Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File:                     XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier:          Ql0By0uMNnv+pywmFs/G/NaqWmWs9goFuJDzWp33NIg=
Subject key identifier:   7C:BC:14:FC:AE:BB:CB:FC:71:35:CB:C8:67:30:A6:C5:88:65:EA:70
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer:       /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial:       01976AAA64743DA7F6FFAB1ADF8317AEE410
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number:          10C3
Signing time:             Fri 13 Jun 2025 19:00:41 +0000
Manifest this update:     Fri 13 Jun 2025 19:00:41 +0000
Manifest next update:     Sat 14 Jun 2025 19:00:41 +0000
Files and hashes:         1: EOCWiGvbLbC8SrTdZuW8112GldA.roa (hash: 6TEyJTlSHuy3i9dMVFX2h1KeLM589ScTuB8gZ6GHeEg=)
                          2: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: vaJJFdN0fnDD8GcOwEuSMSuVjuok50PU7qeURL2fZyM=)
                          3: ZSASssxXWzh67IcbvQuSjMbjXlE.roa (hash: 8NFvVB0e1Ed6PcQb0KzEDJBB77MUqbc2YSQy8ySf1Y4=)
                          4: iefIsjicRY6rMPB46yzGeoYmfDY.roa (hash: wYK+cODxbPgs0PQn468rpCusa1e+6M4kLS/qnuHcsvY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:aa:64:74:3d:a7:f6:ff:ab:1a:df:83:17:ae:e4:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
        Validity
            Not Before: Jun 13 19:00:41 2025 GMT
            Not After : Jun 14 19:00:41 2025 GMT
        Subject: CN=7cbc14fcaebbcbfc7135cbc86730a6c58865ea70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:a7:3f:c8:a7:d2:89:64:32:d7:c2:f1:f3:1d:
                    e4:e5:3c:36:5a:fe:e1:c9:45:90:9b:61:6b:c0:c6:
                    96:c7:f0:36:19:5d:6f:b9:b6:53:08:26:24:bf:15:
                    80:62:3a:36:2c:76:c4:c0:c7:74:99:58:54:c9:c1:
                    de:9d:49:24:85:89:ff:cd:e6:0a:9e:16:d9:27:ab:
                    2e:b6:84:03:8a:ee:b8:dd:4b:d5:86:86:66:ef:55:
                    df:3e:63:02:0f:79:15:9e:36:35:0f:0a:ec:62:07:
                    37:a7:74:e3:44:6d:90:82:a7:83:0e:d1:fb:33:b7:
                    6e:7a:80:b2:01:ca:dd:0d:6d:40:03:6f:8e:6b:cb:
                    83:65:07:7d:b7:cb:a9:db:0e:bd:fe:7c:57:0d:dd:
                    6e:0b:ff:c4:b5:20:32:cb:7f:a3:85:01:6a:a2:1f:
                    85:8f:c2:c6:55:47:89:44:f7:4a:d9:48:67:19:ef:
                    da:88:50:59:ff:9d:c9:ac:d8:5f:6a:22:70:42:90:
                    ec:e7:b0:29:fd:59:78:4f:72:b0:4a:c6:f6:06:93:
                    56:b4:4f:6d:50:e7:d4:ff:3d:05:47:8e:c6:25:dc:
                    c6:25:22:4b:19:18:b9:d7:c2:14:38:a9:4a:6c:4d:
                    e9:9e:05:2a:c9:48:3b:7d:7a:2c:c8:3e:fd:0d:50:
                    16:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:BC:14:FC:AE:BB:CB:FC:71:35:CB:C8:67:30:A6:C5:88:65:EA:70
            X509v3 Authority Key Identifier:
                keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:33:ad:ee:32:03:17:56:94:c7:3c:8e:50:52:73:f7:14:c1:
         9f:27:08:c6:2f:11:08:a7:2f:e9:d5:c7:3c:4e:0d:e3:4e:5a:
         44:68:2e:5e:b6:b7:be:e9:a6:a1:9e:70:4a:d6:e5:24:0e:0c:
         31:02:49:f0:55:f5:bd:4e:1f:43:9b:ca:0a:3e:68:e3:50:86:
         d5:e8:7f:19:a4:ab:24:65:e4:5c:0e:e0:38:80:d0:a9:fe:00:
         14:18:15:d2:e3:44:70:95:e3:64:0b:0c:67:80:83:90:fc:a9:
         56:13:e6:f5:c5:40:8d:e1:a4:98:87:81:fc:c7:c5:cb:e2:84:
         37:16:db:2b:dd:9b:c0:de:9e:74:f1:91:c9:1f:f5:71:8f:80:
         e1:9a:be:12:95:90:8c:e3:80:90:da:b2:b7:d2:a2:6d:3d:ee:
         53:62:df:30:3c:70:26:09:0d:5f:44:7a:98:2f:56:07:a3:3f:
         02:78:79:c9:40:2b:05:fe:a4:61:d0:15:c3:a9:3a:ab:8d:7b:
         41:a6:7c:73:57:7f:d0:5e:bf:d8:1a:36:21:9f:3a:27:4a:99:
         32:f6:fe:5e:7c:d0:87:88:73:d7:8d:6e:63:21:14:5f:7e:59:
         62:cf:19:85:1a:e1:74:bc:37:ec:40:c8:6e:ad:b0:24:3e:93:
         ee:67:1f:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqqmR0Paf2/6sa34MXruQQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkM2JiODQ4OTE2NTFmMjAzOWNkODFiMGI2MDkxMmY3YzBl
NWNmOTYwHhcNMjUwNjEzMTkwMDQxWhcNMjUwNjE0MTkwMDQxWjAzMTEwLwYDVQQD
Eyg3Y2JjMTRmY2FlYmJjYmZjNzEzNWNiYzg2NzMwYTZjNTg4NjVlYTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qc/yKfSiWQy18Lx8x3k5Tw2Wv7h
yUWQm2FrwMaWx/A2GV1vubZTCCYkvxWAYjo2LHbEwMd0mVhUycHenUkkhYn/zeYK
nhbZJ6sutoQDiu643UvVhoZm71XfPmMCD3kVnjY1DwrsYgc3p3TjRG2QgqeDDtH7
M7dueoCyAcrdDW1AA2+Oa8uDZQd9t8up2w69/nxXDd1uC//EtSAyy3+jhQFqoh+F
j8LGVUeJRPdK2UhnGe/aiFBZ/53JrNhfaiJwQpDs57Ap/Vl4T3KwSsb2BpNWtE9t
UOfU/z0FR47GJdzGJSJLGRi518IUOKlKbE3pngUqyUg7fXosyD79DVAWIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHy8FPyuu8v8cTXLyGcwpsWIZepwMB8GA1UdIwQY
MBaAFF07uEiRZR8gOc2BsLYJEvfA5c+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4Njkt
NGY4YzYzOGE3MmUxLzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS81ODdmN2UtNjBjYy00MWEwLTg4NjktNGY4YzYzOGE3MmUx
LzEvWFR1NFNKRmxIeUE1ellHd3Rna1M5OERsejVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXTOt7jID
F1aUxzyOUFJz9xTBnycIxi8RCKcv6dXHPE4N405aRGguXra3vummoZ5wStblJA4M
MQJJ8FX1vU4fQ5vKCj5o41CG1eh/GaSrJGXkXA7gOIDQqf4AFBgV0uNEcJXjZAsM
Z4CDkPypVhPm9cVAjeGkmIeB/MfFy+KENxbbK92bwN6edPGRyR/1cY+A4Zq+EpWQ
jOOAkNqyt9KibT3uU2LfMDxwJgkNX0R6mC9WB6M/Anh5yUArBf6kYdAVw6k6q417
QaZ8c1d/0F6/2Bo2IZ86J0qZMvb+XnzQh4hz141uYyEUX35ZYs8ZhRrhdLw37EDI
bq2wJD6T7mcftQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 21:35:13 2025 by rpki-client