Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File:                     kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier:          STWsYvXDxRC005EIpNv6bGbI5uxw9OzALJTTFyv6T0w=
Subject key identifier:   91:1D:42:69:95:4B:C9:DB:FD:8C:FB:50:F5:F4:D5:88:F6:05:7B:EF
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer:       /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial:       019754FE124A51F0395FCE9C1A1F6DF7E8DF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 14:00:26 +0000
Manifest this update:     Mon 09 Jun 2025 14:00:26 +0000
Manifest next update:     Tue 10 Jun 2025 14:00:26 +0000
Files and hashes:         1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
                          2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
                          3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
                          4: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: K3xmjA2g6oTKEU2Vys9eQ2eQMzSCb7Qgilco0tIFQO4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 11:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:fe:12:4a:51:f0:39:5f:ce:9c:1a:1f:6d:f7:e8:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
        Validity
            Not Before: Jun  9 14:00:26 2025 GMT
            Not After : Jun 10 14:00:26 2025 GMT
        Subject: CN=911d4269954bc9dbfd8cfb50f5f4d588f6057bef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:0e:87:2b:4c:c5:26:03:96:4b:70:a2:ba:78:
                    9e:17:a9:76:c5:60:0d:5a:0a:63:1b:3d:bf:18:09:
                    fe:80:01:e2:b1:ac:76:0c:0e:4c:3c:b2:82:63:57:
                    c7:cb:88:6a:6d:eb:55:fe:ff:2b:e4:79:f1:f8:14:
                    20:38:01:c7:54:05:e3:79:ee:6d:7d:8e:cb:99:af:
                    8f:60:5d:c8:3a:44:e1:70:a2:17:f9:07:4e:96:54:
                    fc:1f:46:32:9f:4d:4f:c8:cb:13:71:fe:99:3d:da:
                    d9:d1:67:02:ab:1c:88:be:95:73:a5:5d:39:f7:1f:
                    ec:0c:d6:c4:fa:46:c6:f6:ae:cd:51:88:21:04:b4:
                    9f:4f:cc:89:3f:33:28:74:63:d7:1e:48:14:12:30:
                    f2:28:4f:30:d8:7c:a0:c2:65:04:69:df:ac:64:fc:
                    98:70:b8:d3:fc:34:d5:10:c3:36:d8:70:70:e4:d5:
                    93:5f:47:b7:0d:43:0d:3a:1c:4a:24:36:74:88:e3:
                    ff:d0:45:ef:d1:87:cb:00:d0:a6:1b:f6:85:82:60:
                    f0:b0:53:9d:ad:31:42:71:a4:1e:0b:ab:0c:17:ba:
                    78:46:04:b3:c5:5e:74:94:4a:61:18:b6:8b:28:62:
                    a4:a9:48:aa:7b:4f:d6:74:3d:77:a2:29:33:ef:0b:
                    89:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:1D:42:69:95:4B:C9:DB:FD:8C:FB:50:F5:F4:D5:88:F6:05:7B:EF
            X509v3 Authority Key Identifier:
                keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:c3:d0:47:98:d4:bf:59:4a:44:38:30:db:56:49:6a:60:4b:
         d3:97:e8:13:b3:46:69:9b:91:a6:b7:67:5e:92:4a:d7:e6:38:
         1b:94:ff:77:68:08:93:e8:af:1b:62:04:10:7d:2f:9a:a8:ec:
         ea:d8:2b:ec:53:12:4c:0b:85:e5:8f:26:48:97:c7:18:e9:91:
         25:a3:18:f9:12:e5:1b:e0:46:bc:f0:09:3b:f0:1f:de:d9:42:
         ed:bc:9a:71:c7:72:c4:37:b8:d7:71:bf:1c:22:ea:47:8a:3a:
         df:f6:f1:83:ca:da:c2:e0:10:61:28:16:e7:f7:b4:c8:a9:18:
         a8:03:97:5c:ec:6c:c0:93:8e:7a:5c:f2:5f:4b:4e:5e:34:24:
         f8:06:b1:e7:b2:7f:9f:2b:0b:d9:74:4a:00:af:06:32:09:bc:
         d5:b2:df:11:0e:e1:05:ee:09:dc:3c:de:cd:f6:8f:5e:77:0f:
         ad:1d:dc:63:90:0e:2e:79:c7:77:6a:fa:ff:71:40:97:95:bd:
         0f:d4:86:9a:f0:4f:7d:e2:86:19:0c:ca:90:6d:9c:a2:b5:3d:
         f2:05:4a:60:4e:89:e3:06:00:fb:f8:69:6e:c7:c4:d2:a4:fd:
         ef:3d:f1:75:e9:ea:45:cc:41:80:2a:b8:27:d9:e2:ce:43:fd:
         71:9f:18:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:06:33 2025 by rpki-client