Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File:                     kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier:          bDwXxr5t/Ymbi2w2+Wks64oaPRl5OzGw65fWX5MIjAY=
Subject key identifier:   44:6E:F5:BE:28:17:61:1B:EB:15:DC:40:9C:D6:5D:4C:A2:76:DF:61
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer:       /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial:       01975CEE98A5C3845C2F78FD8D831B6C27DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number:          0720
Signing time:             Wed 11 Jun 2025 03:00:29 +0000
Manifest this update:     Wed 11 Jun 2025 03:00:29 +0000
Manifest next update:     Thu 12 Jun 2025 03:00:29 +0000
Files and hashes:         1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: uCbVLA3dNd9c0D95hbhWco6zdpVPG2oY8aBgSaH5In8=)
                          2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:45:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:ee:98:a5:c3:84:5c:2f:78:fd:8d:83:1b:6c:27:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
        Validity
            Not Before: Jun 11 03:00:29 2025 GMT
            Not After : Jun 12 03:00:29 2025 GMT
        Subject: CN=446ef5be2817611beb15dc409cd65d4ca276df61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:04:14:4e:89:6c:1d:ff:8c:fe:8f:32:48:17:
                    fe:26:b8:90:c8:4a:77:38:62:73:1d:c3:a0:c6:d7:
                    d4:d5:26:9c:08:7d:c3:e4:89:59:0b:b0:4e:fe:07:
                    14:f7:93:bf:f5:e6:5a:87:f0:11:2d:84:bd:d6:50:
                    02:24:3f:e0:93:03:50:c6:87:2b:01:e2:d9:90:6f:
                    37:cd:de:7f:b1:f1:24:04:55:32:7b:e1:02:c4:ff:
                    0b:34:12:23:42:27:b2:6e:72:9c:6f:75:f8:7a:c7:
                    61:a4:fb:86:79:72:65:64:5e:32:e1:f7:c7:ef:ea:
                    26:0a:b5:22:2b:c1:52:82:54:43:74:94:ce:44:a7:
                    15:36:c5:f0:92:93:dd:5f:49:5d:f8:af:b7:fe:e0:
                    7d:e7:82:2e:7e:f2:7c:de:91:ae:e8:12:73:c8:48:
                    ba:32:ab:66:65:3c:71:e9:29:e1:d9:84:c3:a0:f4:
                    bc:62:81:85:d0:50:e5:22:3e:f9:52:16:02:41:c0:
                    7a:a5:a6:8b:f2:f2:ab:01:f6:9b:fc:3c:ba:2f:51:
                    3e:b9:ba:85:8b:fa:7e:29:34:4d:05:23:fc:63:15:
                    19:fe:a9:1f:36:d4:f9:a0:17:b6:0f:35:96:e6:5d:
                    ff:48:32:f2:96:d4:23:6e:ca:5f:56:93:71:fd:82:
                    06:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:6E:F5:BE:28:17:61:1B:EB:15:DC:40:9C:D6:5D:4C:A2:76:DF:61
            X509v3 Authority Key Identifier:
                keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a4:3f:4b:e3:16:77:3d:f6:86:e8:37:69:5c:de:02:b0:cf:d3:
         d5:34:32:5d:36:c2:73:86:a6:55:93:82:50:1d:00:98:91:cf:
         4f:c2:80:c6:b2:cc:2c:a0:7c:37:11:a5:26:56:8c:74:2e:23:
         6a:a3:9e:50:15:7d:c1:45:ad:a9:81:72:19:75:92:b7:49:85:
         44:dc:35:15:77:ae:f7:ff:06:ad:7e:66:66:3c:f8:ae:c7:87:
         da:4a:ed:53:a1:eb:0b:d7:3f:6c:c4:92:91:bf:26:32:aa:30:
         22:cb:4c:ec:8c:cb:d0:9e:00:f3:cf:e2:30:c9:89:9b:48:28:
         ab:36:18:de:1c:bc:24:53:a7:6b:dd:68:b6:20:23:21:67:ab:
         06:cd:44:f8:6d:93:5e:42:5f:e2:69:e8:be:9c:3a:d1:f1:3d:
         ef:7d:6d:8d:95:13:37:b9:a8:48:d6:11:d0:97:89:ec:b4:c6:
         30:2d:0d:1e:0e:42:cc:ec:ad:7f:08:19:87:77:28:8c:82:cc:
         9e:94:fa:eb:6e:81:68:78:fd:31:ef:5f:3e:a9:ba:bc:d5:f5:
         ab:f8:94:3c:34:2a:91:14:1b:dc:c4:e7:ed:dc:b0:8a:be:70:
         7b:d4:75:ae:47:b1:03:8c:99:2c:e1:f2:e1:22:b3:a0:4f:36:
         bb:bb:c7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 05:12:31 2025 by rpki-client