Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File:                     si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier:          O4cfYElIpamCcnTfeIfGS6fY4uUwzvSVQc97y7q8Ppk=
Subject key identifier:   E2:EF:9A:C9:88:B1:04:11:16:22:D6:F8:16:59:5D:B3:36:2F:67:F9
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer:       /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial:       0197699789FC5C969BB8A27C6D3DE8264770
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number:          035D
Signing time:             Fri 13 Jun 2025 14:00:28 +0000
Manifest this update:     Fri 13 Jun 2025 14:00:28 +0000
Manifest next update:     Sat 14 Jun 2025 14:00:28 +0000
Files and hashes:         1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
                          2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: Z46g7sI5COU10fbJq+dOYYvmIt/Bhy/uwRyErR26JWI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:97:89:fc:5c:96:9b:b8:a2:7c:6d:3d:e8:26:47:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
        Validity
            Not Before: Jun 13 14:00:28 2025 GMT
            Not After : Jun 14 14:00:28 2025 GMT
        Subject: CN=e2ef9ac988b104111622d6f816595db3362f67f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:8c:94:b8:8b:16:17:33:11:5e:35:34:cf:36:
                    af:13:4a:b6:00:19:d6:32:8c:13:11:c9:19:77:b9:
                    94:d8:70:57:eb:45:aa:c3:24:9a:4b:9f:48:98:2f:
                    27:ed:a2:de:91:14:59:42:86:06:ad:6f:82:5e:b5:
                    e4:58:2e:5b:49:1f:a1:d2:03:1f:53:81:88:78:9b:
                    fd:22:c8:a1:76:2b:4a:28:8d:7e:dd:55:68:25:16:
                    c5:9c:f6:68:9f:73:b3:05:9d:28:1a:9e:8a:63:45:
                    73:b4:fe:23:ec:e5:73:40:86:1d:b6:40:cc:cb:31:
                    78:a9:38:2b:5b:55:ad:aa:27:2d:cd:a1:3a:54:ca:
                    96:eb:84:fc:29:6c:e2:3a:e6:71:83:b1:64:69:50:
                    d3:8a:ac:06:a6:a2:75:00:4c:38:69:51:fb:8f:b7:
                    39:ea:fa:61:7a:c9:2a:6b:c5:62:1b:37:95:1f:af:
                    04:9e:85:33:f7:85:c6:0d:f8:b2:5b:a5:5f:dc:48:
                    8f:52:13:f9:af:5e:e3:99:c8:8d:38:4a:ef:0c:4b:
                    52:84:2a:28:8a:c7:e6:b5:f1:e6:dd:0b:26:72:a5:
                    9d:e3:bd:90:34:84:9b:c6:d0:1c:65:ed:1b:5f:d0:
                    22:d3:e7:34:cf:ea:a3:ba:40:9e:ac:97:a1:9a:58:
                    b4:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:EF:9A:C9:88:B1:04:11:16:22:D6:F8:16:59:5D:B3:36:2F:67:F9
            X509v3 Authority Key Identifier:
                keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:95:10:bc:53:d5:b9:a9:32:d5:c4:66:f8:20:90:83:8e:38:
         b5:59:96:83:bb:1d:53:d9:af:4b:9d:55:af:7c:45:13:f5:3f:
         72:55:fd:fb:d1:5e:45:bb:ba:71:f1:ad:fe:06:99:9b:fa:81:
         4a:5d:b5:5b:5c:64:60:d4:79:ab:f4:76:36:22:eb:38:dd:c6:
         35:d5:bf:e1:61:dd:7f:16:e3:19:05:e8:fb:28:94:a8:34:33:
         df:9e:04:6b:e6:e5:18:08:91:63:21:51:1f:36:5f:df:f8:0a:
         41:d4:20:6c:27:c6:ad:54:d2:1d:66:5a:f7:7b:61:24:43:bd:
         ac:05:41:a5:dc:8b:ae:5e:bf:f3:a2:c8:6a:dd:86:61:aa:18:
         12:7b:3d:60:a2:57:c6:fb:8a:eb:7a:78:8b:65:34:8f:33:33:
         88:a4:d6:48:e7:a2:bd:19:cd:6e:2a:5c:bd:2b:23:06:ea:10:
         8c:4f:3c:f3:7d:e5:d2:f4:aa:ec:95:72:36:6f:61:58:e4:27:
         29:b3:8c:38:d5:39:73:a2:58:7b:cb:44:bb:29:76:dd:62:6d:
         17:25:d1:c5:69:1a:43:d0:99:30:75:18:1f:6f:24:dc:f3:f2:
         ab:3c:9b:91:07:7c:0f:44:be:a9:d9:1b:b3:8a:a8:bb:49:80:
         d7:be:19:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:00:41 2025 by rpki-client