Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File:                     StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier:          cLoCzpSuNvXZIhElLbPbNnTU/l/STVT2mg4BLa1hkr0=
Subject key identifier:   26:3C:FE:D5:74:7F:C4:C1:6C:2F:6A:18:A6:21:74:A9:63:85:13:49
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer:       /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial:       01975AC99D27882D0372EEB03C44F3A726EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number:          1586
Signing time:             Tue 10 Jun 2025 17:00:51 +0000
Manifest this update:     Tue 10 Jun 2025 17:00:51 +0000
Manifest next update:     Wed 11 Jun 2025 17:00:51 +0000
Files and hashes:         1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: LZpg4ZBl76beaZfaFDW5EP97B7M4yWUR6l8qK5OZ590=)
                          2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:c9:9d:27:88:2d:03:72:ee:b0:3c:44:f3:a7:26:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
        Validity
            Not Before: Jun 10 17:00:51 2025 GMT
            Not After : Jun 11 17:00:51 2025 GMT
        Subject: CN=263cfed5747fc4c16c2f6a18a62174a963851349
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:14:87:05:f9:30:5b:0a:2b:b3:ed:9b:12:32:
                    86:57:25:4b:53:31:db:e6:44:8e:56:d8:e7:c6:42:
                    a7:9c:46:c0:d4:62:f4:cc:75:b8:04:37:c1:47:c7:
                    ab:52:9f:fa:32:dc:b0:94:04:6e:32:c4:3b:a7:78:
                    18:d1:a3:1e:77:59:30:b1:c2:61:d5:59:9c:ca:94:
                    b8:af:e3:98:9a:70:f0:cc:21:2d:a5:c0:f8:a8:6c:
                    fa:55:d4:ca:66:f2:5c:85:83:fa:fc:7d:f7:68:6a:
                    34:bd:1b:98:e0:9c:5b:93:f5:c9:7a:9b:a1:78:31:
                    37:1a:1b:87:31:00:fe:24:f3:f4:3c:f6:aa:fe:0c:
                    ed:a3:75:26:20:7d:a7:8f:04:ff:e9:1a:55:da:45:
                    4a:86:28:47:37:bd:10:33:ea:1e:7e:c4:63:7b:f1:
                    8c:9c:6e:fe:27:9c:0b:5a:ce:46:0e:0f:dd:27:fc:
                    c4:bb:36:95:c1:5b:ed:3f:ca:50:54:f4:f4:62:11:
                    46:91:71:d4:76:01:54:78:c0:84:f5:d3:d4:fb:36:
                    64:d0:c6:56:74:8a:f3:3d:5e:e5:46:7d:00:9b:17:
                    5f:f8:c3:82:20:d5:cd:c4:b9:f5:5d:4a:ed:75:62:
                    39:a5:59:37:9d:c1:bc:6e:a3:d3:74:61:1d:17:de:
                    46:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:3C:FE:D5:74:7F:C4:C1:6C:2F:6A:18:A6:21:74:A9:63:85:13:49
            X509v3 Authority Key Identifier:
                keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:e5:1f:22:03:f7:e6:33:c5:da:77:90:fb:93:aa:1f:88:b5:
         f4:63:d1:73:24:80:f8:11:af:8c:8e:5e:5a:33:30:b9:68:70:
         f8:84:d6:b7:66:b8:61:e4:9d:2a:80:f0:f2:03:98:05:3d:e5:
         32:6d:4c:b8:7f:b5:17:a5:41:17:81:90:40:7c:a5:16:1f:f3:
         72:9a:1f:30:59:5b:51:6d:a9:56:cf:71:e7:67:73:f2:6a:66:
         ef:3c:ba:84:b4:21:2e:9b:5c:17:15:47:5e:d6:1a:d9:cc:7e:
         07:3e:4f:21:75:3c:dd:b5:49:11:8b:33:4e:79:12:9b:f4:2b:
         c2:40:37:8a:9c:c0:60:4f:2c:a0:26:b2:a1:ef:a8:ff:29:bf:
         a3:df:92:56:7d:93:0d:68:74:76:6a:72:58:43:6e:ed:20:e6:
         7a:19:05:c6:ca:4c:a7:44:a7:22:07:e6:cc:ab:bc:ca:7e:4c:
         5e:d0:49:3d:9c:29:78:86:8f:19:55:bb:85:15:21:b0:6a:de:
         4d:a2:81:cf:6f:9c:e4:91:66:70:19:38:6e:41:d2:13:36:28:
         6e:fa:c7:77:cb:bc:8a:01:a5:c0:1a:42:1b:0c:70:97:10:06:
         79:32:c1:3e:a6:8f:6a:62:f8:3d:ac:db:13:4c:64:2c:ec:e1:
         51:11:2d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 19:29:21 2025 by rpki-client