Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File:                     StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier:          cM/kVJtRYGozy9WIqQSyuJRwdojV7OYPUch04naAmOY=
Subject key identifier:   F0:67:3A:B8:67:C5:5B:55:B2:87:86:11:D0:49:3F:11:2F:92:21:8E
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer:       /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial:       019754FEA467C61CD8CC6D8CBFFCDD01487E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number:          1583
Signing time:             Mon 09 Jun 2025 14:01:03 +0000
Manifest this update:     Mon 09 Jun 2025 14:01:03 +0000
Manifest next update:     Tue 10 Jun 2025 14:01:03 +0000
Files and hashes:         1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: swsJfxNYbSlkiAPVwKLFVbPERmLgsXG9Gd/oo87zE9Y=)
                          2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 14:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:fe:a4:67:c6:1c:d8:cc:6d:8c:bf:fc:dd:01:48:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
        Validity
            Not Before: Jun  9 14:01:03 2025 GMT
            Not After : Jun 10 14:01:03 2025 GMT
        Subject: CN=f0673ab867c55b55b2878611d0493f112f92218e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:0e:71:f4:18:85:f8:c5:0c:8c:87:94:7e:5f:
                    fa:70:91:54:f2:bb:19:83:d1:84:8e:c9:c0:c1:42:
                    7f:9a:30:3b:b2:2e:a8:98:ef:02:55:8e:77:6b:52:
                    e8:25:3c:a5:72:c6:cb:8f:09:36:99:c5:df:b6:b7:
                    fe:9f:92:32:da:f5:25:10:c6:b1:f2:2d:87:7d:28:
                    4f:e1:a1:9b:0e:0d:26:4f:40:bf:4a:76:6a:d9:24:
                    d8:06:87:75:44:35:20:73:6e:5b:6d:35:78:a3:55:
                    f5:4f:f7:7f:29:d0:e7:15:ba:0d:9b:68:64:77:5a:
                    ae:5e:7f:bf:6a:88:e1:8a:46:64:a5:76:78:71:bb:
                    81:1b:93:e9:c4:9f:78:9b:f7:6c:7c:da:9a:8f:bc:
                    7c:83:d4:03:b8:6f:eb:58:13:63:f9:67:2e:c9:7c:
                    33:6c:22:ab:95:c3:e1:90:e2:6c:6a:bb:41:78:7f:
                    f9:30:5e:54:3f:36:00:be:b9:f4:50:42:d9:36:07:
                    8a:d1:68:24:d9:19:1d:06:46:10:b9:54:78:e2:5a:
                    8b:ce:f0:60:05:7c:ba:92:ec:df:bc:d6:86:46:af:
                    68:00:cf:09:a6:3f:31:7f:51:a2:f9:a8:27:f3:b0:
                    86:4f:08:c0:71:52:4e:af:2d:bc:51:17:70:b3:a7:
                    4d:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:67:3A:B8:67:C5:5B:55:B2:87:86:11:D0:49:3F:11:2F:92:21:8E
            X509v3 Authority Key Identifier:
                keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:11:52:99:eb:2d:2d:92:2e:2b:04:57:22:9d:94:58:f4:cf:
         50:ed:29:a0:53:1f:6f:58:83:79:ab:e7:17:b4:c8:eb:5d:1f:
         36:05:70:84:5b:c2:17:67:cf:79:ac:1d:29:7b:22:74:db:2f:
         5a:bb:39:86:55:27:d2:a4:93:22:db:a0:10:dd:66:b9:5d:48:
         b2:51:15:61:45:2b:1b:72:76:92:9c:e8:14:d0:f9:f5:ad:8b:
         39:6d:92:cf:5d:a2:a3:73:ae:2d:32:88:c6:9d:82:7c:fd:4c:
         b3:07:14:77:29:e5:16:e1:50:6c:77:a2:49:0e:18:1e:2d:59:
         cb:7f:86:73:02:04:01:76:a0:14:20:2c:a2:d1:d1:84:20:02:
         79:e7:af:3b:f7:5a:14:16:e3:da:73:7b:47:75:76:99:78:59:
         6d:d6:f5:9f:53:e3:be:fc:b2:d9:0d:bd:36:9b:89:ec:08:ac:
         4d:4e:0e:a4:fc:de:33:2d:1f:7f:2f:c9:75:b5:8d:2e:68:e3:
         5e:4d:3f:8d:0b:02:ce:ba:a7:b9:a3:c1:7d:e9:af:05:f6:f6:
         84:5f:e5:95:36:84:78:c9:ff:e1:77:50:69:47:e8:be:7f:32:
         40:e2:16:8e:5f:7e:0f:43:2e:53:98:08:6a:40:c1:10:82:3a:
         e1:f7:f4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:42:24 2025 by rpki-client