Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          46ZvbohjYZ+ATLYvpd+4RihO4Iu7St1Ee11AiNx0wrY=
Subject key identifier:   0E:1B:73:3E:3A:1B:3A:C8:35:A3:EC:0E:AD:56:2D:3B:A5:88:59:C7
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       019769CE74A25FDC340F9FBCFAFA8B0CD5F6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          158D
Signing time:             Fri 13 Jun 2025 15:00:27 +0000
Manifest this update:     Fri 13 Jun 2025 15:00:27 +0000
Manifest next update:     Sat 14 Jun 2025 15:00:27 +0000
Files and hashes:         1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: AJc3oK3DdGwYjhqIzY3cGeCTZfgEUSPvNiIpvorCPa8=)
                          2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:ce:74:a2:5f:dc:34:0f:9f:bc:fa:fa:8b:0c:d5:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Jun 13 15:00:27 2025 GMT
            Not After : Jun 14 15:00:27 2025 GMT
        Subject: CN=0e1b733e3a1b3ac835a3ec0ead562d3ba58859c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:52:66:e9:14:4c:a8:db:90:51:65:c9:70:0e:
                    0e:c8:78:01:ed:e7:b9:55:e1:42:51:d9:22:5a:93:
                    2d:8f:6a:bd:b9:c5:da:c8:dd:8f:f9:09:a4:5a:84:
                    82:df:39:64:26:da:60:38:8c:d1:32:16:14:95:f4:
                    68:ae:97:e5:60:a7:18:87:76:8f:83:44:a6:db:24:
                    5e:e3:3d:7a:f0:c4:76:88:54:47:92:e0:59:fe:91:
                    9b:71:56:1b:a4:4d:33:ab:91:f3:5b:ae:d2:da:ee:
                    94:ba:08:1b:bb:bd:ac:7c:4e:21:68:b6:07:8b:9b:
                    cb:b6:5a:8f:41:8a:5b:24:40:7b:eb:a4:aa:9a:39:
                    bc:63:93:8e:bc:f1:68:3d:b1:11:93:62:a5:f1:fa:
                    0f:75:46:59:85:98:83:4e:71:5e:17:07:8a:5f:eb:
                    24:a3:47:ec:61:ba:84:8f:a2:c4:73:27:d0:f8:34:
                    47:06:f7:3c:c7:34:a2:3f:07:8d:1b:2a:1a:a4:f1:
                    64:40:a7:3f:b0:fa:c6:53:26:7f:36:fe:17:9f:7f:
                    85:84:6a:64:cc:a9:6b:29:61:3a:2d:b8:de:c0:2b:
                    6d:5a:ab:ea:6b:a1:99:ad:36:36:ca:44:32:23:91:
                    ed:12:77:e3:33:e4:02:8f:c3:9f:94:11:6c:27:2d:
                    cb:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:1B:73:3E:3A:1B:3A:C8:35:A3:EC:0E:AD:56:2D:3B:A5:88:59:C7
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:69:ad:2a:a7:48:d1:2d:64:f9:40:5d:99:26:4d:93:3f:94:
         58:95:8f:5c:75:e1:cf:c2:26:ee:c9:6c:2c:c7:60:80:17:4c:
         00:10:4e:c4:f1:38:ce:c6:a4:fe:56:3e:ba:ed:21:31:90:2b:
         97:b7:33:8e:d2:8f:d3:46:93:9d:c7:d2:f8:96:77:d7:cd:ab:
         6a:67:4c:25:61:93:c1:d5:a1:12:57:9c:c0:21:b2:87:db:da:
         80:88:d8:a0:b3:e2:84:3f:c2:94:f2:48:24:84:10:a8:54:38:
         d4:f0:cc:8c:ec:74:d7:d9:d8:c4:7c:e2:18:5f:98:92:49:aa:
         6f:12:6a:27:dc:59:57:cd:24:27:32:d5:b1:5e:9a:7b:0e:04:
         44:11:cd:5c:8e:9f:b5:47:6e:4b:8a:a8:a5:69:be:c2:d5:f6:
         11:b2:86:93:bb:58:93:d3:61:e8:9a:75:b0:fb:be:f0:e8:74:
         35:de:46:55:21:eb:97:84:2f:88:4f:5a:d9:b3:31:b4:9a:39:
         ef:d1:2d:f0:90:35:5d:ce:39:77:22:7c:0a:ea:69:9d:c4:8f:
         c0:1e:fa:23:40:5a:27:fd:66:73:87:ff:63:61:9b:73:d3:b1:
         b2:f6:86:73:3f:51:4e:e9:36:31:ce:55:aa:50:3c:cf:7f:b8:
         14:6f:41:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 00:41:17 2025 by rpki-client