Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
File:                     knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft (raw, json)
Hash identifier:          GjehT/fwO+rjzNixW/5uLS7BEfFAvrE+XQquG8STv9s=
Subject key identifier:   92:C3:34:AB:08:C6:F8:76:BA:D7:9B:7B:41:0D:4E:1C:F6:1A:E7:EF
Authority key identifier: 92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
Certificate issuer:       /CN=927b1e56ac7d07802c4567c4679435159b422096
Certificate serial:       01976C61EC357F8E8DCC5D7E78CA4FB47302
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
Manifest number:          1590
Signing time:             Sat 14 Jun 2025 03:00:46 +0000
Manifest this update:     Sat 14 Jun 2025 03:00:46 +0000
Manifest next update:     Sun 15 Jun 2025 03:00:46 +0000
Files and hashes:         1: ZZutCOlh3Ali7o57VArVQ-r6xEQ.roa (hash: Z8oFv1O8k+i1SuyJDIP9mmTPP/Uv75FEkkBOgolEt4M=)
                          2: knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl (hash: 0sBuCS946zmfY0aQ2R87eUqFqsz+TIIYdPAEhAAVTG4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:61:ec:35:7f:8e:8d:cc:5d:7e:78:ca:4f:b4:73:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=927b1e56ac7d07802c4567c4679435159b422096
        Validity
            Not Before: Jun 14 03:00:46 2025 GMT
            Not After : Jun 15 03:00:46 2025 GMT
        Subject: CN=92c334ab08c6f876bad79b7b410d4e1cf61ae7ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:87:7c:bf:d7:12:8c:7c:c4:80:f6:6e:f8:6a:
                    30:4c:2a:a6:db:dd:56:21:d8:50:74:31:d8:0b:7f:
                    28:9d:a9:64:9a:44:4c:f7:41:fa:2d:ca:26:21:34:
                    c1:92:ff:bf:01:41:a9:f8:2b:3f:a6:85:74:6a:07:
                    4e:d1:07:3a:06:6d:20:60:d9:18:bb:ea:01:3d:f7:
                    54:66:10:21:5a:3a:2a:4b:2f:50:86:88:84:f7:4e:
                    18:85:1c:05:38:3a:c3:88:37:02:98:34:55:2d:b3:
                    c8:96:04:43:43:7b:7d:8c:ba:d3:82:78:13:2d:33:
                    f1:1c:99:c4:eb:45:66:f1:c6:b0:11:27:34:7d:36:
                    48:8f:5f:66:ab:b1:43:88:8c:9b:39:e7:2f:af:c3:
                    a8:cd:ef:91:0d:46:2d:5b:ef:60:30:00:38:a5:2b:
                    37:9b:77:cf:79:67:b4:81:ab:54:19:fc:15:71:2a:
                    6d:07:0a:2a:2a:f9:bb:65:d6:33:d2:ef:61:f5:4c:
                    ef:ba:4e:1c:3e:ed:b2:ec:f0:d7:ba:5d:46:7e:2f:
                    61:2e:19:50:bd:ef:e4:bd:5c:8f:f5:2f:ab:15:1d:
                    36:12:24:d8:4e:46:cb:23:10:5d:9c:c3:d6:35:bf:
                    98:14:f7:3d:c7:21:9c:39:50:b7:f2:55:6b:b7:c2:
                    a0:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:C3:34:AB:08:C6:F8:76:BA:D7:9B:7B:41:0D:4E:1C:F6:1A:E7:EF
            X509v3 Authority Key Identifier:
                keyid:92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:92:3e:ea:6b:5d:11:d3:2b:2d:80:26:bb:7f:69:35:9c:32:
         78:a3:6f:8a:8a:a4:eb:6d:99:04:c2:a4:21:28:bd:67:ec:0f:
         8b:8d:e7:c9:66:17:f5:7d:0e:c2:51:54:d9:d7:11:4c:80:6e:
         e2:b5:59:16:0f:af:df:1f:cc:a6:ce:7f:5e:c3:c2:ff:f6:f6:
         cd:88:1f:ac:b0:4f:53:64:99:ce:46:8a:b5:49:ce:39:8f:14:
         a3:df:22:31:b5:72:c0:eb:87:b4:46:6d:ba:0c:3b:fe:46:fa:
         15:1f:4d:80:c6:d8:5c:2d:6c:31:70:1b:36:ea:09:09:87:09:
         6c:89:91:a7:c0:de:c5:f2:d1:d1:89:0d:57:10:d6:fe:4d:51:
         65:82:e0:9a:b3:32:be:99:dd:8d:d3:57:23:eb:c3:9e:77:31:
         7e:56:77:99:79:d4:7a:e9:5a:12:57:8a:97:d1:1b:8c:3f:e3:
         9f:be:86:69:c2:0d:27:97:34:19:2c:92:60:61:11:f1:b6:3a:
         45:7f:02:60:95:17:66:49:c9:94:31:ab:cd:03:68:a0:09:ce:
         2c:b5:5e:d6:eb:39:37:fc:c1:8e:01:2c:89:84:f2:3f:da:cc:
         d4:82:00:42:01:b5:51:0d:4b:af:96:65:40:c8:c5:5f:88:5d:
         01:bc:51:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 07:03:41 2025 by rpki-client