Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File:                     kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier:          023Zm2HZfCV+JxNuHXSLGjKNjjzp0+FRWP/mPJnT9ao=
Subject key identifier:   43:48:8E:F4:22:A3:0B:07:29:B4:74:C5:74:83:57:23:C7:E4:36:1C
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer:       /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial:       0197703F12F4BA861C4699D922A74683FFEB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number:          072A
Signing time:             Sat 14 Jun 2025 21:01:11 +0000
Manifest this update:     Sat 14 Jun 2025 21:01:11 +0000
Manifest next update:     Sun 15 Jun 2025 21:01:11 +0000
Files and hashes:         1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: hlrALRO82CUayBVLonu7+qGVQNKC8gI7sWOjItEnWlU=)
                          2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:3f:12:f4:ba:86:1c:46:99:d9:22:a7:46:83:ff:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
        Validity
            Not Before: Jun 14 21:01:11 2025 GMT
            Not After : Jun 15 21:01:11 2025 GMT
        Subject: CN=43488ef422a30b0729b474c574835723c7e4361c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:50:71:45:4a:a0:19:10:01:49:13:14:08:2f:
                    48:23:5c:17:20:7e:bb:fc:8b:a9:20:ca:82:49:ec:
                    09:4c:fc:53:f7:f9:23:5a:19:a8:9f:d0:92:78:49:
                    a1:8a:4d:1a:32:c9:79:ee:e0:b4:92:69:21:09:15:
                    05:bb:2c:ad:13:b0:67:75:3b:10:e6:ec:07:93:bc:
                    90:30:11:2a:3e:f3:06:d2:9c:d4:75:65:46:02:86:
                    fd:a1:f2:34:91:9c:b3:77:5d:81:55:5b:78:4f:23:
                    c5:f8:40:4d:75:d6:94:e1:00:ed:77:47:9e:67:1a:
                    42:fd:a6:e4:51:0a:0f:3a:ad:99:a7:ee:f2:1f:b8:
                    83:a2:7d:fd:9f:a1:f9:ab:af:05:c8:45:47:6a:e7:
                    ef:a6:c8:b7:3e:7e:e0:01:ad:f0:35:6a:6e:f6:7d:
                    59:19:78:65:bf:06:76:5c:55:54:a1:69:9c:78:57:
                    6c:c8:46:d4:82:f5:a8:97:1f:ad:bf:ea:e3:f6:69:
                    b5:31:49:ee:38:cf:f5:ec:f8:2f:5e:fb:35:05:c4:
                    68:d4:70:5f:48:ee:54:72:94:a2:42:86:6d:88:0b:
                    4d:c5:23:ce:35:55:80:8e:ca:fc:ab:85:03:ac:24:
                    d7:84:aa:c0:8f:01:2c:b3:69:98:1a:e0:0a:41:cb:
                    df:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:48:8E:F4:22:A3:0B:07:29:B4:74:C5:74:83:57:23:C7:E4:36:1C
            X509v3 Authority Key Identifier:
                keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:65:31:21:84:27:fc:5b:cd:43:bb:c1:6a:cb:23:87:45:bf:
         11:2b:62:44:db:71:6b:1a:8a:0a:1d:87:29:9a:e2:bf:4c:1e:
         bb:13:ef:1f:4b:21:19:6e:8e:41:7d:12:8b:9d:6a:43:a0:85:
         41:f9:78:06:6c:04:25:04:fd:2b:59:96:6f:ff:74:22:ab:76:
         eb:e0:eb:a4:37:77:23:56:c3:4e:31:95:13:87:f3:bf:7b:84:
         ea:20:03:a4:c6:87:07:da:27:af:a0:0a:c8:8f:1c:7b:a2:c4:
         a2:09:63:3d:68:91:eb:4d:fa:6e:ce:a4:c2:13:71:fe:8a:50:
         7f:a4:a6:d0:09:7c:0c:e7:c3:44:01:73:8d:71:ef:e6:0a:47:
         7d:e0:5e:1d:55:81:c0:4b:67:4c:cc:e7:95:cc:f6:7d:d8:fe:
         fe:14:f4:13:5d:a8:3d:00:5b:10:73:47:2e:e2:79:8a:c7:0b:
         d5:99:47:01:68:7d:99:1f:d2:86:46:be:c4:dc:10:35:3f:12:
         ef:8b:b5:a5:4c:f9:f6:d3:0d:fb:4e:53:4f:69:e6:58:74:f2:
         7e:c7:c8:ce:8e:47:f0:96:74:58:f3:00:9a:3c:95:c4:56:d1:
         15:0f:78:ab:d8:04:13:d0:be:3e:cb:34:44:2f:14:13:1e:5c:
         1c:f6:46:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:07:49 2025 by rpki-client