Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File:                     5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier:          fftcZ8GucdfLJHdItw14k36pvnXHLmTCAegtAOCwtWk=
Subject key identifier:   64:34:B7:16:34:FD:46:34:3A:02:2A:51:5F:F5:C5:57:8D:2E:28:15
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer:       /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial:       01976395C62B1BC659FF6317FBD915F6F1B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number:          158A
Signing time:             Thu 12 Jun 2025 10:00:49 +0000
Manifest this update:     Thu 12 Jun 2025 10:00:49 +0000
Manifest next update:     Fri 13 Jun 2025 10:00:49 +0000
Files and hashes:         1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: 1nzSsdXTD40Q1G+qd7WoComvAV2w3gPefbcXNuws3ag=)
                          2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:95:c6:2b:1b:c6:59:ff:63:17:fb:d9:15:f6:f1:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
        Validity
            Not Before: Jun 12 10:00:49 2025 GMT
            Not After : Jun 13 10:00:49 2025 GMT
        Subject: CN=6434b71634fd46343a022a515ff5c5578d2e2815
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:de:52:33:b9:ef:72:ca:2b:b2:0b:b5:de:1c:
                    6a:6d:e0:6a:8a:89:3e:72:c8:08:83:61:0e:31:cd:
                    68:30:81:b5:a1:1e:05:ca:b8:08:3d:2d:75:55:2b:
                    76:44:79:1e:44:01:4a:82:a8:56:8a:77:1d:c5:e4:
                    05:0c:d7:26:db:e3:b1:ce:81:49:19:4c:20:a9:72:
                    18:0e:11:97:95:7a:0b:89:96:4d:a9:59:86:08:a4:
                    7f:40:0e:6e:7b:99:19:51:bc:33:bb:34:0f:0a:10:
                    0e:88:52:73:54:e9:30:e7:4e:05:44:e5:5c:e8:4b:
                    d1:89:1e:ee:35:43:9e:3f:0b:1c:38:90:94:0b:ef:
                    66:2a:10:1c:64:2b:d0:7a:76:93:9f:df:1e:5e:94:
                    8b:8c:32:d9:b1:7a:f2:93:bb:2a:1e:70:f4:b8:bf:
                    f5:7a:94:aa:56:3e:f4:44:c7:f4:14:9d:c5:9d:cf:
                    4c:87:80:0c:6a:fa:1b:e5:31:02:14:4c:96:61:eb:
                    97:86:df:3b:51:39:96:19:e4:fe:f9:e4:9c:25:69:
                    94:a4:dd:c1:4c:72:96:5e:ff:9f:0c:eb:3d:dc:38:
                    cc:11:11:96:09:29:9d:1d:ee:0f:d9:3d:94:4e:ec:
                    51:6e:74:05:23:e9:b5:87:f5:b6:75:02:0f:60:c6:
                    c3:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:34:B7:16:34:FD:46:34:3A:02:2A:51:5F:F5:C5:57:8D:2E:28:15
            X509v3 Authority Key Identifier:
                keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:fb:2d:a0:b4:3e:f6:f9:08:c8:7b:3b:53:2d:20:8c:e4:61:
         79:97:94:1a:20:0b:93:5a:f9:8a:9f:70:04:dc:b9:40:ab:c1:
         26:b6:93:61:95:d1:1b:a4:00:2d:d6:fb:63:29:a4:d4:4c:b8:
         f3:ad:c8:bb:92:ef:75:f6:dc:1a:c1:f6:54:ce:df:15:87:83:
         a9:dc:60:54:01:a2:2d:33:2f:c2:19:b8:90:df:72:53:a0:50:
         8c:22:b1:a7:a3:57:b3:45:7b:2f:45:15:cc:85:59:b2:d8:c7:
         e9:09:fa:04:18:a3:0f:33:32:78:07:71:08:12:ad:ec:db:bc:
         3f:5d:02:d7:ba:ac:fd:71:01:21:cb:a2:30:66:29:45:d8:e0:
         09:09:7c:89:51:0a:4a:dd:93:13:86:f8:9b:85:dc:35:57:f3:
         be:b7:d2:b9:ae:75:39:d4:f6:72:c2:78:24:dd:aa:9b:7d:54:
         9c:86:a1:96:66:8c:14:14:f9:af:5d:af:4a:2c:5a:d1:d6:b1:
         d9:6e:52:29:fd:92:70:9e:cd:ad:bd:89:f8:e9:4e:d1:5a:b3:
         5a:78:56:bb:7c:72:ce:af:9c:0c:bc:f8:4a:d4:56:a8:7f:da:
         06:c6:0f:0d:68:4b:81:f1:1e:05:7c:4a:cb:ae:bd:99:19:ce:
         46:29:c4:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 12:40:01 2025 by rpki-client