Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File:                     5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier:          N365evqP9wfUA7iL3H3DHDT8PCUZ6p+PWXQYWVhdbM0=
Subject key identifier:   7E:6C:03:0C:DF:BF:1F:9E:BE:ED:5C:07:B9:8C:8F:DC:12:20:F1:EE
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer:       /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial:       01976773025E41FCC0A920A2FF710B5B7C6E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number:          158C
Signing time:             Fri 13 Jun 2025 04:01:19 +0000
Manifest this update:     Fri 13 Jun 2025 04:01:19 +0000
Manifest next update:     Sat 14 Jun 2025 04:01:19 +0000
Files and hashes:         1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: vs9BPICZhVVA8rL/czZE+67jg/2+r+yJ578kUS88SL8=)
                          2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:73:02:5e:41:fc:c0:a9:20:a2:ff:71:0b:5b:7c:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
        Validity
            Not Before: Jun 13 04:01:19 2025 GMT
            Not After : Jun 14 04:01:19 2025 GMT
        Subject: CN=7e6c030cdfbf1f9ebeed5c07b98c8fdc1220f1ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:7c:58:18:ef:2a:ae:77:71:c8:6e:fc:2d:28:
                    b4:c5:22:14:f5:59:45:6a:ce:7c:57:ac:16:91:69:
                    8b:7d:48:d8:b3:59:65:2c:83:46:18:47:15:45:fd:
                    a0:e5:08:4e:5e:8d:a5:a9:7b:f9:a9:61:a1:b8:81:
                    2e:40:db:0d:c6:fe:99:52:b0:47:d8:a1:41:2d:dc:
                    40:93:70:53:e0:3b:45:33:7c:87:db:e6:5f:27:79:
                    8c:c8:65:ee:eb:a9:78:b7:a7:c5:36:9f:2c:44:eb:
                    9a:54:41:11:f3:95:c9:17:10:31:a5:66:24:5e:2e:
                    58:58:6c:b3:53:df:69:42:6f:58:5c:06:99:5f:57:
                    6f:56:98:ba:88:1b:6e:53:d7:e0:73:82:57:a2:c0:
                    10:30:d3:e6:fb:84:52:cc:61:3a:ff:48:45:af:52:
                    7d:21:35:87:0a:0c:38:ee:3c:cd:e9:06:00:95:b6:
                    e8:0c:b9:90:bb:e1:87:28:be:c8:0a:5c:d6:29:b5:
                    e6:b7:40:ba:c2:ff:97:ec:a5:9d:1b:5c:62:a6:a7:
                    97:29:e7:b0:71:e3:cd:22:a3:c8:f6:88:a7:89:48:
                    6f:20:37:c0:f4:21:7c:db:32:0a:1b:68:9c:a4:2e:
                    21:16:1d:90:a7:6a:2b:2d:b0:66:d9:4a:ec:9a:7e:
                    25:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:6C:03:0C:DF:BF:1F:9E:BE:ED:5C:07:B9:8C:8F:DC:12:20:F1:EE
            X509v3 Authority Key Identifier:
                keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:aa:a5:a0:f5:f3:90:bb:40:88:c6:d3:c0:c3:82:b4:5c:a0:
         5f:10:c1:5b:05:ae:88:6b:06:70:14:00:ef:c1:a4:ba:09:95:
         00:ed:53:a6:b1:df:4d:b8:68:6f:07:46:99:d9:42:d4:f0:92:
         eb:de:6f:99:03:c8:e1:e6:79:97:fb:86:d3:0d:f7:fa:37:ad:
         7c:4e:78:0a:3b:f1:f4:75:f8:ef:70:0c:06:22:ce:6e:99:46:
         18:99:5f:2d:17:ad:5e:77:44:d6:55:f8:ee:01:4e:02:e4:72:
         fe:e2:fa:bf:16:09:67:b8:cb:62:21:0f:05:a2:c8:9f:26:34:
         ce:28:fb:18:c7:9a:f2:2f:79:80:8f:a2:fe:96:60:4a:eb:f3:
         d8:f3:dd:5f:d0:a1:85:b7:25:f0:29:8f:59:f6:6c:38:17:d3:
         a9:35:b8:ca:a9:2e:06:4d:ec:86:9b:c8:98:16:6c:92:ab:c8:
         4d:9c:50:95:2a:0e:4d:27:33:92:a5:6b:e6:c8:fd:86:c6:44:
         2e:6b:88:7c:fe:62:83:ae:e4:77:81:a9:b4:05:41:06:0e:27:
         e9:3e:d0:7d:8c:11:d8:bd:b0:27:82:e4:97:74:b1:e7:c0:ce:
         30:86:dc:af:ca:67:78:7f:ac:99:2e:01:6f:1a:49:f4:46:b6:
         ba:01:86:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 07:58:56 2025 by rpki-client