Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
File:                     YsTHQ9XCr88n8QTrbgMWEWyFx94.mft (raw, json)
Hash identifier:          spqW1raCe1HQdREMlF8fM+PYermAzLCRz3/GgCZjDSM=
Subject key identifier:   15:60:D7:F2:BA:9B:CF:8C:6F:63:FB:C4:86:04:FD:73:82:CC:69:DE
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Certificate issuer:       /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial:       019762BA2BB71C4D0CE32CD69F58548E62FC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
Manifest number:          0B55
Signing time:             Thu 12 Jun 2025 06:00:57 +0000
Manifest this update:     Thu 12 Jun 2025 06:00:57 +0000
Manifest next update:     Fri 13 Jun 2025 06:00:57 +0000
Files and hashes:         1: O5Qp4JElVe0um1Rnuz-9xQyVCpc.roa (hash: 73YKFKe5WyNrwSKLy76+GejDIV4ldqnve1bMw3FlzZM=)
                          2: YsTHQ9XCr88n8QTrbgMWEWyFx94.crl (hash: X0DObiTryGXaAkiOfPWRgUwiciXUGtKXMpqAk3Q4V5I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:ba:2b:b7:1c:4d:0c:e3:2c:d6:9f:58:54:8e:62:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
        Validity
            Not Before: Jun 12 06:00:57 2025 GMT
            Not After : Jun 13 06:00:57 2025 GMT
        Subject: CN=1560d7f2ba9bcf8c6f63fbc48604fd7382cc69de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:2e:69:85:78:9a:72:f2:26:91:6b:0b:08:34:
                    53:bc:5e:27:23:81:e8:c0:e3:34:54:9c:4c:17:ba:
                    d1:ca:74:b4:f5:1e:c3:74:b7:30:ef:7f:53:f0:b4:
                    23:8b:cc:59:90:a8:c9:5e:54:8f:a5:3a:2d:0d:4f:
                    54:e6:51:3a:c5:1e:d4:b7:d0:89:04:a8:28:48:67:
                    ae:b4:f7:e2:aa:e3:1f:bf:20:92:e5:59:18:16:ec:
                    a6:65:af:bb:c0:d7:49:fc:91:23:7a:7f:09:90:34:
                    63:ad:dc:37:9f:66:82:c2:d1:b7:57:4f:ee:d4:25:
                    36:52:1c:a9:b4:94:99:de:3a:b1:e9:ee:35:11:9f:
                    ee:4f:de:28:56:47:56:d4:22:9a:72:ad:17:10:45:
                    a2:a9:b0:09:dc:a5:39:d8:6e:fd:8e:92:43:e5:23:
                    3d:a3:bc:44:26:68:a5:f5:a5:fe:36:62:ad:d3:db:
                    79:73:63:84:a6:0f:3d:8c:39:51:bb:9d:95:86:3d:
                    14:46:23:6b:4a:3e:2a:82:c8:17:0f:4c:21:06:e8:
                    8b:f9:99:b5:68:c5:6c:83:36:18:ad:69:3a:43:af:
                    a1:0f:45:ee:38:b4:00:5c:bd:a1:3c:53:07:a5:34:
                    b4:67:d4:56:8d:be:2d:83:3e:fa:db:ef:ee:81:ee:
                    56:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:60:D7:F2:BA:9B:CF:8C:6F:63:FB:C4:86:04:FD:73:82:CC:69:DE
            X509v3 Authority Key Identifier:
                keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:51:d5:4e:13:ed:15:81:c4:3a:34:ab:e5:99:b9:d8:3a:67:
         aa:70:55:28:18:3a:a5:88:75:ec:1d:20:a0:bb:54:19:f5:f7:
         07:1c:25:c0:8b:31:b7:f6:68:4d:ff:72:3a:f8:87:a7:a0:ce:
         ed:13:18:27:71:11:c6:b1:1b:38:83:f6:83:7c:d0:60:f6:d4:
         dd:fb:0d:d5:88:fc:5c:f4:df:55:f7:39:fb:7e:47:0a:fd:dc:
         98:82:c2:f7:c1:38:45:a6:8d:98:4c:ff:63:2d:72:e1:b1:80:
         26:15:73:8e:95:e7:c7:37:2d:fc:95:f9:b3:f8:35:a0:6d:94:
         a4:27:98:df:dd:12:7a:e6:4b:25:99:9b:09:70:92:d3:02:93:
         c4:0e:86:a2:52:01:7f:dc:e9:cc:ae:43:4a:5a:c8:ba:e5:32:
         bc:ef:ff:80:2d:a8:14:b7:00:96:5f:7c:97:0c:8b:39:5a:8a:
         ca:2c:08:1c:07:4e:4d:f4:76:3b:45:b0:f3:2d:8e:98:c0:f7:
         c0:5c:73:a2:fb:1c:4d:95:cd:4d:5c:2f:50:62:c3:92:18:ac:
         a1:de:49:50:ce:6c:f7:51:85:20:6e:d3:de:a9:c5:b6:81:0c:
         f8:7f:03:58:12:fa:c9:0f:62:66:bb:47:d5:8e:00:44:62:f0:
         79:2a:07:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdiuiu3HE0M4yzWn1hUjmL8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYzRjNzQzZDVjMmFmY2YyN2YxMDRlYjZlMDMxNjExNmM4
NWM3ZGUwHhcNMjUwNjEyMDYwMDU3WhcNMjUwNjEzMDYwMDU3WjAzMTEwLwYDVQQD
EygxNTYwZDdmMmJhOWJjZjhjNmY2M2ZiYzQ4NjA0ZmQ3MzgyY2M2OWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoS5phXiacvImkWsLCDRTvF4nI4Ho
wOM0VJxMF7rRynS09R7DdLcw739T8LQji8xZkKjJXlSPpTotDU9U5lE6xR7Ut9CJ
BKgoSGeutPfiquMfvyCS5VkYFuymZa+7wNdJ/JEjen8JkDRjrdw3n2aCwtG3V0/u
1CU2UhyptJSZ3jqx6e41EZ/uT94oVkdW1CKacq0XEEWiqbAJ3KU52G79jpJD5SM9
o7xEJmil9aX+NmKt09t5c2OEpg89jDlRu52Vhj0URiNrSj4qgsgXD0whBuiL+Zm1
aMVsgzYYrWk6Q6+hD0XuOLQAXL2hPFMHpTS0Z9RWjb4tgz762+/uge5WIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBVg1/K6m8+Mb2P7xIYE/XOCzGneMB8GA1UdIwQY
MBaAFGLEx0PVwq/PJ/EE624DFhFshcfeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUt
ZGUzNTJhOTJmNmJhLzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUtZGUzNTJhOTJmNmJh
LzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc1HVThPt
FYHEOjSr5Zm52DpnqnBVKBg6pYh17B0goLtUGfX3BxwlwIsxt/ZoTf9yOviHp6DO
7RMYJ3ERxrEbOIP2g3zQYPbU3fsN1Yj8XPTfVfc5+35HCv3cmILC98E4RaaNmEz/
Yy1y4bGAJhVzjpXnxzct/JX5s/g1oG2UpCeY390SeuZLJZmbCXCS0wKTxA6GolIB
f9zpzK5DSlrIuuUyvO//gC2oFLcAll98lwyLOVqKyiwIHAdOTfR2O0Ww8y2OmMD3
wFxzovscTZXNTVwvUGLDkhisod5JUM5s91GFIG7T3qnFtoEM+H8DWBL6yQ9iZrtH
1Y4ARGLweSoHug==
-----END CERTIFICATE-----
Generated at Thu Jun 12 10:42:42 2025 by rpki-client