Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File:                     xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier:          Nu6RAEpLcWBdmFDWKihTtVxn27i4dhl/bUQWjqSya5o=
Subject key identifier:   90:66:F0:22:B4:A0:FC:C7:34:8F:08:51:AF:AC:92:38:C1:0A:E8:3E
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer:       /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial:       019769CE561AF492DB7843E629EA803DF13E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number:          13E2
Signing time:             Fri 13 Jun 2025 15:00:19 +0000
Manifest this update:     Fri 13 Jun 2025 15:00:19 +0000
Manifest next update:     Sat 14 Jun 2025 15:00:19 +0000
Files and hashes:         1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: vz04PPihPhWZDZhDpTtSC69mKPahyQ9vPAZ8aXPTLeA=)
                          2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:ce:56:1a:f4:92:db:78:43:e6:29:ea:80:3d:f1:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
        Validity
            Not Before: Jun 13 15:00:19 2025 GMT
            Not After : Jun 14 15:00:19 2025 GMT
        Subject: CN=9066f022b4a0fcc7348f0851afac9238c10ae83e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:19:52:2c:ce:b7:65:b0:fb:4e:bc:13:b8:ea:
                    34:95:a0:74:4f:4c:c4:da:36:f9:0e:a6:08:1f:90:
                    6a:dd:56:b3:8e:12:42:0c:27:1d:95:75:01:c0:74:
                    c2:92:21:d9:73:5e:bb:83:6d:58:fa:53:c7:d4:4c:
                    fd:50:5a:2e:3c:9e:3c:44:83:b8:de:8a:fd:a9:0d:
                    54:63:e4:51:13:3a:66:d1:a2:b3:79:14:d0:20:d5:
                    f8:2a:2d:85:3a:5e:27:db:27:6d:48:89:f6:fd:2b:
                    5c:5d:91:36:de:d9:f6:60:4c:0b:2a:7a:a8:f7:78:
                    57:0f:33:ba:7d:f7:8b:db:e8:44:2c:27:04:04:4b:
                    1b:e3:ef:eb:46:32:b2:bb:45:47:b9:8b:18:bf:cc:
                    c4:c6:85:67:88:13:e8:4b:d1:49:2b:63:24:27:c9:
                    df:f8:b7:ff:ba:16:94:02:b0:30:e6:38:ea:a4:7e:
                    44:1f:cf:08:74:f1:ec:a8:34:5a:fe:8a:38:55:42:
                    4e:d8:ef:2b:a0:9f:c9:25:4b:54:9d:ee:a8:fc:5a:
                    f9:28:fe:25:68:71:ce:76:1a:81:47:51:f9:ce:90:
                    a4:0f:c6:25:3e:e4:ea:9d:94:28:81:06:66:fd:44:
                    3e:2a:58:31:e8:8b:79:b6:6f:bc:34:ef:27:68:f2:
                    85:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:66:F0:22:B4:A0:FC:C7:34:8F:08:51:AF:AC:92:38:C1:0A:E8:3E
            X509v3 Authority Key Identifier:
                keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:be:27:d9:7a:ad:84:8a:b5:78:b3:42:1b:a5:51:4a:e7:63:
         65:7b:a9:5f:95:8b:5a:5a:23:e3:4d:e9:0b:81:af:52:2e:8b:
         8b:60:53:aa:99:09:98:24:41:e1:24:b7:48:b9:03:25:0a:6a:
         b8:06:f7:0f:9b:a5:23:be:b6:86:ce:02:69:1e:5a:59:4b:77:
         0e:28:12:4a:67:d2:67:c1:0d:f6:03:48:6d:7f:dd:fd:31:aa:
         e2:f1:71:13:10:56:c4:75:bf:2f:67:43:83:70:9b:e7:eb:ad:
         cf:14:87:bd:d7:8b:51:75:ee:c8:51:66:e9:87:40:6d:d1:8a:
         0e:db:2e:1f:f6:6b:5f:f5:4b:f5:13:94:12:34:09:7a:3d:1a:
         fb:36:3f:0d:86:57:9f:07:4f:19:1a:25:bc:e1:c3:50:09:41:
         9c:48:6e:1b:23:6c:63:7e:6f:89:c8:75:33:79:11:01:5a:86:
         4a:f2:21:71:8a:6e:a4:34:3e:b4:66:fc:d6:77:51:3d:4e:4e:
         21:07:1c:c8:78:32:05:28:1e:cb:f7:f0:6e:c5:39:0d:07:45:
         28:f3:a9:7d:87:05:72:5f:bb:0d:7f:ec:7b:ae:c2:f3:cd:ee:
         da:29:3b:3f:b5:8f:a9:42:21:64:6e:1f:0d:45:b4:2c:09:a8:
         cf:5a:12:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:49:41 2025 by rpki-client