Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File:                     HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier:          cA8Xt80AZeiiPNE1xLfWE53sALaPns2GSoKQs1iEMfc=
Subject key identifier:   E1:6B:CE:84:DC:AF:96:0E:3C:B5:F3:71:0F:AB:CA:54:94:66:6A:08
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer:       /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial:       01976170C735A8F1D3DB162D2A5EA896E18E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number:          1088
Signing time:             Thu 12 Jun 2025 00:01:10 +0000
Manifest this update:     Thu 12 Jun 2025 00:01:10 +0000
Manifest next update:     Fri 13 Jun 2025 00:01:10 +0000
Files and hashes:         1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: C9kNq1PXpRPPXvoSoeN+JB/oVPZhTN3z0QS/aEQPwZU=)
                          2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 21:26:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:70:c7:35:a8:f1:d3:db:16:2d:2a:5e:a8:96:e1:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
        Validity
            Not Before: Jun 12 00:01:10 2025 GMT
            Not After : Jun 13 00:01:10 2025 GMT
        Subject: CN=e16bce84dcaf960e3cb5f3710fabca5494666a08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:4c:11:78:f1:93:48:a3:91:90:7f:bf:13:14:
                    ba:c3:72:f1:78:a1:59:0c:8f:7c:4f:a7:9d:8c:73:
                    ad:0a:db:93:64:cd:c4:4b:f2:1a:88:c9:cf:41:1e:
                    df:46:47:b7:8a:39:f6:4e:37:5c:5d:93:41:63:aa:
                    38:68:2a:3e:86:2b:c7:21:d1:1c:97:89:94:60:d3:
                    09:a3:d5:66:f3:77:c3:57:7b:db:e7:a8:2c:39:e5:
                    ec:9e:92:76:39:f1:4e:ff:48:68:cb:e7:83:0a:78:
                    17:12:16:4c:b1:29:0e:de:03:87:76:6a:b4:ee:54:
                    9a:bd:5b:b8:93:ca:1c:e7:6b:60:d7:c8:ca:0e:e6:
                    1f:ec:9b:a0:0b:3d:5d:cf:47:02:15:b6:12:3d:1e:
                    f7:9d:53:1c:b3:8e:e2:44:b6:e3:62:e4:9c:48:dc:
                    55:78:4b:16:e8:51:16:cd:23:1c:4a:86:6a:d0:2c:
                    70:4c:35:9b:5c:82:63:31:57:78:95:74:60:a5:25:
                    76:fe:2c:f4:c4:9a:fb:10:f7:75:a2:c3:f0:52:9a:
                    16:0f:d6:29:9b:7a:eb:58:b5:76:6f:04:18:9a:d5:
                    66:a3:37:40:95:cf:7d:d5:76:15:8f:23:60:b3:ec:
                    85:cf:da:ae:04:74:cb:d0:e4:4a:73:1d:d6:0a:05:
                    ed:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:6B:CE:84:DC:AF:96:0E:3C:B5:F3:71:0F:AB:CA:54:94:66:6A:08
            X509v3 Authority Key Identifier:
                keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:ec:0e:55:b4:f0:3d:a9:c1:e3:76:1f:bb:6b:ba:6e:3b:40:
         18:ad:09:c7:58:14:c1:82:90:bc:ec:f3:0a:c8:13:df:31:35:
         01:44:6d:4a:fd:8b:88:a7:27:56:6d:a2:80:e5:1d:89:46:45:
         3e:cd:9a:e7:dd:89:ee:c2:60:00:3b:0f:3b:b8:0a:cb:03:a3:
         7d:60:99:58:74:23:3a:97:ed:a3:63:46:1e:17:3a:39:6e:2f:
         7f:67:86:cf:66:9b:e2:32:eb:5d:40:37:d6:a8:d0:29:cb:a9:
         68:54:4e:1c:91:5f:4f:a8:e4:92:37:4a:50:14:c6:f1:2d:da:
         6f:00:ee:1b:ed:38:cb:23:45:0d:02:15:07:a1:a3:b5:79:80:
         3e:53:49:04:99:47:22:9e:cd:d5:ce:ef:5b:87:34:dd:0e:41:
         c1:20:eb:64:0b:84:7b:25:00:b2:86:50:d7:5c:41:97:a5:6e:
         05:f6:c7:a2:d5:0c:77:f9:c2:2b:34:87:7a:de:8c:0a:10:5b:
         90:3c:ca:9b:f8:03:d5:3c:4a:03:73:38:ea:a1:46:1e:87:41:
         43:64:7a:d4:cf:27:f1:3a:31:17:bd:b1:f0:69:ac:69:1f:c0:
         10:63:90:71:67:b1:7d:51:c9:28:83:ef:b1:55:52:e9:1e:73:
         a1:b0:1b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 02:26:30 2025 by rpki-client