Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File:                     PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier:          r3s+Fm4yBYkqg5OwRPtwtHK0e/XEZxjHPDBPs/iO9/U=
Subject key identifier:   F0:8D:84:BD:84:2D:CF:62:F6:87:E7:97:D7:13:19:BF:BE:CC:45:80
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer:       /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial:       019769CF0B6DEF47E419DE5F50EBB1EC2EE5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number:          0392
Signing time:             Fri 13 Jun 2025 15:01:05 +0000
Manifest this update:     Fri 13 Jun 2025 15:01:05 +0000
Manifest next update:     Sat 14 Jun 2025 15:01:05 +0000
Files and hashes:         1: 0-NbRqc8zQ3-jTIYZOwXbybz260.roa (hash: F4aAH1P/CqccbM0rJQ6/jB1mC+tQi8oCbtTD8Uif+I8=)
                          2: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: 3fiU7WiNg30XiRvsIlqV+Up0tOm2RJQ+nrJKm8ouCfI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:cf:0b:6d:ef:47:e4:19:de:5f:50:eb:b1:ec:2e:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
        Validity
            Not Before: Jun 13 15:01:05 2025 GMT
            Not After : Jun 14 15:01:05 2025 GMT
        Subject: CN=f08d84bd842dcf62f687e797d71319bfbecc4580
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:fa:1f:1d:e1:3a:03:fc:ff:7f:b9:d8:25:e5:
                    2c:c5:cd:4f:2c:82:50:a6:24:27:5c:8c:20:36:ab:
                    83:e4:35:e7:f0:85:5a:61:b0:8a:19:36:17:29:2a:
                    98:6e:2a:47:32:26:eb:96:62:76:b5:c7:f5:29:f6:
                    5a:dd:36:00:98:82:dd:a1:eb:53:bd:ef:43:2e:e8:
                    86:c5:59:b1:81:b3:22:03:2b:9a:53:0d:19:82:3e:
                    5d:ac:0a:58:49:94:41:5e:09:13:e0:6f:7e:81:bf:
                    9e:1c:65:bc:3e:b9:16:0f:77:bd:67:16:d3:cb:94:
                    77:5c:d4:fe:57:8e:40:3d:05:67:bf:2a:a1:17:f6:
                    9e:73:ec:1a:b3:1e:b1:4c:01:93:c9:e4:e4:72:88:
                    ed:10:ee:a9:ce:16:10:c7:d4:ee:d2:33:1c:d5:d7:
                    70:1e:be:a2:5b:80:17:88:5d:14:7a:f6:f7:c4:4f:
                    e3:fc:4b:5c:a4:7d:50:72:52:c0:dc:44:ba:34:0e:
                    b5:c0:48:f5:b9:c8:77:35:0d:9b:fb:02:8c:9f:8b:
                    d6:a5:1d:ad:82:0b:a8:b4:4b:aa:5f:ba:ab:a9:39:
                    ca:53:73:89:6a:68:f6:a4:6a:4c:10:f4:7e:0e:49:
                    87:23:1f:a6:44:d1:26:2d:82:37:e4:fd:19:61:dc:
                    53:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:8D:84:BD:84:2D:CF:62:F6:87:E7:97:D7:13:19:BF:BE:CC:45:80
            X509v3 Authority Key Identifier:
                keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:fb:f2:f9:42:b4:67:07:50:76:4a:f4:3c:e9:47:50:0a:bc:
         4b:10:1e:3d:e7:28:4a:eb:50:07:5a:37:de:66:4e:d2:fa:d8:
         44:42:5d:78:14:6e:75:a2:d6:e5:a8:4f:0e:3d:b8:05:14:a3:
         eb:34:c8:82:3a:e3:b0:3e:69:67:d3:54:33:5f:e2:fb:1d:16:
         bf:81:37:8f:f1:69:72:00:fa:67:91:37:f0:97:a5:7f:89:f2:
         0b:97:02:c7:91:bc:83:54:e8:c0:c2:06:1d:24:7e:59:05:d2:
         80:01:43:c6:28:95:db:31:dc:cc:d7:25:e6:10:73:09:da:90:
         cd:f6:8f:29:27:0d:c0:88:ef:65:68:90:8b:ea:ec:01:81:d2:
         5a:75:fd:3f:31:ba:86:11:14:be:cc:f6:f4:41:13:66:42:00:
         1f:a5:71:5a:2a:62:8f:68:88:03:4e:c5:4c:40:84:11:c4:31:
         8b:82:35:fe:15:ed:b5:ba:ec:d5:5d:3b:07:ea:a1:ac:0a:f2:
         93:f5:22:11:e2:15:e3:f7:fd:00:0d:07:a9:af:5c:f4:5f:5b:
         ef:d2:46:ce:4b:ae:fd:68:1e:51:77:12:06:c8:1c:b7:8b:09:
         89:4b:a0:ee:b3:f9:4b:fb:a2:4c:db:4b:7d:f8:a4:d1:09:3d:
         ab:20:ee:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:55:09 2025 by rpki-client