Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File:                     XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier:          7NOBJfCHy+YAVST1tVqWmE1Qll2gcxV8JYG7asnaEHY=
Subject key identifier:   0F:D9:D1:B9:D8:ED:8D:90:15:B7:B6:34:A2:EF:CE:7F:3F:2E:8B:81
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer:       /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial:       0197530FDB2DB55C00504A970CD4E482227B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number:          1584
Signing time:             Mon 09 Jun 2025 05:00:37 +0000
Manifest this update:     Mon 09 Jun 2025 05:00:37 +0000
Manifest next update:     Tue 10 Jun 2025 05:00:37 +0000
Files and hashes:         1: C-JYvDSVCc5Zd_4Sd7FiFR4ridU.roa (hash: Fud1edK7T1C6PqdOPqDnlVWq4JxXY+eiVXIDYHC1t50=)
                          2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: 8YnY4moAxoGe+ZmPwKyikqPUf46z0ODbV4B6v5dUYpY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 21:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:0f:db:2d:b5:5c:00:50:4a:97:0c:d4:e4:82:22:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
        Validity
            Not Before: Jun  9 05:00:37 2025 GMT
            Not After : Jun 10 05:00:37 2025 GMT
        Subject: CN=0fd9d1b9d8ed8d9015b7b634a2efce7f3f2e8b81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:84:10:60:44:65:51:1d:d3:72:e3:ca:95:84:
                    a1:51:19:c2:3a:fc:39:bb:26:c9:e2:7b:7b:a1:2a:
                    0d:78:86:f1:a3:b1:85:1b:da:97:7f:65:e8:a0:17:
                    dd:6a:bf:cf:c9:f1:55:09:83:c0:7a:50:ca:fa:c2:
                    0d:ac:d0:d2:ca:f7:38:29:42:5e:1f:26:f5:15:af:
                    28:6a:1f:8d:ff:a3:47:08:bf:57:3b:53:eb:ab:ce:
                    58:b2:6c:d2:b4:63:f2:22:92:9d:9a:3c:56:64:91:
                    36:9a:10:0d:df:ee:d3:d9:2d:4d:c0:d2:67:1d:1b:
                    03:11:ac:f6:f6:2b:85:e1:bd:0c:65:64:00:ab:d6:
                    d8:d8:a8:96:85:90:7b:a6:b5:9e:67:ef:30:03:49:
                    2c:62:5d:2f:95:de:b9:70:94:4e:27:58:ee:a1:d2:
                    01:8f:c4:d7:8c:34:3e:4c:de:9d:f5:5a:48:f1:73:
                    6b:93:8d:a8:bf:d7:19:28:f3:11:df:fc:4f:8c:de:
                    28:c8:9b:45:d1:62:fe:40:d3:99:74:d1:04:ee:87:
                    c9:0b:a7:33:4f:0c:13:f7:67:9e:74:16:91:95:47:
                    1a:3e:bd:c0:ea:cc:95:d9:b5:93:ae:3c:3b:e2:cc:
                    c8:24:89:ea:65:78:d5:a7:ba:b9:a4:97:a3:28:35:
                    4c:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:D9:D1:B9:D8:ED:8D:90:15:B7:B6:34:A2:EF:CE:7F:3F:2E:8B:81
            X509v3 Authority Key Identifier:
                keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:75:99:99:68:f1:a5:e0:71:8e:f3:5e:2e:56:dc:08:bf:4a:
         93:57:20:19:67:a3:ee:ca:d9:29:00:0a:e8:a7:70:07:4a:b4:
         27:13:e5:7e:f1:ef:46:1d:60:30:e8:62:31:13:0f:de:db:5c:
         77:50:c2:84:ca:75:51:3f:53:b0:18:b5:b8:0a:b2:67:b3:1b:
         99:ed:fa:b1:4a:64:38:2a:f0:0c:a4:b6:02:9c:29:27:4d:2a:
         27:8d:3e:2a:71:de:17:7a:27:16:fc:e9:2c:1c:2d:7a:d0:4b:
         0f:b5:cc:cd:bf:72:b5:d5:4f:a4:f7:47:d1:9f:43:c2:ec:c9:
         c3:87:ed:6f:e6:51:7f:44:ff:58:c1:c2:e9:dd:d9:f7:61:b0:
         a3:42:47:6c:cc:cf:2c:b0:c1:ab:5e:04:81:e0:be:1d:94:f6:
         0b:7a:44:e2:75:ce:c1:0d:ec:6b:87:07:f2:67:91:4a:c1:55:
         a1:2b:f9:03:34:66:86:0f:f9:fc:64:a3:88:da:94:0d:be:db:
         ef:ad:f8:4f:4e:a2:f3:dd:51:66:ac:0b:19:27:79:29:2a:b7:
         5b:f8:48:41:71:97:e2:8b:56:b7:4d:fa:19:ea:24:c9:76:ba:
         20:57:92:d9:32:1a:c6:8b:df:07:22:7b:a0:69:6e:1f:cd:b9:
         3a:43:06:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:12:17 2025 by rpki-client