Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File:                     XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier:          jiz8mfXAL70ougW/1l2gGtcz4GgIaQqo9rw+2yBnS8U=
Subject key identifier:   60:3D:8A:11:0A:D3:4F:B0:E8:46:61:E9:93:85:3B:84:66:42:7D:81
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer:       /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial:       01976215549E64C71E9B4CE772D76114BE4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number:          1488
Signing time:             Thu 12 Jun 2025 03:00:54 +0000
Manifest this update:     Thu 12 Jun 2025 03:00:54 +0000
Manifest next update:     Fri 13 Jun 2025 03:00:54 +0000
Files and hashes:         1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: 7SamUaorGX+dEjb0T0nHOQeATvoT1Wcp0WuE6dSeI9Y=)
                          2: xyAqUo1cBCxwcVbYVeKIYjCComY.roa (hash: 5YKuscwS6gvAjWMFAp+aYRLvaxsng69DrIJ3z9uUMo8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:15:54:9e:64:c7:1e:9b:4c:e7:72:d7:61:14:be:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
        Validity
            Not Before: Jun 12 03:00:54 2025 GMT
            Not After : Jun 13 03:00:54 2025 GMT
        Subject: CN=603d8a110ad34fb0e84661e993853b8466427d81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:46:4b:41:ae:5a:f9:d5:f0:68:eb:ed:2f:b8:
                    d7:36:f7:43:7a:44:70:32:00:63:4f:48:d2:61:4d:
                    62:55:19:51:f7:af:86:a7:a0:9a:43:2b:22:b0:7b:
                    f2:bb:08:f7:8d:92:48:9e:58:dc:23:82:71:77:bc:
                    b1:07:34:30:85:ab:af:f1:80:f2:b0:86:46:31:2b:
                    d2:a0:f7:27:92:98:f9:9e:79:35:4d:1e:e7:c9:e7:
                    9d:74:05:38:e6:cb:cb:29:cd:2d:b9:72:8f:c6:60:
                    02:9f:28:5f:6c:b1:0a:8d:bc:ed:a0:6e:f4:63:a2:
                    d8:9f:46:a2:9e:98:db:ac:7a:d4:75:45:af:cb:eb:
                    70:0b:42:4a:e8:df:62:88:c3:fe:a0:63:af:82:06:
                    f4:ea:3f:12:ea:90:a8:d3:47:5f:7a:ae:ec:1b:0d:
                    30:c0:2d:80:3c:5c:75:3f:86:8b:83:87:1d:56:66:
                    dd:91:6b:66:5c:3c:ea:9c:c5:aa:c3:7a:30:0a:1d:
                    91:56:98:e1:0b:36:3c:03:a7:85:b0:7d:f2:c2:61:
                    ab:cc:ff:74:8b:ae:2f:9e:b1:b7:88:10:7a:6e:d2:
                    9a:ae:3e:fa:3c:c7:e2:8b:bf:47:4c:c9:02:58:59:
                    14:32:f9:f5:08:2f:7a:e1:ae:54:97:d1:34:13:1f:
                    28:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:3D:8A:11:0A:D3:4F:B0:E8:46:61:E9:93:85:3B:84:66:42:7D:81
            X509v3 Authority Key Identifier:
                keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:e6:62:f2:96:55:18:9c:99:5e:d4:c3:8e:64:b7:a9:e7:02:
         4e:9d:c4:f4:04:2a:a4:0f:b7:79:d4:36:dd:5b:61:e8:93:4f:
         3f:2a:c2:d1:61:ba:19:80:c0:ab:a4:4c:8c:dd:db:91:f0:f1:
         0c:c6:1e:82:8b:2f:ff:13:0f:69:88:b6:2a:35:6e:1f:a1:a9:
         14:28:e6:b0:79:78:aa:75:d5:94:0c:d3:eb:b1:cd:09:46:f5:
         13:ce:eb:30:db:48:63:e8:cf:3e:43:e6:9f:a8:3b:6b:ba:eb:
         12:1b:43:e5:4c:a7:94:d5:0d:3a:70:c7:31:23:5a:0c:85:17:
         90:67:c5:54:c2:1f:1f:dc:0d:d5:fc:a2:e9:ad:d3:0d:7b:dc:
         f1:29:2c:33:b5:bb:7a:f9:f2:17:f1:05:f3:48:7d:05:bc:56:
         79:75:ca:69:1c:64:8c:6f:5e:7e:ba:cd:c0:31:58:05:d7:d3:
         71:6b:7a:4b:0e:5a:01:78:27:8f:ae:4c:69:1f:4a:51:6c:23:
         97:3a:f6:11:e4:f4:36:44:e8:76:ba:d4:c3:83:2a:b1:15:92:
         a0:75:ce:d6:61:85:37:f2:32:aa:31:46:26:0b:bb:5c:22:5f:
         8c:f0:09:1a:e0:ca:99:ac:41:cd:da:92:74:fa:64:7f:42:3a:
         e2:07:8f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 10:35:28 2025 by rpki-client