Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File:                     5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier:          kUk7cUdrn7Fr8hAtrdwJoO0awBQQT9iG/j5yQwZGMGE=
Subject key identifier:   0D:17:50:2E:3A:18:1A:6A:3C:2B:D9:9E:76:FB:F7:EC:5B:F8:BF:DE
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer:       /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial:       01976584F4348B78E8F793A7E1F4F21E434F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number:          158B
Signing time:             Thu 12 Jun 2025 19:01:41 +0000
Manifest this update:     Thu 12 Jun 2025 19:01:41 +0000
Manifest next update:     Fri 13 Jun 2025 19:01:41 +0000
Files and hashes:         1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: tapirbJchqC0H3Y/k7AWd0xJqI1pKoSpW07FQRQZbM4=)
                          2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 19:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:84:f4:34:8b:78:e8:f7:93:a7:e1:f4:f2:1e:43:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
        Validity
            Not Before: Jun 12 19:01:41 2025 GMT
            Not After : Jun 13 19:01:41 2025 GMT
        Subject: CN=0d17502e3a181a6a3c2bd99e76fbf7ec5bf8bfde
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:00:00:c2:46:67:be:e0:cf:21:3d:82:15:f7:
                    25:b6:50:ee:6d:24:cd:ff:c8:3d:11:e4:79:8d:cd:
                    cd:8a:19:a9:88:98:0f:04:a4:2c:d0:0c:0a:65:9d:
                    ff:fb:ba:b4:ba:f9:71:0a:c4:dc:a6:8a:d8:6d:f0:
                    43:e3:cc:b3:a1:8e:28:c8:5e:35:42:98:71:f6:4c:
                    54:ae:a1:fa:af:f1:a3:e0:b1:ad:87:3e:1d:1a:47:
                    3c:8f:7c:6b:66:be:c9:76:03:6c:1b:34:5b:f9:ff:
                    2c:f4:a5:7f:a8:31:ef:4a:6f:a6:4b:5c:45:3b:4f:
                    cd:00:bb:d0:97:aa:9e:9a:1d:d3:fb:1d:b2:d1:c4:
                    95:74:9d:58:ce:28:35:29:4f:2c:e9:00:69:24:ca:
                    3e:55:38:ba:5b:5f:93:77:99:59:33:aa:f2:a6:0e:
                    03:23:01:8b:ae:fb:9a:43:28:80:e9:09:8a:91:73:
                    fa:1c:ca:f6:29:de:ed:9f:45:a8:b5:66:7a:37:98:
                    af:07:73:37:ed:e9:25:34:f0:24:38:fd:c2:09:1e:
                    d6:2e:5f:8d:e6:c4:5e:1e:2c:75:f1:7f:59:77:57:
                    cf:81:b0:dd:72:1f:66:35:f6:ba:af:99:dd:16:25:
                    45:9f:2f:a5:9d:a2:2f:5a:56:99:14:a5:2f:0e:62:
                    2e:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:17:50:2E:3A:18:1A:6A:3C:2B:D9:9E:76:FB:F7:EC:5B:F8:BF:DE
            X509v3 Authority Key Identifier:
                keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:73:f3:07:e0:af:b2:02:69:8a:0e:a3:c6:6b:56:6d:68:dd:
         bf:55:94:df:77:52:b1:17:00:35:c4:67:a9:88:f2:3a:70:56:
         c0:0b:db:a9:a5:74:f8:71:18:ca:78:96:95:1b:e4:f1:21:70:
         e6:04:a5:44:7d:3e:22:73:a5:6c:e4:35:59:d4:00:02:9e:ec:
         7a:03:87:8c:b9:d7:2e:f5:ac:c9:1d:50:9b:d2:80:b8:6a:ff:
         f3:2e:30:4d:f5:ff:13:98:59:69:f6:f3:39:7a:ec:43:45:ac:
         9c:5b:fa:b1:c7:63:64:3e:ee:7b:a0:4e:61:cc:ad:16:5d:58:
         b5:43:14:4d:40:45:a5:fd:09:74:6b:75:f2:84:9b:df:b8:46:
         cd:3b:5f:0e:12:1c:ff:c1:1f:88:b0:93:36:8b:80:23:75:4f:
         aa:d0:8e:24:e8:50:a9:34:60:e2:d2:e0:aa:ab:1a:d6:fe:e2:
         bf:ab:b8:23:6a:46:03:a9:9b:c5:a2:10:50:83:36:93:94:33:
         0f:40:f9:71:5f:b8:cc:d6:04:8d:54:be:10:e8:e6:10:49:51:
         46:e2:fa:e3:9b:3a:5a:b0:11:ee:a4:d1:0f:fb:e5:65:8c:6d:
         a2:98:7c:31:8e:d6:38:e5:b1:80:e3:79:8b:d5:21:65:ff:71:
         9e:9d:81:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:40:24 2025 by rpki-client