Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File:                     XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier:          beMJf63q2sZZeesRDRpuvCxWPfeoU1idqskCYQZ5nFI=
Subject key identifier:   AB:E3:88:14:47:8A:49:29:D4:95:58:20:F3:50:DC:BD:1C:DD:69:41
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer:       /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial:       019763967ABB36EF929CE2CEAACF861F2BC9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number:          158C
Signing time:             Thu 12 Jun 2025 10:01:35 +0000
Manifest this update:     Thu 12 Jun 2025 10:01:35 +0000
Manifest next update:     Fri 13 Jun 2025 10:01:35 +0000
Files and hashes:         1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
                          2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
                          3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
                          4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
                          5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: NPazGHfjubNADdDbjQen4jKBa66T0khVJ1BsWGm0L/o=)
                          6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 10:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:96:7a:bb:36:ef:92:9c:e2:ce:aa:cf:86:1f:2b:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
        Validity
            Not Before: Jun 12 10:01:35 2025 GMT
            Not After : Jun 13 10:01:35 2025 GMT
        Subject: CN=abe38814478a4929d4955820f350dcbd1cdd6941
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:dc:23:89:dc:5b:fe:f1:d5:1e:88:c0:ac:07:
                    88:aa:51:ac:9f:51:4e:0b:33:ba:a7:68:c7:9b:1c:
                    c2:92:18:d6:cf:29:eb:06:82:b3:a9:ae:bf:3b:81:
                    cf:c9:e0:19:00:2b:ab:26:7d:4b:77:af:86:8b:4c:
                    36:d7:16:5d:55:90:4a:01:c1:d8:b4:39:73:2c:86:
                    ea:36:d6:76:12:e5:8e:fc:7a:13:a8:13:f0:62:fe:
                    9e:37:80:cc:53:5e:7c:ec:a5:2d:60:69:7c:7f:ae:
                    f4:7b:75:92:09:ac:3f:11:fb:ee:af:37:e7:45:5b:
                    95:2d:48:2a:c5:e2:e7:ec:74:46:27:c6:c1:e0:74:
                    1f:4f:0b:82:32:ed:2f:3d:d5:65:82:b7:9e:5d:33:
                    84:da:94:23:fd:c5:07:4b:90:65:44:c8:28:21:fa:
                    a9:d8:b3:4e:43:cc:dc:a9:e9:f0:f0:cb:d6:b9:f2:
                    21:a8:cf:45:f8:8a:d5:74:2a:c5:64:a9:78:65:99:
                    c6:6e:e8:75:0b:b6:50:2d:6a:90:ef:e3:40:21:20:
                    17:05:48:d2:75:56:9e:8f:2e:67:5a:eb:b3:dc:6c:
                    25:7e:0d:0f:2e:96:43:01:ed:10:e6:a4:17:c6:15:
                    19:0f:71:0c:94:d5:54:ae:98:11:b4:c1:be:17:25:
                    ec:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:E3:88:14:47:8A:49:29:D4:95:58:20:F3:50:DC:BD:1C:DD:69:41
            X509v3 Authority Key Identifier:
                keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:dd:6c:b6:b4:ed:5d:b9:62:49:58:f5:72:9c:6c:b9:7e:3d:
         1d:19:26:c6:28:59:75:01:06:d2:aa:9a:f0:f4:7c:84:ae:c1:
         2f:b5:64:4f:1a:47:e2:6f:93:e9:2d:54:05:94:8a:15:0b:bc:
         2c:7d:79:d0:36:ab:fe:46:8a:0f:28:28:8d:ce:44:c9:60:4c:
         06:21:95:8d:0d:98:44:76:3d:72:4d:4d:91:fc:25:28:e3:df:
         38:a5:59:fe:21:93:33:8d:3c:27:6c:74:07:eb:8e:77:2d:b1:
         23:eb:80:af:b5:ce:42:98:68:3e:8d:43:b6:5b:19:bf:7e:3f:
         56:6e:30:9e:c2:45:1e:55:76:31:1a:2d:29:97:e3:fa:54:35:
         47:f0:52:2b:fc:1a:32:fc:00:a7:53:8a:05:6b:90:37:79:12:
         74:5d:d4:58:34:d7:60:e0:05:3b:ae:04:b4:30:ca:28:98:76:
         4b:6e:af:55:e2:94:ee:e0:65:f7:2c:65:01:8f:a9:8e:85:5f:
         bb:5e:3e:d9:07:f0:ac:6b:33:83:29:51:16:3a:b4:f1:d5:c9:
         b1:0f:fc:98:06:1c:d6:c1:d9:2e:f9:d4:9b:15:ba:ca:fc:36:
         d7:29:2a:1f:3c:36:74:3c:45:c8:e4:1b:a6:fc:8d:bf:b7:bf:
         6b:a4:63:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:19:32 2025 by rpki-client