Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          /YaMEdx/9404t8EmsI1vqHiWrjjLpvPD7bea5LbG3eg=
Subject key identifier:   B3:F0:4E:15:EF:BF:F0:CA:E5:78:21:F7:80:B6:C3:D4:48:38:B7:24
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       0197567EA0D8AFFA42FA67942E1A7D98D4DA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          1583
Signing time:             Mon 09 Jun 2025 21:00:28 +0000
Manifest this update:     Mon 09 Jun 2025 21:00:28 +0000
Manifest next update:     Tue 10 Jun 2025 21:00:28 +0000
Files and hashes:         1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: LtAF9Qt/g/bE1GenqNdL/Uz3fgF+0PK5es8/JfS3uVU=)
                          2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 19:25:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:7e:a0:d8:af:fa:42:fa:67:94:2e:1a:7d:98:d4:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jun  9 21:00:28 2025 GMT
            Not After : Jun 10 21:00:28 2025 GMT
        Subject: CN=b3f04e15efbff0cae57821f780b6c3d44838b724
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:b9:7c:a7:ea:69:7a:42:e8:04:a3:c5:76:21:
                    8f:1f:48:55:59:b7:70:40:f7:d9:6b:5d:e1:84:e6:
                    97:1c:47:8e:6d:f4:6c:f3:78:d2:57:c6:09:6f:6b:
                    31:8e:18:c9:55:a9:55:4e:e9:06:69:c0:44:24:07:
                    8a:cc:61:f0:08:fc:e4:d7:24:4b:f4:98:ef:66:b1:
                    9c:3f:52:1d:c6:99:10:10:40:31:f9:f8:88:57:5f:
                    58:a8:30:6b:5d:57:97:19:03:45:90:12:21:e4:da:
                    0c:b0:56:d7:25:88:b6:3a:fb:80:59:f3:cb:b0:4e:
                    c4:8b:f6:7f:b7:35:c5:77:d5:e0:62:26:c3:19:19:
                    1c:16:9f:15:13:a2:cf:07:1a:22:a9:b5:e0:07:2d:
                    93:62:d7:3e:4a:4f:04:e1:a2:92:a0:e4:98:8a:c8:
                    46:5d:16:d9:3a:d0:1f:65:a4:2e:13:06:63:8a:a2:
                    1b:1c:39:8c:81:b7:4e:b9:cc:04:14:aa:cf:02:3d:
                    a8:0d:19:56:4f:b4:89:89:19:61:7a:c5:10:40:84:
                    21:e4:25:17:4f:4f:7c:80:e2:2f:08:24:51:83:18:
                    bd:90:35:de:92:d1:08:93:25:da:aa:ec:9b:ba:b6:
                    a5:ae:f7:e0:2b:cf:f4:75:41:5f:c9:81:3e:54:bc:
                    a0:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:F0:4E:15:EF:BF:F0:CA:E5:78:21:F7:80:B6:C3:D4:48:38:B7:24
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d5:0e:5e:9e:d4:10:a2:5c:79:a8:82:95:08:c1:65:69:cc:a3:
         94:63:fc:68:e4:45:c3:4d:8c:36:ff:12:02:eb:e3:45:9e:e6:
         f2:d7:b3:2d:c5:43:46:4c:f3:ae:34:93:89:1d:99:d2:24:76:
         34:ee:be:cf:68:e5:83:db:34:95:a7:93:7d:cb:d9:cf:7f:53:
         9e:de:cf:48:1e:40:c7:f4:34:d0:3e:ca:f6:0a:52:e1:4d:87:
         78:8f:71:bb:d9:22:75:2a:ee:96:e7:2d:e0:d0:8a:0d:08:fc:
         83:aa:a9:98:4b:00:98:6e:14:c2:76:ea:33:49:33:ef:be:5b:
         bc:54:0e:78:7e:2c:69:54:0a:93:8b:41:1a:82:a8:44:6f:31:
         40:bd:a8:13:89:a3:94:6f:c1:3c:3f:4a:c7:58:a0:81:6f:e4:
         c0:38:62:d8:4e:62:00:93:86:28:d8:59:c6:d5:56:ce:7f:28:
         84:41:2d:93:ed:69:4f:b6:44:b4:63:b6:94:fa:3a:ed:cf:38:
         d8:a3:39:61:b2:2f:65:d7:31:59:df:30:3d:3b:46:5d:62:df:
         c0:9d:37:27:1d:54:70:d3:0f:c1:c0:a8:50:bf:aa:84:05:84:
         95:af:b1:ee:2a:d2:18:35:1f:f1:8b:8c:4c:5c:fa:f3:45:06:
         46:86:bb:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 02:17:46 2025 by rpki-client