Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
File:                     PqFIQth34nvEBouYH-dK64vufnM.mft (raw, json)
Hash identifier:          ZrkeNn2nyqD2oQan/EdOyVGRp382iEnPdkSDrA+Lppo=
Subject key identifier:   F4:9F:AD:56:05:45:EC:B7:8A:73:41:DE:24:B4:66:C7:EF:12:35:06
Authority key identifier: 3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
Certificate issuer:       /CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Certificate serial:       019753EB523F8CE321C19D470EE09229B8EB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 09:00:20 +0000
Manifest this update:     Mon 09 Jun 2025 09:00:20 +0000
Manifest next update:     Tue 10 Jun 2025 09:00:20 +0000
Files and hashes:         1: PqFIQth34nvEBouYH-dK64vufnM.crl (hash: ZiwHnxOoh3VwDJe4QBQJGUxLTsAFVh3fhok4cXDBo60=)
                          2: h5AoEy-X54Db83-jTlFH2Y1fCVw.roa (hash: HOh3C7TWeQ0O5hO+1P91yiEiZozSeSnp7F1/q290vZs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:eb:52:3f:8c:e3:21:c1:9d:47:0e:e0:92:29:b8:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
        Validity
            Not Before: Jun  9 09:00:20 2025 GMT
            Not After : Jun 10 09:00:20 2025 GMT
        Subject: CN=f49fad560545ecb78a7341de24b466c7ef123506
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:43:1a:00:27:b7:57:d1:fd:94:2b:63:5e:55:
                    48:12:a9:ec:33:a6:f8:bb:9a:49:0a:39:07:66:de:
                    a1:f8:48:75:db:08:ba:48:d3:f2:6a:18:d6:91:8f:
                    a9:e7:76:f6:fd:59:3e:f8:7b:ab:ea:93:0a:29:31:
                    2b:d6:82:40:30:ae:9e:e6:a5:d4:b4:50:6a:5c:88:
                    ea:c7:8b:6e:24:c0:d3:70:01:5a:cd:69:86:89:c8:
                    ec:a7:2b:8f:aa:55:2a:0d:9a:13:26:7a:76:70:74:
                    02:ba:8d:d7:68:02:9f:a5:0c:5f:c2:3d:41:4e:c8:
                    97:97:29:47:f3:f5:fa:66:70:ee:7b:e9:68:09:b0:
                    2b:04:11:2b:6d:24:8e:a0:3c:75:4d:38:14:23:90:
                    32:56:1e:ef:0e:9e:a6:c5:f8:9e:bf:2d:55:b1:26:
                    23:10:a6:cc:52:7c:e1:9f:d1:92:ca:95:c0:4a:73:
                    f4:28:64:58:a1:0c:73:7d:b5:d5:b1:1a:ff:76:7e:
                    db:02:65:b7:d0:ff:71:03:60:a3:d2:bb:d8:40:8d:
                    2f:85:2c:bb:7e:1a:1b:97:ab:a7:a5:fd:d7:4b:6e:
                    27:23:2e:b4:d7:21:1f:6e:a6:74:95:2b:ea:4d:8d:
                    70:cf:64:d7:d0:e6:2d:fa:c5:f2:ce:7c:a6:49:14:
                    e0:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:9F:AD:56:05:45:EC:B7:8A:73:41:DE:24:B4:66:C7:EF:12:35:06
            X509v3 Authority Key Identifier:
                keyid:3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:08:9b:0e:e2:d0:91:fa:ac:ac:6f:af:76:a0:89:40:6f:60:
         9c:4d:d7:8c:40:be:e8:15:98:08:a4:be:96:cd:09:35:05:45:
         c7:b2:f9:67:be:1e:5e:2e:c0:54:57:05:ba:8a:97:5b:73:fd:
         83:7c:c1:ba:d1:07:1a:cb:8f:7d:7f:7e:0d:f8:23:22:3d:24:
         e1:b3:10:db:c9:42:f4:34:a4:91:0f:3d:60:fe:cd:7b:8f:b2:
         cd:0c:1b:3b:10:02:ae:1f:31:ac:cb:aa:be:a6:f4:e4:42:73:
         2c:76:a2:61:c4:53:c4:9a:07:7e:5d:da:05:8e:c0:81:1e:9b:
         cf:04:7d:f6:08:c8:63:72:33:92:a4:50:77:8c:7f:83:b5:0e:
         8c:35:8c:f5:de:af:e3:89:2c:b1:09:e5:11:09:0c:29:4a:87:
         ef:03:c8:50:fa:80:e3:5c:4b:83:12:c1:8e:15:94:7a:da:c4:
         57:23:41:07:3a:2f:c4:7f:63:90:73:5a:9a:db:cc:24:ab:19:
         5a:f9:ff:0a:a5:34:94:c8:f2:d5:b2:af:b2:97:bc:00:b5:0e:
         3d:ea:fb:e6:04:1e:f7:a7:0a:16:91:01:29:0f:49:9c:60:29:
         4d:21:e0:03:05:ea:58:54:07:48:bc:e1:12:69:17:89:71:c3:
         e1:45:d6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:37:55 2025 by rpki-client