Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File:                     KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier:          QRleQQHBwHjA3h4dpKszd8aGEKkfXf4xRo3AaUziFyU=
Subject key identifier:   EC:96:E0:84:C2:CC:DE:40:42:C9:81:D9:C6:FB:CF:2E:F2:ED:AA:4A
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer:       /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial:       01976FD158AA95C02345F22C15DD1BC7899D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number:          08AD
Signing time:             Sat 14 Jun 2025 19:01:19 +0000
Manifest this update:     Sat 14 Jun 2025 19:01:19 +0000
Manifest next update:     Sun 15 Jun 2025 19:01:19 +0000
Files and hashes:         1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: DmuynOTxKtr8LHPuNNCwjfLAj3WymUGQuIp9k02hauE=)
                          2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:d1:58:aa:95:c0:23:45:f2:2c:15:dd:1b:c7:89:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
        Validity
            Not Before: Jun 14 19:01:19 2025 GMT
            Not After : Jun 15 19:01:19 2025 GMT
        Subject: CN=ec96e084c2ccde4042c981d9c6fbcf2ef2edaa4a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:e2:25:78:36:0e:0d:40:4a:25:a7:81:a5:a9:
                    e8:81:c2:a4:1e:d2:50:b1:5f:79:8e:41:3f:6b:1b:
                    7b:39:2e:16:35:00:d4:30:f3:c3:5d:8d:03:f8:a7:
                    b6:98:26:91:64:0f:a7:81:97:ae:11:7a:06:0f:53:
                    ac:00:04:21:a3:26:d9:d4:8a:12:8b:da:7f:0c:68:
                    2a:6f:5b:f6:d9:9e:f9:3e:d3:f7:69:7a:cf:6e:1b:
                    21:51:10:7e:51:24:81:e9:7e:21:fa:f3:1a:48:77:
                    e8:7f:6c:be:45:26:d0:fa:a6:bb:0e:cb:9b:5f:19:
                    38:3d:71:8f:66:ac:2e:38:64:01:19:f6:2b:c8:c6:
                    99:d7:06:3b:1e:88:9f:52:f9:f4:f6:bf:d1:c4:f7:
                    1f:c4:a1:0c:94:e1:a8:75:ec:8b:47:81:11:4b:72:
                    3b:17:4c:02:de:8a:b5:20:f1:22:c7:01:81:6e:d4:
                    2c:a5:c7:81:7d:1d:7d:4c:46:b5:22:40:4a:d0:c9:
                    0b:0a:1e:d5:94:58:57:8f:21:47:f0:54:90:6c:70:
                    42:57:28:7f:df:8e:15:1d:97:c3:62:2e:95:bb:46:
                    15:d3:e9:4d:00:06:6e:7d:dd:82:4c:fc:83:83:d9:
                    e4:f8:e4:4a:95:84:8e:c0:4f:9f:a0:c3:15:91:44:
                    81:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:96:E0:84:C2:CC:DE:40:42:C9:81:D9:C6:FB:CF:2E:F2:ED:AA:4A
            X509v3 Authority Key Identifier:
                keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:54:2d:fe:cf:4c:2c:4e:e7:2f:bb:5e:5d:d6:b2:2b:0d:d9:
         74:cf:3f:ad:aa:c9:96:d8:63:b9:42:c1:2f:7b:83:8a:93:dc:
         2c:bb:0d:91:ce:1e:ae:07:75:35:f0:16:e4:86:ac:e9:e3:31:
         5d:13:2f:b2:07:ab:9b:88:f3:7b:ca:09:3a:6f:b5:c3:cb:e5:
         13:be:2c:bf:31:5b:e3:53:5a:f0:70:d4:7e:36:28:97:a6:c0:
         0a:91:e4:c5:66:a0:0b:fa:bf:79:5c:bb:10:5d:d2:a8:c5:a9:
         95:6d:86:d1:1c:ac:0b:0a:28:10:c4:d1:b4:41:90:d8:7a:2d:
         76:0c:8e:23:8e:b8:36:9b:82:0e:44:74:c0:70:b5:f0:24:9f:
         97:52:df:46:d7:9a:40:0c:8a:f1:b3:3d:d8:97:3e:63:d2:5d:
         b5:74:6a:5e:24:46:67:22:8a:48:98:63:d5:c4:e2:ee:c0:53:
         1d:68:dc:37:05:b1:d4:0e:95:be:b0:7a:c6:84:04:25:17:d7:
         5a:da:db:75:9c:cc:9f:9d:d3:33:74:9c:6b:67:bf:ae:18:70:
         21:f7:be:f1:0e:cd:b7:e5:ff:23:2c:ed:b3:56:f8:df:1b:77:
         ea:a0:12:ac:1a:35:80:55:08:80:14:ab:41:2e:51:4a:88:b0:
         d2:8e:ec:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:52:21 2025 by rpki-client