Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File:                     mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier:          mlG394VhayphKP/1K3lWIeLOfTnCrRUVgUsfSDMlbfw=
Subject key identifier:   EF:AF:62:FC:78:B4:73:5C:B4:BE:8F:85:DA:6B:51:25:78:71:45:13
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer:       /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial:       01975B6E074A754D85E1625D1F44B58E85EA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number:          12CA
Signing time:             Tue 10 Jun 2025 20:00:26 +0000
Manifest this update:     Tue 10 Jun 2025 20:00:26 +0000
Manifest next update:     Wed 11 Jun 2025 20:00:26 +0000
Files and hashes:         1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
                          2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: Q0BZ6SVAr9eJOEsqZvttgxVAi2fXkNcjZbVPmQaIq50=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:6e:07:4a:75:4d:85:e1:62:5d:1f:44:b5:8e:85:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
        Validity
            Not Before: Jun 10 20:00:26 2025 GMT
            Not After : Jun 11 20:00:26 2025 GMT
        Subject: CN=efaf62fc78b4735cb4be8f85da6b512578714513
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:47:64:ae:15:25:07:a7:83:e2:63:23:c8:e6:
                    cd:f4:da:09:be:2e:c8:85:31:ba:b1:fe:8d:78:40:
                    7f:95:33:bf:0b:46:78:47:5d:4e:1b:58:13:a4:54:
                    bc:30:61:1a:b6:35:2b:b9:3d:47:9c:14:c7:af:20:
                    27:68:9e:d4:16:c1:4a:c5:97:24:bc:2b:76:d3:a2:
                    1f:82:56:9b:5c:c1:13:20:65:f2:cf:9d:a2:71:52:
                    3c:a3:de:50:ae:bf:70:e1:dd:32:e1:98:09:52:77:
                    c0:6c:a7:c7:80:8b:bb:01:19:d7:d0:7c:3b:02:7d:
                    c6:f0:c0:09:8d:da:aa:81:11:82:22:9e:e0:3e:13:
                    54:ac:3b:74:37:d3:33:e5:ce:4a:0e:43:b1:ea:c8:
                    b7:1c:db:1d:25:73:49:54:bd:9e:43:ad:54:06:57:
                    79:09:19:76:63:51:5e:ff:c8:ed:6e:f7:25:28:53:
                    01:75:8f:48:a2:a5:2d:2b:0c:d6:30:de:ba:9f:62:
                    d3:46:fd:ba:ff:97:d1:31:47:d3:e6:09:fc:b5:85:
                    75:5a:9f:2d:fd:a5:57:bf:a2:82:1f:da:7d:a6:a8:
                    b2:b0:f6:f2:35:43:2b:6e:d8:dd:6f:44:b2:d9:54:
                    56:37:9a:2e:0b:8c:77:03:37:a7:24:fa:6c:34:12:
                    f0:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:AF:62:FC:78:B4:73:5C:B4:BE:8F:85:DA:6B:51:25:78:71:45:13
            X509v3 Authority Key Identifier:
                keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:d4:51:fa:02:94:c3:66:40:a2:5c:14:f7:fe:93:e7:c7:81:
         32:1f:f2:4a:a2:4e:07:ac:f2:d3:34:1c:51:1d:36:6b:c0:0d:
         61:72:03:cd:54:0b:68:55:08:79:3c:2d:74:b2:5f:6f:9a:55:
         2b:03:f4:49:11:57:db:a1:31:b9:e3:db:92:1f:c0:5d:bb:f8:
         72:e7:c8:8f:b4:f9:79:be:5c:1b:12:c1:71:d0:64:dd:d0:99:
         ad:b5:66:fc:89:84:8b:ac:d7:e2:ce:c8:81:84:f2:60:9f:9d:
         e5:e6:95:20:ef:e1:41:ab:8d:34:ac:b4:37:55:86:e3:fd:49:
         76:3e:9d:d8:58:39:b4:68:57:55:3e:98:e0:af:48:b5:d1:8b:
         a8:91:f5:df:c5:ad:10:6f:34:f1:0e:ec:05:be:d2:2f:58:e8:
         5b:95:ae:de:8e:66:e2:19:ad:d6:f6:d4:d6:66:58:21:37:a5:
         3d:45:f6:0f:09:2b:4e:dc:5d:f6:f2:99:35:4c:11:6e:14:4b:
         d9:85:bc:d0:60:1b:76:5c:54:76:15:33:2f:69:42:53:c9:b6:
         4c:2c:cb:b3:06:a6:70:30:53:52:f7:0f:0a:00:32:5f:30:f9:
         a4:0d:6b:d7:89:c0:ec:9e:a0:3b:c8:2b:e5:07:93:c5:e2:2e:
         61:30:42:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 06:09:22 2025 by rpki-client