Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File:                     2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier:          6EHvKkylXKZr/OHBo6FNSOKggHzDjqlXstCEpr9uJHI=
Subject key identifier:   3A:49:64:BE:B7:60:ED:7C:9C:47:23:4F:07:87:91:A8:B7:39:76:39
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer:       /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial:       01976A05C85E8847933699E8D71A62F74DD1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number:          1590
Signing time:             Fri 13 Jun 2025 16:00:53 +0000
Manifest this update:     Fri 13 Jun 2025 16:00:53 +0000
Manifest next update:     Sat 14 Jun 2025 16:00:53 +0000
Files and hashes:         1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: PE9HndANhSPiOPo//s1pTEcbTPBXasJ0Mb75f5Cy4UQ=)
                          2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
                          3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:05:c8:5e:88:47:93:36:99:e8:d7:1a:62:f7:4d:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
        Validity
            Not Before: Jun 13 16:00:53 2025 GMT
            Not After : Jun 14 16:00:53 2025 GMT
        Subject: CN=3a4964beb760ed7c9c47234f078791a8b7397639
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:fa:5a:05:63:65:bc:50:91:ed:87:5e:79:a5:
                    51:df:75:31:6a:56:75:fe:0e:20:a3:a5:fc:2d:64:
                    d0:13:aa:80:4d:84:a7:b3:7c:63:20:44:ab:17:e9:
                    da:62:b5:70:45:b1:65:dc:ad:dd:43:63:b4:0c:af:
                    e8:f1:64:e4:d9:67:90:e8:0a:62:76:14:be:eb:7e:
                    13:a3:cf:54:e0:80:32:d4:0c:26:fd:b9:6a:44:3a:
                    a2:fd:98:ef:7b:16:5d:62:23:3f:4a:03:58:de:79:
                    44:e0:09:db:e7:fe:35:97:ed:96:92:d5:e9:ec:5a:
                    c9:79:95:2b:0d:e2:5d:aa:b4:48:6d:51:78:5a:5f:
                    5d:b7:30:31:2f:1b:bf:c8:03:d9:ae:c5:8a:c1:cc:
                    be:39:89:7b:3b:ce:78:af:20:57:5e:38:f4:73:d2:
                    2f:88:aa:cc:51:a8:7e:cc:4b:09:ca:8f:c0:5e:2d:
                    7b:00:60:99:ab:18:95:0e:4e:6a:d1:96:15:9d:44:
                    a2:8d:ba:b3:b0:88:cd:d1:53:82:80:cf:5f:31:85:
                    fe:e0:79:ef:14:9b:ba:56:cf:48:a0:02:fb:a6:72:
                    09:2f:b9:39:a8:2f:aa:cd:09:e4:fa:93:60:03:00:
                    05:8f:5f:f1:a7:fc:b6:d6:7a:9d:85:fa:c8:84:1b:
                    ce:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:49:64:BE:B7:60:ED:7C:9C:47:23:4F:07:87:91:A8:B7:39:76:39
            X509v3 Authority Key Identifier:
                keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:e4:d6:bb:dc:9b:f7:0c:c9:c4:d0:38:ec:09:5d:b0:34:b9:
         aa:b2:2b:f6:60:70:cb:6e:14:4e:1f:e7:2c:41:9e:a3:69:39:
         79:96:d8:34:08:c1:eb:2f:2c:48:af:a9:52:3f:62:26:95:d2:
         81:35:b9:c7:bc:f3:2b:ad:5e:8a:2c:e8:45:e2:59:23:a1:46:
         ae:a7:25:91:bb:1e:b0:b5:90:bd:6c:39:0e:a2:a1:f1:09:37:
         b4:39:0c:66:b5:a6:5c:15:d0:ce:f8:82:5a:95:96:af:70:9d:
         84:17:32:97:2d:31:45:2b:a3:e8:f0:68:1e:60:86:15:3e:46:
         39:1b:16:69:cc:43:70:12:51:9e:50:d2:07:97:d2:bd:e5:45:
         dc:2c:fc:d5:86:69:c4:16:9e:ef:ce:cf:9f:43:af:16:ff:4f:
         6f:93:ff:d9:e6:35:7f:3e:9b:1f:5d:e3:d6:61:7c:29:09:15:
         83:a0:81:50:26:5c:9b:f4:dd:92:75:67:46:f9:62:52:77:a2:
         83:ce:cd:6a:55:da:bc:e7:f9:69:a2:a0:bb:da:7d:ab:2b:47:
         6c:eb:48:d6:1b:f2:4d:40:fc:fd:c8:70:81:a4:2c:10:24:1f:
         09:ef:fe:99:89:59:5b:ab:69:82:e3:e8:d2:be:ce:69:1c:09:
         1f:17:a6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 23:03:07 2025 by rpki-client