Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
File:                     YsTHQ9XCr88n8QTrbgMWEWyFx94.mft (raw, json)
Hash identifier:          6Nm9BtoRF/lAUePFc+jrdQeEal/MPBAgfwWpjaYF+yg=
Subject key identifier:   F6:36:A7:83:83:66:A4:B2:0F:71:6D:EF:D6:C7:D4:E1:8D:74:62:C2
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Certificate issuer:       /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial:       01976696B0D9869D9E5BA5CC96342229191F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
Manifest number:          0B57
Signing time:             Fri 13 Jun 2025 00:00:41 +0000
Manifest this update:     Fri 13 Jun 2025 00:00:41 +0000
Manifest next update:     Sat 14 Jun 2025 00:00:41 +0000
Files and hashes:         1: O5Qp4JElVe0um1Rnuz-9xQyVCpc.roa (hash: 73YKFKe5WyNrwSKLy76+GejDIV4ldqnve1bMw3FlzZM=)
                          2: YsTHQ9XCr88n8QTrbgMWEWyFx94.crl (hash: Zdt1qoDWneGq4BStNBrkB8uckrmKdTABo7rV4/L5Zf0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:96:b0:d9:86:9d:9e:5b:a5:cc:96:34:22:29:19:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
        Validity
            Not Before: Jun 13 00:00:41 2025 GMT
            Not After : Jun 14 00:00:41 2025 GMT
        Subject: CN=f636a7838366a4b20f716defd6c7d4e18d7462c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:99:ed:e4:a9:95:d4:ff:f8:f5:ea:f2:6a:78:
                    71:3a:49:7d:1c:b2:da:dd:6a:77:b2:34:e0:06:37:
                    2d:25:31:64:34:0f:89:e9:28:7e:0b:45:86:4b:4f:
                    91:78:35:6d:f8:5d:ce:f8:28:9a:f4:76:2d:b1:0b:
                    f4:f1:92:80:b7:08:79:54:86:30:00:34:bc:82:4a:
                    95:ef:a2:b3:2a:77:b4:9d:2b:d5:87:f8:f7:b7:af:
                    ae:bc:8e:38:9d:5e:bb:99:04:2e:9b:d1:08:82:5b:
                    c3:f4:8f:2a:9c:6b:28:4e:64:e6:b6:1e:7c:38:35:
                    e5:02:ce:68:4b:86:cd:da:98:6d:0c:15:bf:25:89:
                    f1:90:10:02:14:67:79:66:e0:4b:b2:01:8d:20:e6:
                    11:b5:f9:ce:99:1f:47:08:61:fa:10:76:63:ed:70:
                    e7:8e:e8:82:98:32:1d:5c:76:c0:ab:a7:39:3c:d2:
                    49:2e:18:93:7a:b9:cf:97:83:22:b1:e0:e2:ab:e7:
                    a8:3b:a9:f2:44:6e:f3:f2:c2:56:7a:27:43:11:0b:
                    28:e0:14:c3:77:1f:5b:9a:f4:15:20:cd:92:34:dd:
                    58:c5:36:fe:48:bb:f2:f7:d3:13:21:ae:45:58:fb:
                    63:f7:fc:6c:49:88:09:6e:92:95:24:f3:51:88:df:
                    f3:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:36:A7:83:83:66:A4:B2:0F:71:6D:EF:D6:C7:D4:E1:8D:74:62:C2
            X509v3 Authority Key Identifier:
                keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:2c:c2:41:79:6b:9f:16:2d:f4:38:f7:a9:7d:79:ad:cf:c3:
         05:9c:3d:15:96:d3:0d:af:d7:7b:aa:9a:eb:a4:7d:97:b0:41:
         9e:79:84:85:eb:8a:6d:03:d9:be:5d:3c:e6:57:a5:fa:47:32:
         42:84:fe:37:86:7d:4f:ca:3f:fc:45:a2:39:ab:0f:fc:11:98:
         59:85:ad:c9:25:73:bb:1b:74:d2:af:75:16:93:24:55:7b:38:
         2b:d4:30:a8:e6:6e:f3:f6:9d:66:9f:cc:c6:8b:c9:73:ed:49:
         ff:8c:b2:2b:c8:37:8d:f1:7d:a9:1a:97:da:2c:fd:0c:b1:f9:
         4c:e1:19:2a:51:eb:10:15:c7:6d:db:06:be:e2:ef:05:41:af:
         64:b4:1e:80:cd:c0:dd:8e:27:cf:c6:77:6e:3e:3f:3c:6c:06:
         ef:e6:82:a4:4d:24:50:96:47:f7:f0:dd:db:1b:99:39:de:f0:
         3a:a3:95:c9:91:6a:8b:82:71:c1:53:b7:80:c0:a9:1c:7f:2f:
         3f:85:a6:4a:51:27:8e:20:1b:24:91:71:21:f4:43:32:3b:65:
         1b:8c:6b:9e:f8:e7:86:e9:22:51:ae:03:99:21:2b:02:ef:80:
         4b:1f:de:58:ce:34:9c:dc:a7:fd:d4:c4:e5:a4:c4:61:69:b0:
         58:a4:f7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 05:54:25 2025 by rpki-client