Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
File:                     U9qZ-TUY4pqUWwf2ChjvhumznmU.mft (raw, json)
Hash identifier:          7dqgZ1UICfazCUfJ26JwoR284K6QZTjWs/GUC9BgpAU=
Subject key identifier:   D9:DD:0F:F2:FB:BF:A7:F0:4D:00:54:B8:91:98:40:11:0F:7C:B6:29
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Certificate issuer:       /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial:       01976BF405918C6C25ABA3C110380AC79AC4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
Manifest number:          12D2
Signing time:             Sat 14 Jun 2025 01:00:43 +0000
Manifest this update:     Sat 14 Jun 2025 01:00:43 +0000
Manifest next update:     Sun 15 Jun 2025 01:00:43 +0000
Files and hashes:         1: U9qZ-TUY4pqUWwf2ChjvhumznmU.crl (hash: MWQYEkvpesxHt0V+Xu0lArmdK/Vg1tGqJM01J2Fd1fQ=)
                          2: p1W2xtpypFZeS4V60u-1DjDqTds.roa (hash: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:f4:05:91:8c:6c:25:ab:a3:c1:10:38:0a:c7:9a:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
        Validity
            Not Before: Jun 14 01:00:43 2025 GMT
            Not After : Jun 15 01:00:43 2025 GMT
        Subject: CN=d9dd0ff2fbbfa7f04d0054b8919840110f7cb629
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:17:9e:82:11:2d:02:d7:4a:af:84:fc:92:00:
                    b0:e2:b6:d1:73:e6:0e:f3:8f:85:5e:73:8a:53:11:
                    9b:58:ae:89:83:9a:5a:e4:97:af:54:62:61:a6:95:
                    34:3c:94:56:8a:59:27:3a:05:2c:6d:d5:f3:a6:36:
                    46:b0:a2:1d:e8:29:d0:0b:58:3d:79:4e:23:bc:cb:
                    84:9b:52:94:6c:5d:1e:c3:97:ce:aa:bf:0c:02:32:
                    b5:ae:16:61:ca:da:ac:65:f0:c2:eb:2d:71:c8:0f:
                    45:56:ca:18:08:14:8d:b2:91:7a:7b:82:46:47:80:
                    96:9f:09:f1:70:1c:82:cb:20:80:08:69:bf:f7:83:
                    fd:15:bc:03:96:99:0b:15:1e:4b:99:e4:ef:c4:be:
                    32:b3:b4:77:e2:e0:fa:c5:fb:7b:bd:a3:12:b7:02:
                    a8:3e:49:75:d4:bb:4b:99:b9:fc:c1:c8:27:69:6a:
                    a1:33:e5:46:fb:97:26:23:bd:82:9f:aa:92:f7:2d:
                    46:5e:6d:0a:e0:40:83:45:ef:8d:cc:64:eb:c2:f0:
                    16:eb:5a:96:08:86:80:29:02:2e:af:ea:97:9b:3c:
                    64:37:2d:ef:a6:13:79:54:19:a1:be:36:61:00:3a:
                    39:78:93:c0:da:b8:8f:f8:50:40:59:ae:10:40:07:
                    89:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:DD:0F:F2:FB:BF:A7:F0:4D:00:54:B8:91:98:40:11:0F:7C:B6:29
            X509v3 Authority Key Identifier:
                keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:f4:8d:8c:f7:1b:7d:b9:a8:87:f3:81:c5:da:fc:5c:4b:49:
         5d:ec:c7:25:a8:ab:21:09:97:fd:5b:16:21:b0:cb:ae:1f:85:
         f2:9e:5a:e8:12:bc:5a:30:91:4b:5f:1a:35:0c:4a:8f:29:7f:
         04:55:7e:22:86:45:cb:20:9a:01:c5:16:22:a9:83:c2:6b:de:
         6d:77:69:13:f4:0f:e4:ff:31:f5:9d:f7:f3:7f:a7:52:58:6c:
         c1:dc:df:c5:3c:05:c0:b0:3b:d3:ba:d0:05:88:a3:06:a4:9b:
         3c:d5:ef:9e:6d:49:3b:85:5d:5c:ff:bc:a9:c2:cf:0f:fd:39:
         58:15:7c:de:4f:aa:ce:a0:33:da:85:82:c3:fb:e0:61:ff:99:
         d1:e9:a9:b8:22:94:3b:7e:0c:1c:71:47:48:66:7b:cf:cd:d8:
         cb:45:e7:d6:24:3a:9e:4a:17:f2:fe:fb:ca:1e:b3:25:da:75:
         93:05:50:58:b6:e6:fa:83:93:6b:55:68:26:ab:53:11:c2:37:
         90:e1:42:8c:21:e5:0b:2d:49:be:0d:38:15:9e:e2:b4:a6:40:
         d5:c3:73:7d:6d:f2:c6:cd:fb:f9:95:fd:8a:27:45:e9:4c:ef:
         b2:9d:4e:fe:a4:e0:b0:1a:26:22:38:c8:7f:69:ae:f0:56:e4:
         49:95:e0:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9AWRjGwlq6PBEDgKx5rEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZGE5OWY5MzUxOGUyOWE5NDViMDdmNjBhMThlZjg2ZTli
MzllNjUwHhcNMjUwNjE0MDEwMDQzWhcNMjUwNjE1MDEwMDQzWjAzMTEwLwYDVQQD
EyhkOWRkMGZmMmZiYmZhN2YwNGQwMDU0Yjg5MTk4NDAxMTBmN2NiNjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBeeghEtAtdKr4T8kgCw4rbRc+YO
84+FXnOKUxGbWK6Jg5pa5JevVGJhppU0PJRWilknOgUsbdXzpjZGsKId6CnQC1g9
eU4jvMuEm1KUbF0ew5fOqr8MAjK1rhZhytqsZfDC6y1xyA9FVsoYCBSNspF6e4JG
R4CWnwnxcByCyyCACGm/94P9FbwDlpkLFR5LmeTvxL4ys7R34uD6xft7vaMStwKo
Pkl11LtLmbn8wcgnaWqhM+VG+5cmI72Cn6qS9y1GXm0K4ECDRe+NzGTrwvAW61qW
CIaAKQIur+qXmzxkNy3vphN5VBmhvjZhADo5eJPA2riP+FBAWa4QQAeJqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNndD/L7v6fwTQBUuJGYQBEPfLYpMB8GA1UdIwQY
MBaAFFPamfk1GOKalFsH9goY74bps55lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTlxWi1UVVk0cHFVV3dmMkNoanZodW16bm1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81ODM1NDMtZTMzMS00NTkyLThkODkt
OWYzMDJjMjBhZTcwLzEvVTlxWi1UVVk0cHFVV3dmMkNoanZodW16bm1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81ODM1NDMtZTMzMS00NTkyLThkODktOWYzMDJjMjBhZTcw
LzEvVTlxWi1UVVk0cHFVV3dmMkNoanZodW16bm1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbvSNjPcb
fbmoh/OBxdr8XEtJXezHJairIQmX/VsWIbDLrh+F8p5a6BK8WjCRS18aNQxKjyl/
BFV+IoZFyyCaAcUWIqmDwmvebXdpE/QP5P8x9Z3383+nUlhswdzfxTwFwLA707rQ
BYijBqSbPNXvnm1JO4VdXP+8qcLPD/05WBV83k+qzqAz2oWCw/vgYf+Z0empuCKU
O34MHHFHSGZ7z83Yy0Xn1iQ6nkoX8v77yh6zJdp1kwVQWLbm+oOTa1VoJqtTEcI3
kOFCjCHlCy1Jvg04FZ7itKZA1cNzfW3yxs37+ZX9iidF6Uzvsp1O/qTgsBomIjjI
f2mu8FbkSZXgJQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:11:06 2025 by rpki-client