Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
File:                     U9qZ-TUY4pqUWwf2ChjvhumznmU.mft (raw, json)
Hash identifier:          DnEwphTdkqLGa9Nfv+ND7b+wDOFJHiCfvnZpG6Og8T8=
Subject key identifier:   B1:EC:89:36:2E:45:7E:62:4D:86:37:62:53:96:3D:66:C3:34:0A:B7
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Certificate issuer:       /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial:       0197605D6A035DD4598222F5C97A82680634
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
Manifest number:          12CC
Signing time:             Wed 11 Jun 2025 19:00:23 +0000
Manifest this update:     Wed 11 Jun 2025 19:00:23 +0000
Manifest next update:     Thu 12 Jun 2025 19:00:23 +0000
Files and hashes:         1: U9qZ-TUY4pqUWwf2ChjvhumznmU.crl (hash: +AkOQ6JqhP6EKEwlBz6kY4JFSG1M80RuV6h5rBUaf9s=)
                          2: p1W2xtpypFZeS4V60u-1DjDqTds.roa (hash: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:5d:6a:03:5d:d4:59:82:22:f5:c9:7a:82:68:06:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
        Validity
            Not Before: Jun 11 19:00:23 2025 GMT
            Not After : Jun 12 19:00:23 2025 GMT
        Subject: CN=b1ec89362e457e624d86376253963d66c3340ab7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:5a:6b:48:95:17:a3:f6:49:6f:92:7c:c8:ee:
                    d0:ae:fe:bf:18:f2:60:f5:d5:5e:50:9b:35:f1:82:
                    81:20:92:1b:33:8c:38:0a:f6:83:e8:95:22:eb:e6:
                    23:c0:f8:ea:cd:6c:ae:9b:72:4d:8e:61:66:bf:4e:
                    3c:5d:3d:49:15:7d:68:02:ee:d6:67:25:d2:1e:a8:
                    06:6e:9a:37:62:53:3a:b8:57:b3:fe:99:2f:39:4b:
                    6b:14:2e:d0:73:9c:c4:bf:d2:0a:11:97:24:fb:53:
                    17:64:64:e3:63:30:bf:ab:73:b7:73:08:a5:7e:94:
                    a9:10:24:34:e1:c8:1f:03:53:ca:a4:b8:9f:b5:ba:
                    8a:65:e2:14:0d:c4:41:b8:c7:78:d3:04:72:1b:e5:
                    a6:22:d8:07:2d:f5:f9:58:f0:20:79:0e:29:81:c8:
                    2f:66:4b:1b:37:dd:66:f0:2a:cf:f7:9d:ba:05:68:
                    ac:a8:25:52:fe:3e:04:be:b8:c0:26:3c:b3:d8:48:
                    41:4f:b3:ab:14:f4:bf:63:9d:62:ed:87:83:d7:7b:
                    27:6f:75:2a:65:41:09:6b:b9:7a:5f:75:2b:99:84:
                    99:56:9f:a0:d8:14:95:f2:37:d2:2f:85:ee:ca:ce:
                    53:d8:21:9f:e9:70:87:c0:59:55:09:d1:2c:99:af:
                    0e:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:EC:89:36:2E:45:7E:62:4D:86:37:62:53:96:3D:66:C3:34:0A:B7
            X509v3 Authority Key Identifier:
                keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:be:c9:3e:a6:39:e4:d1:29:90:97:f3:d7:7b:69:0f:db:bf:
         db:68:ca:fd:3b:e2:c2:51:12:71:fe:e4:4e:c1:8d:2b:36:df:
         b5:bd:f2:78:05:d2:d7:97:c0:d3:70:60:a4:1f:51:c3:f2:3d:
         90:a4:a7:97:74:30:7e:76:6b:15:d5:48:06:43:64:44:0d:19:
         b9:2a:41:8b:ba:1a:31:2c:70:2d:0c:d2:be:59:4e:28:01:8d:
         b5:82:ce:f4:96:96:23:c7:d3:c0:64:25:1a:76:76:c3:da:a9:
         fc:29:d8:77:a9:c3:a5:12:e4:c1:fb:7c:db:93:bb:3d:e0:83:
         6f:1a:ad:02:f3:77:85:49:8d:ea:8c:5a:4d:7e:14:97:3b:62:
         b6:f1:21:6e:6b:44:78:18:89:2d:ba:ab:1f:07:e7:bf:d4:d0:
         f1:9e:0d:53:48:07:a1:c8:1e:a9:d3:d5:f0:7a:13:2f:71:dc:
         f1:47:5f:56:1c:dd:c9:92:aa:f8:8d:04:57:4e:61:b7:a1:91:
         58:62:b1:02:cf:75:24:80:98:f3:6b:20:9d:65:64:fe:19:22:
         12:d1:95:34:0b:41:bc:49:c4:0d:37:90:aa:50:85:da:61:14:
         84:49:c6:76:da:7d:df:4c:86:ca:f9:94:41:68:73:4f:2b:5a:
         42:f2:96:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 22:29:46 2025 by rpki-client