Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File:                     HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier:          AWPUVulYkasRsmIHmmR3ch/vPa5Biw/hncXJnT9Ig/0=
Subject key identifier:   1F:A0:00:14:9F:19:6B:0E:22:8F:8C:6B:1D:7E:9A:00:17:88:3E:55
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer:       /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial:       0197635EC6C30ECBD954DF6CD318B401ECA8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number:          1089
Signing time:             Thu 12 Jun 2025 09:00:44 +0000
Manifest this update:     Thu 12 Jun 2025 09:00:44 +0000
Manifest next update:     Fri 13 Jun 2025 09:00:44 +0000
Files and hashes:         1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: ya8XJOxsApiYxCqjtisAsJ5J9+ujyezv+cBEWc/f27M=)
                          2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:5e:c6:c3:0e:cb:d9:54:df:6c:d3:18:b4:01:ec:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
        Validity
            Not Before: Jun 12 09:00:44 2025 GMT
            Not After : Jun 13 09:00:44 2025 GMT
        Subject: CN=1fa000149f196b0e228f8c6b1d7e9a0017883e55
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:d5:45:20:3e:11:4c:c6:e2:57:e4:ba:d3:f0:
                    d3:49:d4:1d:66:9c:95:06:ae:64:0b:e9:5f:8c:a5:
                    4a:9b:a5:d8:0c:65:38:e6:23:c6:65:10:c2:31:df:
                    a2:1c:6b:52:99:c7:39:bc:58:cf:e2:8b:8b:9a:42:
                    c4:aa:9a:1c:6f:e2:a6:05:f2:92:f2:ce:2a:9c:77:
                    76:d7:34:37:d9:64:46:0e:00:8c:b8:ed:22:f1:7e:
                    6c:8d:c5:72:7f:de:29:cf:71:50:96:95:4b:f4:6e:
                    71:11:e9:c9:54:c4:f0:9b:4a:63:08:99:19:14:ea:
                    d8:95:8f:aa:bb:ba:41:1b:57:a0:31:23:dd:8a:05:
                    65:c2:ca:fa:d7:47:89:7a:75:f3:0d:65:e1:17:69:
                    37:a0:9c:b2:d3:7c:bd:09:5a:6f:52:f6:24:0d:26:
                    b8:71:40:4a:01:1d:e1:5f:1e:f3:db:3d:84:71:45:
                    8d:6c:8f:d8:c1:bc:ba:8d:7c:b8:da:2e:11:65:3b:
                    11:01:61:b5:cf:94:58:46:78:4d:e5:e5:8e:0d:36:
                    72:5e:2c:42:b2:7b:19:da:e1:c4:9c:c2:f3:80:b2:
                    1b:b2:08:21:51:de:59:68:16:a4:f1:6a:22:1b:5c:
                    49:ac:58:fd:0a:2b:7f:23:38:e3:d5:2a:2e:a6:aa:
                    47:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:A0:00:14:9F:19:6B:0E:22:8F:8C:6B:1D:7E:9A:00:17:88:3E:55
            X509v3 Authority Key Identifier:
                keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:d0:2c:d8:ca:c9:15:b0:d3:36:e0:0c:10:ba:a0:95:a6:c9:
         e4:e2:c4:4a:61:93:f2:9b:9b:d3:b7:65:71:ae:18:ad:a8:f6:
         98:be:dc:30:da:c9:0b:bc:7a:22:4e:75:ef:5f:36:ef:af:57:
         cd:94:a6:e7:79:82:3b:17:a0:01:3f:27:4a:90:bb:48:4a:3e:
         69:02:c2:86:02:6f:6a:e5:62:1d:91:ef:c5:d6:2e:e6:4c:1b:
         c4:28:72:e4:14:19:e2:34:de:86:c1:81:e1:7d:1b:57:b5:20:
         51:90:f4:1e:38:be:4a:ac:10:39:8a:94:02:54:4a:88:5c:63:
         f4:f5:4b:6a:1c:fb:fe:64:d6:0c:7d:00:8a:7c:ee:14:f2:ed:
         26:75:e8:da:1d:5d:74:f5:e9:6e:7d:46:c0:38:38:9b:a3:b8:
         c3:9c:90:e2:77:5f:20:ec:fa:68:d3:31:f6:f2:68:c6:68:06:
         1a:d5:2c:b1:c9:b8:fd:a2:d3:73:72:c8:a4:1b:c8:38:7f:0b:
         f2:6a:b4:31:c3:56:c8:cd:2e:87:81:19:62:35:2c:08:34:75:
         5a:ac:e0:15:f8:1f:85:da:92:46:79:bb:11:6e:10:3d:ae:ff:
         c9:1f:c0:42:cb:58:4c:30:d1:dc:ce:c3:57:b2:9e:ab:66:c8:
         87:54:d9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:20:29 2025 by rpki-client