Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File:                     xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier:          ksr3Ehjsc/GD0qHswfgeX+b586SZ77YUfF9Q7sOkH6A=
Subject key identifier:   F2:EE:3A:B0:83:BD:D7:C3:90:E1:8B:4F:10:C3:09:A0:D0:4F:FB:56
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer:       /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial:       01976D06D30E6C149C21E0C69FF3ABEFFA35
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number:          1591
Signing time:             Sat 14 Jun 2025 06:00:53 +0000
Manifest this update:     Sat 14 Jun 2025 06:00:53 +0000
Manifest next update:     Sun 15 Jun 2025 06:00:53 +0000
Files and hashes:         1: b9YzzhOPHDVo_soINWMmjLB7fhk.roa (hash: lwz89foq6Y4dt/R5BV0uIhhLjFL2sOp+mEH46qLg0yk=)
                          2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: QTDws5FMJV/2isNNPIpPGxTZSQYPYB47FK626SExYZQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:06:d3:0e:6c:14:9c:21:e0:c6:9f:f3:ab:ef:fa:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
        Validity
            Not Before: Jun 14 06:00:53 2025 GMT
            Not After : Jun 15 06:00:53 2025 GMT
        Subject: CN=f2ee3ab083bdd7c390e18b4f10c309a0d04ffb56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:45:78:50:70:83:7b:da:07:b9:0c:b5:98:ee:
                    ab:ad:e6:0d:e6:a9:95:f7:4f:1a:49:83:f9:a4:fa:
                    a8:8b:79:24:f6:4d:2b:a2:9b:b1:d9:f2:ee:8c:85:
                    06:28:2d:bf:00:97:7f:21:2c:89:16:1f:7f:c0:76:
                    65:f2:8c:c1:91:81:48:6c:1a:0d:eb:8a:63:89:b4:
                    2e:7d:34:90:aa:a9:81:41:d1:77:59:7a:9f:e4:7a:
                    8e:50:80:b5:d0:b6:35:75:bd:f7:c0:c2:36:db:5b:
                    09:4c:48:ad:fe:06:d3:d6:a1:30:40:4e:df:cc:14:
                    bf:ad:0e:3a:6b:b5:56:fa:97:a3:82:08:33:10:0c:
                    51:6f:9a:80:bf:49:48:34:1d:3d:37:ee:3b:28:34:
                    fa:af:eb:79:00:68:c8:8a:c7:8e:f6:34:2f:2f:fe:
                    eb:fc:49:03:44:31:de:58:1b:ee:3f:43:34:0a:2a:
                    5e:1b:dd:2f:f5:f5:2b:e0:40:15:03:4e:06:e2:11:
                    81:a4:30:54:92:8c:68:b0:49:ad:f3:9c:e2:aa:b5:
                    cf:52:23:53:ce:8c:a5:ad:f0:48:80:aa:78:c5:43:
                    ba:9a:fa:5e:92:6e:84:68:b2:04:85:54:26:4a:90:
                    83:6d:59:bd:75:08:0f:46:bf:4f:ff:25:32:78:eb:
                    5a:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:EE:3A:B0:83:BD:D7:C3:90:E1:8B:4F:10:C3:09:A0:D0:4F:FB:56
            X509v3 Authority Key Identifier:
                keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:f6:c7:03:d9:e3:cb:ea:8d:74:5e:22:7b:3d:1e:43:06:c0:
         eb:5b:92:61:02:19:59:97:8f:73:a7:52:fc:02:af:f4:bc:55:
         c8:b2:11:53:b4:58:95:69:ce:6b:67:20:33:50:11:7e:da:9f:
         5b:31:6e:13:b9:b3:ab:1a:3e:7f:bd:47:aa:05:49:6e:f4:78:
         3f:ac:07:ac:14:99:3b:de:5a:62:3d:f2:06:49:15:87:18:b7:
         81:79:c4:02:11:95:9f:46:87:4c:0e:65:dc:11:39:d0:73:d7:
         d5:26:5e:26:f9:f3:9f:e5:dd:be:bb:b0:70:76:cf:69:a2:26:
         2b:f2:62:bc:1b:b3:41:28:0c:05:85:b4:3d:2a:ab:c2:b2:5d:
         22:e5:33:6f:a2:96:40:5d:cf:c7:75:53:3b:ba:8b:e6:d9:12:
         22:5a:89:9b:3d:49:5b:1d:c3:bd:b7:41:d8:f6:e5:c2:eb:8e:
         78:9a:ed:27:da:3c:b9:6e:84:78:d7:0a:8b:9c:7a:4f:2a:32:
         10:65:da:58:e1:8f:4e:32:1b:ba:0e:6d:00:e5:b6:bb:a7:d1:
         ad:2a:10:a2:3f:1a:13:c3:c7:52:67:85:23:20:25:68:5d:df:
         ef:db:a4:64:2f:9f:9b:25:a1:87:3a:58:da:d3:fa:cf:03:e6:
         4f:ec:c7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:21:26 2025 by rpki-client