Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File:                     XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier:          DE2Bi7kSsQ+o3QcCBPWZgyZpWwGpsgWIExxRdi246Pc=
Subject key identifier:   B0:A7:27:E0:ED:B7:A3:CE:18:C8:B5:4E:C8:46:E2:7A:AA:40:7C:35
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer:       /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial:       019756ED12524B75B2945331C35191A63770
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number:          1586
Signing time:             Mon 09 Jun 2025 23:01:06 +0000
Manifest this update:     Mon 09 Jun 2025 23:01:06 +0000
Manifest next update:     Tue 10 Jun 2025 23:01:06 +0000
Files and hashes:         1: C-JYvDSVCc5Zd_4Sd7FiFR4ridU.roa (hash: Fud1edK7T1C6PqdOPqDnlVWq4JxXY+eiVXIDYHC1t50=)
                          2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: GJpaa+sDX8PN3uZtR6JZH2zOifvt/2o1wLOQWFM8hLY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 23:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:ed:12:52:4b:75:b2:94:53:31:c3:51:91:a6:37:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
        Validity
            Not Before: Jun  9 23:01:06 2025 GMT
            Not After : Jun 10 23:01:06 2025 GMT
        Subject: CN=b0a727e0edb7a3ce18c8b54ec846e27aaa407c35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b3:f0:c3:33:45:55:06:13:30:9d:a7:ae:14:
                    78:21:f8:95:d8:03:8a:0b:ec:b3:53:c6:f8:36:bd:
                    47:25:d9:30:94:53:9a:cc:62:9a:7e:df:09:b3:2f:
                    5b:08:77:25:06:cd:04:7b:09:fa:52:bd:41:16:eb:
                    b0:96:9a:45:30:5e:d8:97:ae:f5:ba:f0:b6:f8:c6:
                    db:58:f3:40:57:eb:f4:6c:63:5b:72:31:63:63:6e:
                    7c:a1:1a:29:84:46:cf:98:5a:c3:38:af:4c:83:6d:
                    ac:d5:e8:0c:98:2e:8c:db:b4:06:54:27:55:98:7a:
                    f9:a1:9f:5b:5a:99:1b:87:f8:8e:93:66:55:9c:97:
                    68:1b:07:d5:1b:4d:67:0e:8f:1d:90:8e:92:b6:d1:
                    f6:d4:eb:83:3a:6e:2d:c4:22:ab:50:82:11:e5:5d:
                    48:96:47:b2:e7:4b:74:07:23:f1:8f:a9:02:b3:e9:
                    93:9f:ac:de:90:b6:59:11:6f:66:12:ff:0c:cc:28:
                    51:ed:3d:f2:25:bf:15:fb:d6:d3:dd:63:29:15:04:
                    38:00:75:94:cf:10:f5:92:a9:7c:fd:5f:fc:1e:09:
                    43:02:e4:1c:29:7e:bc:34:7f:de:24:c1:cd:eb:8f:
                    19:6b:f9:c5:cc:e9:59:69:c5:e8:2f:99:64:c0:c4:
                    9f:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:A7:27:E0:ED:B7:A3:CE:18:C8:B5:4E:C8:46:E2:7A:AA:40:7C:35
            X509v3 Authority Key Identifier:
                keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:b3:06:f2:3c:61:7c:8d:d8:bd:be:47:cc:c4:39:3a:1d:17:
         10:60:70:67:7c:8d:f8:59:3a:3d:2a:e1:26:9c:64:d6:58:d6:
         3c:13:cd:5d:e6:69:45:25:bf:18:af:44:93:32:cd:f8:a4:73:
         58:59:a5:5f:f0:15:0f:d3:5b:ba:70:50:9c:5c:7c:75:b3:ef:
         b5:f8:07:e3:2e:fb:8c:32:ff:20:61:af:c8:e3:5c:67:da:a2:
         be:b8:1d:ee:90:77:d2:15:69:d2:38:e0:75:b0:b1:8c:00:b3:
         11:17:2b:13:66:00:7b:71:58:c0:fa:2b:dd:cd:8d:83:fb:46:
         60:6f:56:9f:cf:4c:f4:e2:3d:8f:09:be:f1:59:41:1f:f8:c4:
         21:59:29:b2:04:a0:46:e2:a8:21:0b:17:a7:c2:fe:db:00:03:
         e6:77:9f:73:81:ea:9f:17:62:81:b6:0b:18:f7:cc:54:dc:a7:
         d7:3d:6e:be:5a:03:5c:1e:e0:aa:bd:b2:1b:9d:5b:85:7b:a1:
         2b:7c:24:b3:92:9a:08:63:ce:0e:f5:3f:0c:d1:75:15:b2:64:
         aa:5c:8c:0e:f0:73:b8:f9:6e:40:68:14:0d:59:47:35:f8:c3:
         70:ed:37:da:49:41:14:4f:3c:ba:1c:d6:3e:3f:d3:99:bd:69:
         30:ac:f1:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdW7RJSS3WylFMxw1GRpjdwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODFkMWZmNDViMTU0N2MwMGE4NGI0NmVmOTllY2EyZGZi
ZDQ1YmMwHhcNMjUwNjA5MjMwMTA2WhcNMjUwNjEwMjMwMTA2WjAzMTEwLwYDVQQD
EyhiMGE3MjdlMGVkYjdhM2NlMThjOGI1NGVjODQ2ZTI3YWFhNDA3YzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7PwwzNFVQYTMJ2nrhR4IfiV2AOK
C+yzU8b4Nr1HJdkwlFOazGKaft8Jsy9bCHclBs0Eewn6Ur1BFuuwlppFMF7Yl671
uvC2+MbbWPNAV+v0bGNbcjFjY258oRophEbPmFrDOK9Mg22s1egMmC6M27QGVCdV
mHr5oZ9bWpkbh/iOk2ZVnJdoGwfVG01nDo8dkI6SttH21OuDOm4txCKrUIIR5V1I
lkey50t0ByPxj6kCs+mTn6zekLZZEW9mEv8MzChR7T3yJb8V+9bT3WMpFQQ4AHWU
zxD1kql8/V/8HglDAuQcKX68NH/eJMHN648Za/nFzOlZacXoL5lkwMSfUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLCnJ+Dtt6POGMi1TshG4nqqQHw1MB8GA1UdIwQY
MBaAFF2B0f9FsVR8AKhLRu+Z7KLfvUW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9hY2Q3ZTMtOWM3Ni00ZmY2LWI1YWUt
ZWU4MGEyZDI5NTJkLzEvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9hY2Q3ZTMtOWM3Ni00ZmY2LWI1YWUtZWU4MGEyZDI5NTJk
LzEvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT7MG8jxh
fI3Yvb5HzMQ5Oh0XEGBwZ3yN+Fk6PSrhJpxk1ljWPBPNXeZpRSW/GK9EkzLN+KRz
WFmlX/AVD9NbunBQnFx8dbPvtfgH4y77jDL/IGGvyONcZ9qivrgd7pB30hVp0jjg
dbCxjACzERcrE2YAe3FYwPor3c2Ng/tGYG9Wn89M9OI9jwm+8VlBH/jEIVkpsgSg
RuKoIQsXp8L+2wAD5nefc4HqnxdigbYLGPfMVNyn1z1uvloDXB7gqr2yG51bhXuh
K3wks5KaCGPODvU/DNF1FbJkqlyMDvBzuPluQGgUDVlHNfjDcO032klBFE88uhzW
Pj/Tmb1pMKzxmw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 09:27:55 2025 by rpki-client