Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
File:                     j32Qq83eC8bwvKryHOw6TyrPrk8.mft (raw, json)
Hash identifier:          9xYc2A0tYY5ibATZrRZhWogxYG62Z8ET/ED5vmsLABo=
Subject key identifier:   9E:32:58:14:50:D7:BA:30:52:58:82:03:59:48:37:4E:57:7C:F2:BD
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Certificate issuer:       /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial:       01976BF478D5C86AA587A432F33918591583
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
Manifest number:          1596
Signing time:             Sat 14 Jun 2025 01:01:13 +0000
Manifest this update:     Sat 14 Jun 2025 01:01:13 +0000
Manifest next update:     Sun 15 Jun 2025 01:01:13 +0000
Files and hashes:         1: Ha4iqiemRVs4K0apcX26aGgxEQM.roa (hash: Y9w0WT6CR9hlG1wNToGxOj1Wt0I5gYiZH++6mqrNiy0=)
                          2: j32Qq83eC8bwvKryHOw6TyrPrk8.crl (hash: nHhP34GAy+Z/HwZd3RqaLooUrbO5nXusTOJgLgYdW1Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:f4:78:d5:c8:6a:a5:87:a4:32:f3:39:18:59:15:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
        Validity
            Not Before: Jun 14 01:01:13 2025 GMT
            Not After : Jun 15 01:01:13 2025 GMT
        Subject: CN=9e32581450d7ba30525882035948374e577cf2bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:3f:58:0b:ed:25:c5:74:4b:5f:a5:0e:a5:71:
                    19:e7:0a:08:67:86:e8:f7:e5:8f:51:83:c0:fd:2c:
                    44:eb:b6:c2:c9:ad:6d:fd:9a:55:8d:42:80:8d:14:
                    c6:0e:78:d7:f4:d4:e9:67:2d:98:c3:08:72:dc:84:
                    c5:f8:01:ad:a3:8c:dc:db:6a:f6:be:77:56:e8:fd:
                    d0:84:e7:90:37:eb:9d:25:95:a8:34:6c:94:c3:ae:
                    8f:aa:1d:a2:55:1d:b2:2b:09:72:b2:4b:be:77:f5:
                    48:34:ea:02:a9:e4:fc:a9:4b:4d:80:cb:3b:b5:cc:
                    a7:59:01:d2:8b:6d:48:19:f9:6a:aa:28:10:27:42:
                    18:f7:70:78:96:88:8b:91:c5:11:4e:b1:53:ac:4e:
                    68:fb:05:46:87:b2:bd:5c:fa:bc:d4:35:9f:60:4d:
                    8b:d7:9b:d5:f1:10:49:65:be:f9:ff:be:8f:6d:12:
                    aa:8a:0a:35:47:f3:bc:34:d4:d8:c1:75:69:25:a4:
                    f8:a5:6d:82:2c:2f:24:85:7b:43:6c:d7:0e:07:ec:
                    14:21:6c:c8:15:b6:7c:cb:06:a7:fc:bf:a2:95:61:
                    84:0f:a6:02:de:ed:d8:db:ae:de:52:3e:60:bf:97:
                    a7:3d:e8:c0:5c:81:49:f5:47:47:47:13:91:9e:5a:
                    89:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:32:58:14:50:D7:BA:30:52:58:82:03:59:48:37:4E:57:7C:F2:BD
            X509v3 Authority Key Identifier:
                keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:66:e0:45:28:6f:bd:73:95:d1:45:d9:da:0c:be:6b:c6:17:
         fd:61:93:ec:a8:3a:0c:83:81:af:b2:f8:e5:ef:98:12:81:ad:
         5b:02:ea:d8:15:75:20:8f:7c:fe:d3:ae:61:5f:a6:2c:bd:b0:
         22:a6:92:f6:f2:77:30:03:17:7e:87:99:95:85:bc:14:06:84:
         21:d2:1e:f5:62:3f:09:7f:06:02:9b:84:5d:83:b0:90:6a:e3:
         bf:55:58:ea:5e:5b:27:2d:67:20:e9:3a:69:87:ee:44:f4:3d:
         60:f4:e8:9c:53:34:01:b1:b4:8d:9f:a6:3e:2a:fa:30:8d:f1:
         23:43:59:16:c8:ba:9f:bc:62:18:a8:a5:1d:27:97:4f:90:33:
         80:c1:46:e0:39:37:2a:db:10:18:7d:78:04:60:8c:09:bb:67:
         29:d5:44:d2:b1:30:c0:80:9a:24:84:23:98:d4:4d:1c:d0:d4:
         e9:d2:5c:3a:ee:92:ef:39:83:f9:53:f8:ad:fc:a6:77:06:35:
         b0:cc:17:34:e9:e2:31:3a:03:57:63:92:a0:ec:12:5a:33:52:
         89:75:f7:6b:21:fd:e7:1a:cd:b8:25:f6:48:da:61:71:26:90:
         85:b4:5d:07:44:54:e4:ee:16:e3:cc:56:3d:81:63:88:68:d0:
         09:56:ec:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 06:29:58 2025 by rpki-client