Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
File:                     ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json)
Hash identifier:          BZVEZ4lgQ1L4enyDAm9KIIpWug8ny397K/Alnt7RmqM=
Subject key identifier:   65:E1:8D:F1:89:DD:EC:1E:A6:DC:4A:4A:AF:0F:8F:1E:FF:86:02:79
Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
Certificate issuer:       /CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Certificate serial:       019754FEA518FA9A688C9E477811B2A33CD1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 14:01:03 +0000
Manifest this update:     Mon 09 Jun 2025 14:01:03 +0000
Manifest next update:     Tue 10 Jun 2025 14:01:03 +0000
Files and hashes:         1: NJmmW764rdnW_zIUswA3g-8-n2M.roa (hash: uNbv9sZggt1kjUfoR4Ji7KAa4WT9RRySZVjN33ZdWTA=)
                          2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: RoYMXeOmvIlioDPxgP6X5erav1r+j+mADb4yL8hN8P8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 11:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:fe:a5:18:fa:9a:68:8c:9e:47:78:11:b2:a3:3c:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4
        Validity
            Not Before: Jun  9 14:01:03 2025 GMT
            Not After : Jun 10 14:01:03 2025 GMT
        Subject: CN=65e18df189ddec1ea6dc4a4aaf0f8f1eff860279
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:4c:02:b8:b1:48:bd:fa:93:64:a3:e7:f7:0b:
                    5c:1e:21:0b:97:f3:7c:ae:45:8b:c7:8b:22:f3:25:
                    09:3c:a8:9d:38:0c:a3:d4:1a:c0:1b:84:0e:45:a0:
                    d5:45:37:8c:1f:64:81:91:e8:78:73:25:63:7a:12:
                    09:3c:70:9f:83:d7:4d:4f:26:5b:62:a2:a0:4c:e2:
                    77:4f:84:c3:a0:60:ef:4b:cf:8c:be:61:26:9c:1f:
                    c7:4b:1c:a8:64:ce:b0:10:4c:06:bd:8d:9f:04:b8:
                    cb:42:02:d5:6a:43:32:f5:ed:97:a6:b1:ee:72:7a:
                    fc:2b:8e:14:3b:3b:bc:af:72:89:3b:53:da:0c:f3:
                    a8:ff:39:d5:93:53:47:90:b1:08:c4:02:ff:e2:9a:
                    83:b8:f4:c0:23:5b:43:29:11:45:f9:18:60:83:7f:
                    a4:c5:53:b1:fa:aa:06:af:34:9f:3d:dd:5b:68:bc:
                    c8:d5:d5:33:7d:a9:ac:bc:5b:f9:7a:c7:0a:11:37:
                    03:ad:7c:6e:e4:57:dc:e6:76:1e:98:52:49:c2:48:
                    18:a8:56:36:44:b5:7c:37:b9:f2:25:d0:61:b2:79:
                    a3:7c:8f:0a:b1:1d:67:54:20:38:6e:87:a9:a4:0d:
                    69:43:42:7a:a7:08:36:de:c9:5d:a5:57:9f:e9:66:
                    58:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:E1:8D:F1:89:DD:EC:1E:A6:DC:4A:4A:AF:0F:8F:1E:FF:86:02:79
            X509v3 Authority Key Identifier:
                keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:68:55:5f:d7:2f:00:bb:2a:90:af:fc:82:3f:ea:2b:87:ff:
         fa:28:63:56:a2:e4:44:63:86:5f:39:dc:98:f0:76:85:c8:37:
         a1:07:31:b0:00:e3:7f:75:5b:9d:fa:48:77:4c:09:dc:1e:c6:
         7d:49:b4:6f:73:63:5c:57:8f:6a:b2:dc:06:4b:c6:e2:8a:32:
         43:fa:ac:ae:fa:97:af:bf:d0:67:aa:1b:0b:0b:65:98:88:ff:
         7f:39:43:26:66:b3:9b:f8:01:7e:ad:85:ac:4a:78:ee:14:86:
         81:20:b5:33:d6:e4:20:4f:ec:5b:e7:82:bc:d0:b5:b4:69:4d:
         24:a5:b1:a0:28:29:f9:90:db:ae:b4:10:8f:74:f9:88:57:41:
         5a:f9:ae:76:66:4d:89:74:c2:41:5e:55:f3:dd:89:b0:f7:12:
         18:d5:f5:90:3d:a4:6a:13:e9:ee:5b:0c:df:65:e3:fc:5b:42:
         5e:7a:ba:b0:ab:12:49:ef:47:d2:56:21:00:3d:6d:fd:e6:1b:
         e1:46:12:a9:34:e9:42:d8:64:a6:a2:3d:d7:54:c0:a3:a3:b7:
         35:8f:7b:4f:b8:d2:bd:bd:a4:34:75:3a:54:46:9a:35:89:07:
         18:75:19:40:6d:5d:57:60:31:e3:ac:49:34:d9:73:4a:85:24:
         25:87:37:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 20:57:08 2025 by rpki-client