Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File:                     Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier:          C++vExVknbmMbkrCoEx1AgMI5FV4zQqwbtgl4hwJl9c=
Subject key identifier:   F7:14:62:A8:7A:6A:96:95:FB:7C:AC:D2:21:E0:C5:D5:C6:53:A2:09
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer:       /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial:       01975EA633F76EBE6C7F0CF1C43D2CFC48A5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number:          13D6
Signing time:             Wed 11 Jun 2025 11:00:39 +0000
Manifest this update:     Wed 11 Jun 2025 11:00:39 +0000
Manifest next update:     Thu 12 Jun 2025 11:00:39 +0000
Files and hashes:         1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
                          2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
                          3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
                          4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
                          5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: 9ZUMpNzAQrPCU3CoD8y4hVayjZooJpz0CEYBP7OcqNY=)
                          6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
                          7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 11:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5e:a6:33:f7:6e:be:6c:7f:0c:f1:c4:3d:2c:fc:48:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
        Validity
            Not Before: Jun 11 11:00:39 2025 GMT
            Not After : Jun 12 11:00:39 2025 GMT
        Subject: CN=f71462a87a6a9695fb7cacd221e0c5d5c653a209
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:ef:0a:65:92:46:8d:36:37:66:5b:6c:87:8d:
                    9a:45:a1:82:24:ca:ec:ab:ba:79:c4:6b:9c:df:95:
                    53:86:13:07:d7:82:03:69:51:9a:e8:3a:1d:5d:92:
                    a8:c4:30:2f:45:23:96:c8:32:64:e4:db:07:90:a8:
                    40:c3:56:cd:22:b9:93:bb:a8:3e:14:09:89:62:c3:
                    d7:8d:44:d3:a2:2d:5c:a2:86:17:aa:ab:f5:9d:57:
                    0c:c8:8e:e9:ac:62:32:4c:52:0f:74:d8:fb:6c:a8:
                    dd:96:de:75:2d:6c:db:b7:06:ae:85:1b:e1:df:82:
                    66:88:76:95:21:80:5e:9e:ec:66:64:c2:86:66:0f:
                    51:e5:6b:65:fa:3c:cd:f0:56:74:eb:85:ce:fe:4c:
                    73:d9:cb:a6:fa:73:7d:31:3f:64:87:a8:b2:38:51:
                    6a:18:3b:e4:98:4b:50:03:51:54:04:e5:77:d7:b8:
                    84:5b:43:e0:da:01:3e:69:10:1f:d6:b8:ce:9b:90:
                    d2:ab:85:1d:fa:b3:a8:2a:0b:2c:c9:49:66:cf:5d:
                    32:ed:85:c0:e9:84:6b:eb:60:f4:27:15:22:d9:16:
                    90:e1:62:4b:8e:d2:52:15:22:35:c8:34:8d:25:18:
                    dd:33:cc:b2:13:fc:02:a0:0e:40:11:18:6a:8f:5a:
                    b0:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:14:62:A8:7A:6A:96:95:FB:7C:AC:D2:21:E0:C5:D5:C6:53:A2:09
            X509v3 Authority Key Identifier:
                keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:0f:27:90:53:af:1a:b9:68:d9:9d:dc:73:c3:34:82:cb:a3:
         e5:d7:03:2d:05:a9:5d:ef:98:f2:8e:f9:63:f1:06:73:2e:24:
         ac:22:1f:f2:d1:84:39:b9:2e:aa:39:8c:83:19:1e:0b:90:63:
         39:7a:b7:89:5b:1e:a6:8a:59:41:af:78:4d:dc:ad:42:ae:97:
         f5:1e:43:c8:89:1b:b1:4c:b7:3a:e8:22:52:a6:c4:f3:9b:8f:
         21:c9:ee:5d:54:e2:57:ee:0e:4b:a7:b8:d6:b9:36:d7:df:34:
         a5:a0:e5:b3:3f:04:8b:99:86:95:d0:ad:4b:7f:9e:47:75:75:
         b9:52:6c:29:6b:76:8f:7c:d5:09:0a:46:fd:e0:3a:74:bf:43:
         33:c0:22:0b:3f:ab:8a:f9:95:32:80:26:47:65:d6:74:4a:aa:
         ed:63:d0:78:3c:ee:b9:68:a0:56:fd:bc:76:ac:a5:12:e5:3a:
         42:67:0f:76:45:73:7c:3d:1b:e3:f0:b1:b6:aa:5d:cd:1a:8c:
         35:9a:0f:42:14:a2:fd:0f:e6:44:5c:38:f3:83:f8:67:4b:e6:
         3b:2c:5a:ef:cc:46:7e:e6:59:be:df:21:79:88:39:5d:90:75:
         43:bc:fa:f3:4f:38:93:41:63:6c:32:3e:60:d3:ac:21:7e:52:
         41:06:07:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 21:26:48 2025 by rpki-client