Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File:                     dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier:          uPhWtqwXpcgyZ3NQnpwVSWDavGi5C9h+Wbv3316KJ6A=
Subject key identifier:   7A:F6:F2:54:BB:85:A2:49:ED:1B:BF:E3:C3:F2:D6:A9:18:CD:FC:56
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer:       /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial:       019759B67783F74F5E1B9D74832092B26B7E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number:          121F
Signing time:             Tue 10 Jun 2025 12:00:19 +0000
Manifest this update:     Tue 10 Jun 2025 12:00:19 +0000
Manifest next update:     Wed 11 Jun 2025 12:00:19 +0000
Files and hashes:         1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: r4MLmSRG6+yU4Pp+9r8IWLhAd5mZ3GiSryYStPy7jpU=)
                          2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 12:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:b6:77:83:f7:4f:5e:1b:9d:74:83:20:92:b2:6b:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
        Validity
            Not Before: Jun 10 12:00:19 2025 GMT
            Not After : Jun 11 12:00:19 2025 GMT
        Subject: CN=7af6f254bb85a249ed1bbfe3c3f2d6a918cdfc56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:55:8f:21:a0:f2:1b:0b:b8:09:01:a2:5d:35:
                    15:0c:37:dd:d2:62:ed:e8:f6:6f:45:ae:39:20:ea:
                    10:3b:3b:e5:a7:ce:61:0d:05:dd:ac:4a:7a:c0:21:
                    1c:24:e4:89:a2:51:fe:e7:bd:e5:22:fd:ab:81:e7:
                    c5:7c:65:08:dc:2c:19:0a:12:2e:79:4a:4c:d2:66:
                    a3:39:86:2c:da:1e:86:d5:91:d6:07:64:11:44:18:
                    89:06:65:49:a5:e7:9b:79:ad:3b:f3:e1:61:6e:e1:
                    16:a8:98:3c:b4:f7:68:3f:a1:49:05:d2:5b:1e:dd:
                    3c:7d:ee:f7:db:e5:87:8a:b7:32:d9:db:11:d5:93:
                    91:49:e8:3c:b5:39:57:0f:13:89:68:0f:43:b5:ba:
                    5f:f8:14:6c:f2:04:41:82:ed:4d:a3:39:3e:fb:b8:
                    33:18:f7:2d:5d:12:35:ed:2a:7e:3b:ed:c8:98:de:
                    05:82:0f:c2:36:e4:97:6e:52:b5:77:0e:28:c7:e7:
                    ae:b5:5f:e6:18:53:47:33:6f:61:e7:eb:17:7a:d7:
                    7f:40:c3:77:c3:69:23:53:54:29:b5:66:3b:eb:88:
                    ef:7d:18:ff:96:d6:15:82:3f:d0:ab:93:c7:15:03:
                    8b:54:f3:c2:94:23:a8:c8:84:6b:09:3c:3a:ba:bd:
                    8e:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:F6:F2:54:BB:85:A2:49:ED:1B:BF:E3:C3:F2:D6:A9:18:CD:FC:56
            X509v3 Authority Key Identifier:
                keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:bd:f4:00:b5:37:2c:64:45:d0:db:81:49:f4:ce:54:9c:6f:
         91:8d:2b:54:96:1b:4c:5e:d0:af:ae:f8:e8:b2:4b:de:16:64:
         75:99:50:29:bd:21:8b:23:ac:9e:09:d0:d7:fd:54:11:f5:6d:
         ee:e7:0f:14:91:b0:fd:f6:4c:3d:64:78:e4:b9:cb:77:dc:2a:
         36:e0:da:63:9f:db:4a:cd:4c:4c:3f:b1:94:b0:45:16:1b:de:
         1d:bd:0e:54:fb:0e:2d:a4:69:da:f4:95:b4:9e:10:82:c3:23:
         5c:b3:a3:e6:4b:7a:12:63:e1:5d:be:cf:41:18:08:1a:b3:f4:
         4b:e3:1c:8f:ac:ff:d7:80:67:4b:2a:86:23:6b:06:ab:51:6e:
         2d:3f:ea:99:d8:02:69:9f:cc:e9:f8:f9:e6:bb:3b:b0:5f:cd:
         ff:7f:c7:68:8e:19:92:99:ad:a4:97:5d:90:2d:94:9a:44:9c:
         71:9a:5e:b5:ad:82:c0:87:7c:a3:dc:47:64:08:0b:33:d1:9c:
         3a:bf:37:57:e1:b7:02:39:f1:cb:1b:74:60:e3:fa:f7:7d:ef:
         1c:28:70:6b:0c:9b:f8:28:3d:61:05:44:3f:3f:44:b4:8b:2c:
         d7:8c:c4:93:56:52:41:a1:32:b1:43:8a:b7:6e:f6:bb:52:52:
         32:96:8b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:15:30 2025 by rpki-client