Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File:                     5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier:          Tchu5r4q42eivKAGCP6r9N/Pzj64clBM/Knje7bPKXc=
Subject key identifier:   C9:4D:BE:99:76:C8:89:49:F5:43:97:1E:42:88:BF:CE:F7:36:F0:29
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer:       /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial:       019756113EC04B6108B7697B60D9CDDBCEC8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number:          1583
Signing time:             Mon 09 Jun 2025 19:00:59 +0000
Manifest this update:     Mon 09 Jun 2025 19:00:59 +0000
Manifest next update:     Tue 10 Jun 2025 19:00:59 +0000
Files and hashes:         1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: LFVu3vEUULyE0spprtGk8XUinxzwUMTtRuZ5b1lbk6w=)
                          2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 19:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:11:3e:c0:4b:61:08:b7:69:7b:60:d9:cd:db:ce:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
        Validity
            Not Before: Jun  9 19:00:59 2025 GMT
            Not After : Jun 10 19:00:59 2025 GMT
        Subject: CN=c94dbe9976c88949f543971e4288bfcef736f029
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:14:b8:59:cb:79:ad:91:6b:de:69:17:8b:c7:
                    0c:66:b9:b9:1b:d3:15:4d:de:40:85:ca:48:a7:0c:
                    18:08:26:44:ca:a6:6a:b9:1e:c4:8d:f3:68:6f:c7:
                    6e:48:e8:fe:b3:e8:f1:9e:4c:5c:a1:60:b9:b4:4f:
                    78:24:b2:cc:d5:5b:b4:6c:70:a0:fb:a8:8c:13:58:
                    23:70:95:c6:c7:59:82:15:e5:34:70:a4:ad:af:9e:
                    90:b4:99:f3:f0:c6:5c:76:fa:6a:02:e0:34:31:09:
                    0b:52:63:7d:53:d3:e0:df:1b:fe:66:83:0f:23:e5:
                    24:d4:62:b0:dc:4d:6e:2a:ac:9d:26:64:9f:8c:44:
                    09:8c:f9:bd:43:9c:62:36:44:04:5c:75:66:b9:69:
                    96:e1:d7:65:9a:5d:8d:5e:10:6b:c6:54:8c:bd:e4:
                    71:a6:dc:08:21:72:f6:23:b5:3f:c8:39:a8:90:a3:
                    d0:d4:8f:0c:54:42:89:6e:f0:93:6f:cc:03:d7:b2:
                    65:6c:a2:bc:23:6d:9d:f8:ff:d4:d1:a8:83:cd:c7:
                    72:42:5b:a4:2e:af:f4:d5:16:0d:cb:6c:dc:4a:ef:
                    18:2e:90:0f:70:06:79:55:f3:83:25:20:3b:16:8b:
                    fb:7d:e6:42:26:b6:b4:b0:2e:e8:fa:9b:bf:7c:46:
                    3c:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:4D:BE:99:76:C8:89:49:F5:43:97:1E:42:88:BF:CE:F7:36:F0:29
            X509v3 Authority Key Identifier:
                keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:30:18:bd:d1:d8:ec:06:fb:95:04:ba:c1:ed:a0:f2:3b:56:
         b4:ca:3e:0f:e2:4b:01:51:a3:51:af:c7:2d:11:9f:0f:61:2d:
         e2:7d:e4:d1:ae:1b:96:17:ea:fc:9c:67:b2:50:e6:e3:57:97:
         d7:70:f9:94:de:40:57:f7:b5:51:e7:10:7b:a8:70:e6:02:97:
         c0:26:e8:b7:50:99:67:28:62:1c:6b:2b:72:ff:12:22:61:f0:
         80:35:57:30:58:4e:7b:3d:d2:aa:10:3a:12:26:3b:90:d7:c9:
         ee:4f:ce:be:b9:da:26:55:d3:30:2b:ed:fa:ac:8f:02:77:a5:
         4d:1e:91:fb:d5:ce:31:09:55:e5:5a:98:7f:15:c4:9f:f4:4c:
         64:b3:e8:27:28:a9:92:ea:cf:0c:3b:85:ca:6d:8e:f0:49:c7:
         5c:e8:4d:50:0d:41:67:c1:fd:72:84:ad:a2:8e:e2:30:a1:2a:
         4b:7a:c9:dd:6e:50:c2:e8:e7:c7:59:d5:d6:56:4e:a4:5c:2b:
         df:d6:4b:f7:d6:68:47:43:8d:ec:a8:56:55:e5:21:16:85:d6:
         2f:10:1d:12:8f:62:f6:06:76:3f:c9:d2:b2:55:24:78:eb:54:
         fd:bc:47:05:91:01:eb:9e:83:fd:f7:69:98:29:f0:12:0c:b0:
         06:cd:43:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 03:38:00 2025 by rpki-client