Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File:                     kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier:          52Jt1N1FiuyHUHmldCMU197ANhda23NgGLCivG9feNM=
Subject key identifier:   CD:51:53:C3:11:14:59:66:43:73:9D:07:44:24:7B:DD:41:CC:5B:7B
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer:       /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial:       01975EDD0558A246B888F55DE1B7977428E6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number:          0721
Signing time:             Wed 11 Jun 2025 12:00:32 +0000
Manifest this update:     Wed 11 Jun 2025 12:00:32 +0000
Manifest next update:     Thu 12 Jun 2025 12:00:32 +0000
Files and hashes:         1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: z/1lHKfjG+3qqVeXv8wsv7jRL/1VGGvehDjdJrUy0nE=)
                          2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 08:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5e:dd:05:58:a2:46:b8:88:f5:5d:e1:b7:97:74:28:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
        Validity
            Not Before: Jun 11 12:00:32 2025 GMT
            Not After : Jun 12 12:00:32 2025 GMT
        Subject: CN=cd5153c31114596643739d0744247bdd41cc5b7b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:2b:71:cf:70:7a:e5:24:5f:1b:08:70:6f:f2:
                    3b:2f:f9:45:4f:ea:6e:2d:22:ed:4e:23:59:24:a2:
                    3a:13:72:8f:17:08:48:a2:33:d2:64:db:03:e8:9d:
                    fc:97:87:44:b1:b8:69:34:47:3e:5a:2a:b9:eb:0a:
                    f1:24:fd:d7:4e:3f:52:79:4e:31:68:8f:26:f3:c3:
                    2c:cc:60:a5:47:dd:8a:ab:82:15:5b:e5:d7:74:32:
                    e7:65:4f:e0:27:bb:e1:d0:bb:3a:fe:f2:2b:75:63:
                    39:06:86:4e:d0:4c:9a:1a:a5:da:64:c2:51:13:7f:
                    94:0a:73:2d:5d:d9:df:cc:bb:c9:f4:cd:84:b0:1d:
                    df:9a:81:42:1b:c7:1f:73:bd:12:d3:2f:75:62:0a:
                    95:fb:49:18:2c:4b:3a:6a:4b:03:2a:a4:68:82:7f:
                    39:b6:02:85:ac:63:a4:f1:25:29:18:79:46:3b:e3:
                    65:df:7e:2e:fd:73:12:f1:14:51:3d:72:a0:3a:0c:
                    80:48:95:76:23:47:81:f4:c4:bf:15:23:b8:a2:db:
                    68:f3:50:d7:f6:50:a4:32:a8:4a:4d:0e:2e:82:78:
                    e5:67:58:d1:ff:04:a7:41:6d:cc:d1:14:c7:ac:3f:
                    ae:42:bd:84:18:f5:de:db:40:a5:4d:c2:bd:33:92:
                    4b:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:51:53:C3:11:14:59:66:43:73:9D:07:44:24:7B:DD:41:CC:5B:7B
            X509v3 Authority Key Identifier:
                keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:37:b1:08:4d:3b:4f:4c:32:33:85:41:43:c1:5d:3c:e1:1f:
         c6:ef:d5:f1:b6:73:49:3c:fa:51:cd:b4:1f:71:a7:d7:92:6f:
         7b:b9:bb:b4:21:d8:3a:e4:a7:a6:1a:ca:4c:f9:e4:33:b3:2a:
         1d:b0:d7:1f:3a:1f:03:ba:2e:41:ca:5c:c0:a4:4f:75:ad:a1:
         84:61:06:b7:d5:55:ca:bc:a0:57:6e:aa:8e:a7:f7:ca:31:9c:
         ee:4a:c4:15:18:70:bc:65:6d:41:2b:ab:d7:d0:e1:5b:79:2c:
         df:b8:a5:cc:fd:53:ec:43:9a:d5:38:e3:9d:0e:3f:41:74:9b:
         0e:0f:b9:eb:73:2f:db:3e:bf:f8:42:ed:30:7e:be:46:9b:2b:
         bb:d9:86:27:13:32:ee:32:75:8c:10:fb:b3:b9:b7:9d:93:c4:
         fd:5b:ef:f0:84:40:24:fe:54:b8:ee:c7:ab:38:40:46:79:e5:
         e9:b5:ed:eb:fe:c7:ad:18:87:70:5b:bf:90:09:cc:3d:36:06:
         7e:ce:f6:21:a7:f5:b5:bd:37:f3:ee:51:89:a6:f9:e3:da:dd:
         d6:75:44:85:2d:09:36:2a:24:68:d5:cf:79:6f:27:2b:1d:eb:
         b0:a3:d7:ba:d3:68:18:e1:1d:5e:60:9f:1d:eb:e4:0c:19:62:
         45:e9:01:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 14:39:23 2025 by rpki-client