Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File:                     kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier:          Sznd4JutH7zmLs/OejGLNaev/oxNA6J7U11P2qF0ypA=
Subject key identifier:   82:4D:9F:A3:CE:C4:B7:DB:55:B6:0D:39:A2:80:12:E6:84:E3:05:E7
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer:       /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial:       01975B004BAAE3F5EF5AF6EF30A52F5472AF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number:          071F
Signing time:             Tue 10 Jun 2025 18:00:35 +0000
Manifest this update:     Tue 10 Jun 2025 18:00:35 +0000
Manifest next update:     Wed 11 Jun 2025 18:00:35 +0000
Files and hashes:         1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: hOkHQyRimS5rA8N+8pOBj8vP2jyIkPaKGhGKVoYpa1g=)
                          2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:00:4b:aa:e3:f5:ef:5a:f6:ef:30:a5:2f:54:72:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
        Validity
            Not Before: Jun 10 18:00:35 2025 GMT
            Not After : Jun 11 18:00:35 2025 GMT
        Subject: CN=824d9fa3cec4b7db55b60d39a28012e684e305e7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:a9:ce:d1:7a:ac:c1:85:95:16:e0:85:33:aa:
                    a8:74:10:61:fd:ed:f7:b3:68:26:93:11:d5:d6:75:
                    92:40:84:64:ed:b2:6f:44:64:8a:40:ce:42:47:c6:
                    4f:33:10:f7:37:5e:a8:d9:d4:43:4c:fc:ef:90:b3:
                    52:cf:0d:86:22:14:d1:69:a4:0a:f8:7e:d4:4c:11:
                    07:a3:7d:e7:11:27:8d:a0:b5:19:b3:0c:b7:ba:c0:
                    20:25:d8:4b:a9:99:e9:e6:5d:27:da:9b:36:93:fa:
                    b2:b0:79:de:d2:24:01:df:ca:af:dd:21:38:d1:2b:
                    6c:a8:23:86:36:27:01:35:38:a9:42:c6:4b:05:a4:
                    47:eb:f4:21:8c:9a:44:95:66:2a:d4:d1:12:44:19:
                    e1:55:3e:fa:a6:65:80:33:8c:68:34:c0:a6:bc:a8:
                    fa:36:d5:27:6d:0b:b2:d9:22:62:4e:a5:b8:3d:8a:
                    39:8c:01:e8:25:17:98:e1:37:6e:85:e2:c3:63:26:
                    b5:42:65:6c:78:6f:b8:59:d3:d1:12:5c:a4:c7:e0:
                    7f:87:f9:53:16:05:04:d9:ee:ac:0d:dd:2d:fd:f7:
                    93:a3:f7:4d:1e:c2:52:39:db:8f:e8:fe:06:e1:86:
                    1d:03:31:2d:e4:d3:2d:27:e8:06:4f:41:46:84:22:
                    2a:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:4D:9F:A3:CE:C4:B7:DB:55:B6:0D:39:A2:80:12:E6:84:E3:05:E7
            X509v3 Authority Key Identifier:
                keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cf:4d:40:33:2a:8e:0e:99:38:48:15:44:a1:4e:df:44:93:81:
         f3:28:fb:11:ff:64:1b:f9:00:95:e6:31:8b:dc:83:71:12:96:
         9b:36:ba:b1:65:5f:a4:50:2c:3e:12:1a:a4:04:4b:45:58:7a:
         93:85:2c:62:0f:e3:cb:4a:44:44:e9:98:f0:0e:2f:b1:0b:91:
         32:ec:3c:53:28:89:12:7f:64:1e:f7:0c:a0:96:9b:b0:97:c6:
         a9:a3:ba:07:20:d1:d6:a3:8f:2b:8d:73:65:49:6d:5f:69:a6:
         9b:37:a8:95:7c:8b:e6:a4:ca:87:bd:67:fc:62:9d:e6:5c:0a:
         d5:64:a2:7a:da:35:74:f0:10:fb:f1:4a:49:de:f0:04:96:ca:
         cd:bf:81:bb:03:5f:a7:a2:46:5a:bb:a4:aa:51:13:6f:a5:b3:
         a5:77:15:2e:81:26:73:b2:29:36:2b:16:14:f1:55:6f:b7:3f:
         ad:15:c8:76:0e:99:cd:3a:dd:f0:b0:b2:4b:60:ba:11:95:5f:
         1b:12:f8:25:fc:a5:ad:96:c5:da:d5:6b:17:65:34:a5:86:dd:
         ab:2f:ba:cd:d8:89:ad:ec:9a:9d:e2:3a:40:34:22:6e:96:17:
         bd:5a:5c:48:d1:c5:d0:39:aa:8f:06:64:23:22:ca:cf:d5:03:
         9a:94:e3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 21:43:51 2025 by rpki-client