Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File:                     HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier:          ojKKSoFE9x+FmqAvI9w+0PsAONBVxIQAOR/p3NMzC2c=
Subject key identifier:   4E:5F:1C:FD:F4:7C:12:0E:D0:75:E7:D4:E7:D8:BA:32:F2:55:25:AE
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer:       /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial:       0197673B2DB00339D4DA0F84FFD4BA467D0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number:          108B
Signing time:             Fri 13 Jun 2025 03:00:20 +0000
Manifest this update:     Fri 13 Jun 2025 03:00:20 +0000
Manifest next update:     Sat 14 Jun 2025 03:00:20 +0000
Files and hashes:         1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: yTJp5Idi/mgu2SJytzQqhqX0Qf+5GGA7WIfJ7aiISpA=)
                          2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 03:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:3b:2d:b0:03:39:d4:da:0f:84:ff:d4:ba:46:7d:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
        Validity
            Not Before: Jun 13 03:00:20 2025 GMT
            Not After : Jun 14 03:00:20 2025 GMT
        Subject: CN=4e5f1cfdf47c120ed075e7d4e7d8ba32f25525ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:7f:05:3c:ed:8d:60:dc:63:eb:4a:5c:17:3c:
                    88:27:7c:02:49:0d:31:70:d9:5d:bb:43:a5:67:fc:
                    c8:8a:97:e9:24:2c:71:da:87:ba:5d:01:f9:23:10:
                    ed:9d:66:53:13:68:00:0a:bf:3e:a6:57:63:3a:7a:
                    93:b7:ab:99:b2:67:bc:bd:e7:f7:82:97:f0:a9:ad:
                    bd:a9:91:2e:b1:9a:52:8d:0d:05:90:0c:e7:10:b2:
                    f5:b1:1b:b9:d5:3e:0f:67:c0:8f:72:88:b9:94:98:
                    46:9d:61:ff:f4:28:53:ca:f8:61:b7:21:b3:f9:47:
                    c1:68:d5:62:a3:47:66:25:da:56:63:d2:75:dc:fc:
                    f7:1e:ac:9f:36:09:52:37:e1:9e:dc:3a:79:25:56:
                    76:ae:40:34:ad:58:4b:dc:3c:27:b6:1d:90:66:1d:
                    c9:22:b6:fd:80:d3:f0:a0:df:8f:08:48:8f:85:e0:
                    be:fb:76:46:0a:9b:9f:19:e5:ea:2a:41:4d:ac:bd:
                    01:8d:f3:df:78:f2:bc:ad:95:58:f0:ff:34:70:c5:
                    af:21:67:6f:56:89:a2:08:71:d7:82:c7:92:41:0f:
                    a4:56:fe:01:da:cb:d3:57:23:39:9c:74:e3:3e:fa:
                    01:4f:ca:42:5c:cb:e0:af:6d:c4:76:54:3f:7d:4e:
                    05:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:5F:1C:FD:F4:7C:12:0E:D0:75:E7:D4:E7:D8:BA:32:F2:55:25:AE
            X509v3 Authority Key Identifier:
                keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:c5:6e:14:4d:15:d0:31:4b:02:a8:cf:bc:31:5f:b2:4b:bd:
         a8:eb:ae:98:5e:bc:f5:60:eb:a1:81:6c:d8:bc:d4:27:f4:9c:
         eb:22:14:2a:e5:c7:da:58:77:4d:3f:8c:7f:1d:f7:c0:1b:fd:
         4e:a9:77:31:db:43:ee:3f:5e:38:26:29:71:0d:b4:e2:8f:50:
         98:3f:68:03:4f:3e:eb:32:6e:0b:46:37:0c:f6:fd:3a:ba:d3:
         13:80:b6:59:74:8c:a3:0e:6f:d2:be:f3:a4:d0:28:35:7b:12:
         e2:82:10:83:a2:83:f0:ed:ff:cb:ad:c9:b2:78:3f:50:4a:cb:
         a3:7e:f5:52:6f:45:e2:1b:7b:a0:66:fc:89:22:c7:ed:61:54:
         8f:a6:6c:08:f7:90:dd:e0:c7:6f:9f:2a:74:81:ef:1c:b8:af:
         26:d3:d1:4c:dc:5d:41:80:3c:d5:2c:19:24:60:b2:36:94:8e:
         24:c3:79:c4:e0:ea:8c:db:d9:cd:a2:87:f1:bd:48:aa:3e:9a:
         67:ec:f4:ec:75:4e:d2:ad:4e:ca:46:bb:17:e7:8a:9c:f5:50:
         35:02:db:3d:af:62:0a:f9:18:66:41:fc:80:1b:bb:5d:0e:1d:
         95:19:ae:13:ae:71:b7:93:4f:79:29:9f:54:ad:43:9b:81:64:
         67:e3:41:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnOy2wAznU2g+E/9S6Rn0PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0
MTJmMmEwHhcNMjUwNjEzMDMwMDIwWhcNMjUwNjE0MDMwMDIwWjAzMTEwLwYDVQQD
Eyg0ZTVmMWNmZGY0N2MxMjBlZDA3NWU3ZDRlN2Q4YmEzMmYyNTUyNWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArX8FPO2NYNxj60pcFzyIJ3wCSQ0x
cNldu0OlZ/zIipfpJCxx2oe6XQH5IxDtnWZTE2gACr8+pldjOnqTt6uZsme8vef3
gpfwqa29qZEusZpSjQ0FkAznELL1sRu51T4PZ8CPcoi5lJhGnWH/9ChTyvhhtyGz
+UfBaNVio0dmJdpWY9J13Pz3HqyfNglSN+Ge3Dp5JVZ2rkA0rVhL3Dwnth2QZh3J
Irb9gNPwoN+PCEiPheC++3ZGCpufGeXqKkFNrL0BjfPfePK8rZVY8P80cMWvIWdv
VomiCHHXgseSQQ+kVv4B2svTVyM5nHTjPvoBT8pCXMvgr23EdlQ/fU4FvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE5fHP30fBIO0HXn1OfYujLyVSWuMB8GA1UdIwQY
MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt
ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy
LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAMVuFE0V
0DFLAqjPvDFfsku9qOuumF689WDroYFs2LzUJ/Sc6yIUKuXH2lh3TT+Mfx33wBv9
Tql3MdtD7j9eOCYpcQ204o9QmD9oA08+6zJuC0Y3DPb9OrrTE4C2WXSMow5v0r7z
pNAoNXsS4oIQg6KD8O3/y63Jsng/UErLo371Um9F4ht7oGb8iSLH7WFUj6ZsCPeQ
3eDHb58qdIHvHLivJtPRTNxdQYA81SwZJGCyNpSOJMN5xODqjNvZzaKH8b1Iqj6a
Z+z07HVO0q1Oyka7F+eKnPVQNQLbPa9iCvkYZkH8gBu7XQ4dlRmuE65xt5NPeSmf
VK1Dm4FkZ+NBfA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 13:17:59 2025 by rpki-client