Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File:                     XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier:          Y6SY9xS9h/QIwXgTYS6AqQebWm8zBxcN4ajzpXnZRew=
Subject key identifier:   45:C9:2C:7A:EC:4F:85:55:CE:5A:CC:79:53:67:92:C5:FB:15:A2:01
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer:       /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial:       01975A5B792EE57A889CAC655293364A5881
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number:          1484
Signing time:             Tue 10 Jun 2025 15:00:33 +0000
Manifest this update:     Tue 10 Jun 2025 15:00:33 +0000
Manifest next update:     Wed 11 Jun 2025 15:00:33 +0000
Files and hashes:         1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: PTdo0nX9imZzxZeR3U3LNwScztqoHbMmz3CclMYuCtQ=)
                          2: xyAqUo1cBCxwcVbYVeKIYjCComY.roa (hash: 5YKuscwS6gvAjWMFAp+aYRLvaxsng69DrIJ3z9uUMo8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:5b:79:2e:e5:7a:88:9c:ac:65:52:93:36:4a:58:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
        Validity
            Not Before: Jun 10 15:00:33 2025 GMT
            Not After : Jun 11 15:00:33 2025 GMT
        Subject: CN=45c92c7aec4f8555ce5acc79536792c5fb15a201
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:2f:be:7a:6b:a4:e9:e6:44:3d:16:67:78:5a:
                    83:5e:d2:72:eb:41:1d:d7:da:ab:f0:46:31:dd:59:
                    82:dd:75:92:5a:d0:66:d8:bb:90:f6:47:24:2b:a2:
                    4b:10:bb:18:11:95:de:63:5a:d0:a9:1e:c3:90:7e:
                    d5:91:7b:a9:e1:0a:31:15:71:5d:10:35:d9:f3:ff:
                    92:36:ba:24:56:c7:6a:b3:92:cb:6c:bf:03:43:25:
                    84:dc:aa:ff:4b:06:95:c2:2f:aa:e9:24:86:9b:84:
                    aa:85:b3:cd:f9:f8:fd:4f:ca:36:39:13:9f:fc:fa:
                    07:ed:31:ca:76:a9:24:41:92:ce:ea:05:51:76:6b:
                    d1:a9:c8:0c:b4:eb:8f:fe:e9:a5:84:f7:70:99:70:
                    fa:29:89:99:f0:98:89:bb:fd:53:e0:64:4b:f4:8e:
                    cd:42:ec:14:c7:0e:a5:a6:fa:a8:60:83:aa:72:bf:
                    a5:39:60:b5:49:cb:67:a8:24:5c:d2:0e:a2:c4:fd:
                    0f:f0:7e:f1:80:f0:34:02:6e:20:4c:1c:a6:f1:12:
                    71:ea:5c:8a:bb:d0:73:39:2a:51:14:c6:8b:19:a7:
                    c6:35:7b:a7:f5:86:84:eb:7b:03:5f:97:68:7f:bc:
                    7b:d0:c0:ce:a0:0a:eb:a9:27:ab:2e:75:e5:8d:10:
                    f0:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:C9:2C:7A:EC:4F:85:55:CE:5A:CC:79:53:67:92:C5:FB:15:A2:01
            X509v3 Authority Key Identifier:
                keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:4b:6c:db:83:2e:d9:8e:b4:79:67:15:33:5d:0f:fe:53:d2:
         68:a8:53:8f:33:f1:9e:8c:7a:04:ba:fc:71:48:94:29:78:62:
         62:f6:78:d0:aa:1a:e5:61:15:d2:b7:16:90:7a:f6:a3:83:58:
         b9:da:1c:1b:f1:b1:4d:ac:43:1f:e5:4e:71:e2:32:47:b8:25:
         ce:70:c7:ba:63:ed:f7:de:ea:35:52:a0:71:35:3a:64:cb:5e:
         bc:d6:f8:ee:97:1a:8e:e2:27:f7:28:59:b9:67:86:51:2c:10:
         ca:11:d5:ef:30:ab:e5:04:83:35:c9:3c:5c:f9:41:2d:07:71:
         5a:25:c8:e3:de:02:da:6d:9c:e5:77:98:d4:1e:d4:67:29:f7:
         ad:56:bf:95:a6:78:86:74:98:f2:7b:56:f8:20:8f:e9:5e:f8:
         d1:f1:4e:e7:db:e9:89:4f:f7:60:08:65:30:4a:86:bd:69:87:
         21:df:0d:7f:8f:59:cd:94:0a:bc:e0:5c:e6:49:d1:9e:d6:fb:
         12:c5:d9:d6:ee:f7:ab:ee:7f:4a:dd:93:41:56:ff:0d:89:93:
         47:58:19:27:a9:7c:00:ef:d7:25:c9:a8:22:a5:fb:29:5f:08:
         51:74:40:fb:25:ad:4a:c0:d5:73:79:93:b8:72:60:c2:d9:5c:
         8f:1a:58:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:15:26 2025 by rpki-client