbKsP0GA06frpi/dq3o/8w=
Subject key identifier:   42:FD:FA:73:54:DD:98:6C:F0:5D:25:D8:19:D8:EE:2C:DB:F9:8C:7F
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer:       /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial:       01976EF527595B6E13FB43431CDBB2113D85
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number:          1592
Signing time:             Sat 14 Jun 2025 15:00:49 +0000
Manifest this update:     Sat 14 Jun 2025 15:00:49 +0000
Manifest next update:     Sun 15 Jun 2025 15:00:49 +0000
Files and hashes:         1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
                          2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: a8+c0jHuv28f1CtFCqNVYTroCOr7qDSr2SIVWSEpngI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 15:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:f5:27:59:5b:6e:13:fb:43:43:1c:db:b2:11:3d:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
        Validity
            Not Before: Jun 14 15:00:49 2025 GMT
            Not After : Jun 15 15:00:49 2025 GMT
        Subject: CN=42fdfa7354dd986cf05d25d819d8ee2cdbf98c7f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:38:25:5a:36:ee:88:bb:91:be:35:8b:8d:ad:
                    bf:39:96:03:17:2c:09:5e:b6:f3:4d:b8:ff:1d:e4:
                    0d:59:bd:65:a3:a4:6f:03:09:30:6a:31:64:e0:f0:
                    af:d1:e9:cf:97:0f:83:e0:3e:31:25:6b:b1:38:c4:
                    c0:ad:f7:c5:23:f7:33:f6:74:d5:87:13:6c:d9:c5:
                    a8:21:b2:5e:2b:b6:37:6c:3a:c0:d6:ad:ac:09:83:
                    3e:a2:f4:25:4b:7c:21:b4:9f:3e:f8:87:88:ad:ac:
                    f8:83:a8:72:82:c2:11:75:65:28:15:fa:08:31:48:
                    55:7c:b7:66:11:db:97:90:a6:c5:e0:d7:9d:ac:5d:
                    0f:6d:4e:72:d0:97:8c:1d:fc:7c:c7:fc:51:ed:bb:
                    9d:43:05:cd:84:ea:70:f6:48:c3:d8:fe:e6:ad:62:
                    11:fd:0c:fb:c0:e1:bc:22:cc:73:1d:51:65:44:f9:
                    94:90:0b:7d:28:b3:71:60:5e:d3:e8:e6:d1:cb:21:
                    49:4a:d3:4b:88:0c:e3:a7:ad:c1:2e:6b:c8:22:88:
                    99:f0:c8:44:a9:b0:4c:0b:81:06:22:1b:15:1f:28:
                    fa:70:ad:98:a6:1d:2c:50:ba:74:f0:16:fb:d2:fc:
                    a5:7d:04:56:48:80:37:a0:07:3a:69:34:34:87:56:
                    1e:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:FD:FA:73:54:DD:98:6C:F0:5D:25:D8:19:D8:EE:2C:DB:F9:8C:7F
            X509v3 Authority Key Identifier:
                keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:ee:3a:9d:48:cc:be:91:80:7b:88:b2:8b:c5:1f:be:ce:0d:
         ad:8b:f7:a9:ff:24:6e:ec:e7:57:a8:74:1d:be:e2:8b:8e:34:
         51:5c:78:30:ee:ae:32:b7:01:7f:71:ff:52:05:3a:51:c9:ad:
         63:10:db:59:17:0f:a9:97:40:ab:23:c6:29:4d:f7:fc:52:f4:
         24:2a:09:1d:c1:88:df:5a:2e:0b:43:f5:ff:84:1b:85:12:30:
         92:e2:da:fd:c5:ca:15:d7:93:b0:0d:3a:9b:47:ff:fb:f2:52:
         1c:72:38:99:34:1c:96:b8:8c:f6:e8:02:fe:fb:e5:1f:4f:59:
         ed:da:f9:d2:26:3e:74:89:98:ba:7d:5f:3f:a0:ba:cf:35:10:
         dd:66:e0:12:0e:a1:19:78:ee:53:43:9e:0e:54:8f:37:bf:ff:
         74:69:99:af:00:89:ad:47:fd:c8:59:12:7f:e5:cf:ed:8b:32:
         00:03:13:63:69:0a:d2:ec:97:59:7e:8c:3f:6b:5e:5a:bf:0f:
         13:bc:cb:8b:64:7f:cf:bf:af:3b:ea:44:3c:c7:0c:ab:01:7c:
         2e:29:d5:29:69:5a:a8:e3:9b:df:0a:8f:13:e1:d7:b3:32:22:
         7a:9c:1a:62:f4:38:bd:6b:e9:60:47:e7:1f:ec:12:04:f4:bc:
         29:f3:27:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:16:36 2025 by rpki-client