Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
File:                     xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json)
Hash identifier:          S1yit7/mVo5iaPABxR4qNqhUwLAtZaUUhrFUN0WAqc4=
Subject key identifier:   1C:AB:C2:1F:10:CA:E6:31:4B:87:1A:D9:50:16:61:3D:0E:96:2D:12
Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
Certificate issuer:       /CN=c596785476efbae77f961d23057057fa036fb27f
Certificate serial:       0197665FF1B454968FE0DC227C872D6E3AF9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
Manifest number:          1437
Signing time:             Thu 12 Jun 2025 23:00:53 +0000
Manifest this update:     Thu 12 Jun 2025 23:00:53 +0000
Manifest next update:     Fri 13 Jun 2025 23:00:53 +0000
Files and hashes:         1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: B7nPBoK5rAf3iIIF3Ka0WqfavoDwh9rkPfXOHZV0HcU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:5f:f1:b4:54:96:8f:e0:dc:22:7c:87:2d:6e:3a:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c596785476efbae77f961d23057057fa036fb27f
        Validity
            Not Before: Jun 12 23:00:53 2025 GMT
            Not After : Jun 13 23:00:53 2025 GMT
        Subject: CN=1cabc21f10cae6314b871ad95016613d0e962d12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:63:92:1c:e8:33:24:de:e8:19:03:27:59:b5:
                    c3:74:30:8c:a3:9c:f8:59:5f:d2:b6:20:fd:7c:33:
                    26:96:51:ee:6c:e8:f1:b2:9e:ac:57:8e:d5:31:21:
                    67:b4:ea:88:b5:de:8b:96:85:6e:90:24:d2:81:70:
                    58:92:4d:75:08:65:cd:85:a7:c5:8b:a6:d4:88:b9:
                    d1:ba:d9:92:ca:19:ca:48:a0:70:60:56:eb:dc:4c:
                    11:41:82:94:cc:53:1e:22:ee:18:3b:ba:5b:80:dd:
                    a6:ae:27:b1:c2:e7:ed:3a:e7:40:4b:c3:81:e3:4e:
                    c7:11:2c:48:4d:18:4a:d7:15:d1:a4:77:d2:3b:6b:
                    c0:18:6d:99:46:3b:a6:f4:fb:f8:c4:01:90:a6:af:
                    4c:ca:0b:47:61:04:02:5a:0d:f1:df:6e:b3:7d:c4:
                    78:49:6f:dc:04:45:52:d1:a5:d1:42:4a:5f:0c:e3:
                    5f:2f:96:ed:76:5a:29:43:6e:fc:a3:ac:d8:62:c6:
                    8a:98:c3:a2:41:74:45:56:b6:63:8b:9a:73:1c:af:
                    c9:c6:b4:ab:d4:19:5a:57:fa:09:d0:47:4b:72:6e:
                    e3:c0:3a:f5:12:4f:ec:10:71:8e:6d:ab:af:f3:b4:
                    ce:b7:22:59:8c:5b:9b:4c:fc:a7:01:f1:d1:cc:df:
                    4b:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:AB:C2:1F:10:CA:E6:31:4B:87:1A:D9:50:16:61:3D:0E:96:2D:12
            X509v3 Authority Key Identifier:
                keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:ae:aa:ba:f7:76:bc:ce:eb:18:43:76:e7:9e:9d:a7:5a:8c:
         16:97:bc:1b:cc:a7:6c:ae:4e:47:df:e3:26:7f:f4:c3:5c:54:
         45:bf:93:1b:bd:1e:72:75:92:f7:28:f5:92:ae:40:3c:0e:e2:
         34:17:01:64:02:e3:42:69:0d:4d:2c:36:6b:17:2e:1b:3d:6c:
         e0:19:c1:f3:7c:50:86:46:a1:b5:05:a1:ba:ec:64:bd:6a:22:
         e6:a3:23:08:77:a0:dc:c9:70:9b:95:62:bc:95:bd:88:0e:e7:
         18:ef:55:e1:dd:3e:8e:3c:14:46:fa:9f:77:58:94:71:fb:95:
         0f:8d:9f:46:0f:d2:94:f7:a2:2c:ca:b1:81:1f:0f:d9:5c:08:
         f6:35:80:e1:60:81:ea:de:1e:6c:54:59:09:b2:42:55:0f:75:
         0c:0b:6e:f1:de:31:e9:ba:1e:98:0f:45:85:ad:e7:a7:a4:da:
         fb:4d:b5:0b:ff:d1:d8:22:6c:87:fc:65:a4:3a:0e:b8:77:17:
         f3:26:73:fd:2d:53:64:9f:46:7a:bd:87:03:7c:42:d1:85:0c:
         b4:8c:7a:b7:64:0d:82:d8:9f:ab:bc:c6:b3:dd:1e:d0:dd:56:
         8c:88:5a:6c:a4:2e:ed:2c:3f:bd:99:6f:c1:1e:6c:be:25:6d:
         1c:56:28:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 02:22:25 2025 by rpki-client