Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File:                     h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier:          8beMjORAjWB6avO3cEbW/b95RKwfauKTUGOWrMiGEiU=
Subject key identifier:   A0:DD:52:F1:D0:CE:A9:7D:BE:9A:CE:B8:B2:54:C5:48:90:FC:9F:D9
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer:       /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial:       01976395F0C87E7EA899323A4A242309EDCE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number:          158B
Signing time:             Thu 12 Jun 2025 10:01:00 +0000
Manifest this update:     Thu 12 Jun 2025 10:01:00 +0000
Manifest next update:     Fri 13 Jun 2025 10:01:00 +0000
Files and hashes:         1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: HFqun2TCEdZ7nf8Fg9tiMbfuoajRmApkNthCoK9xaVU=)
                          2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:95:f0:c8:7e:7e:a8:99:32:3a:4a:24:23:09:ed:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
        Validity
            Not Before: Jun 12 10:01:00 2025 GMT
            Not After : Jun 13 10:01:00 2025 GMT
        Subject: CN=a0dd52f1d0cea97dbe9aceb8b254c54890fc9fd9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:ea:27:98:a1:dd:5f:1c:de:ef:67:7f:c4:56:
                    2d:d4:b3:f8:77:63:e9:ee:7f:61:32:7e:64:f1:88:
                    59:42:f9:d1:62:b1:26:41:2a:81:bb:15:25:83:6a:
                    6b:23:b9:76:be:09:d2:28:3b:ec:04:aa:5f:32:4a:
                    29:37:29:cc:5c:22:e8:80:5c:4c:e0:0b:37:e6:14:
                    40:56:34:9a:13:b2:83:f7:25:f9:d9:58:6b:97:46:
                    35:70:c6:fb:f8:d8:48:16:18:53:88:76:de:5e:f0:
                    ae:f4:2e:81:1f:28:59:81:8d:0f:e3:eb:c5:22:c3:
                    a9:a0:49:c6:cd:c2:ad:65:8d:87:a4:99:35:34:41:
                    b1:36:3c:07:e9:7f:f3:dd:cb:15:b6:a3:0d:ba:20:
                    0b:37:4c:20:76:b4:a7:cb:97:ad:fb:a9:8a:4b:e1:
                    7e:6d:5b:32:c6:d4:6f:cf:9c:e6:74:a5:6d:bf:cd:
                    5c:9c:ff:66:46:5a:6e:2e:00:6b:54:30:b7:af:39:
                    d1:91:49:cf:93:4e:95:c8:19:26:c4:0e:93:a1:0a:
                    5e:f4:ce:74:f6:83:80:e8:31:97:ef:ba:15:e4:26:
                    bb:11:8c:e7:54:07:b7:45:df:a1:af:29:d1:da:31:
                    cd:93:b8:f5:4f:74:b4:b7:f3:d9:6d:98:62:e3:a6:
                    2b:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:DD:52:F1:D0:CE:A9:7D:BE:9A:CE:B8:B2:54:C5:48:90:FC:9F:D9
            X509v3 Authority Key Identifier:
                keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:4f:cf:16:ac:b9:c8:13:65:73:70:45:4d:4d:82:86:c4:7c:
         15:5c:94:74:01:f4:41:19:0c:50:7b:a6:58:78:24:9a:2d:15:
         b8:8d:46:97:c8:37:75:7c:d4:9f:d0:4c:f9:a0:be:39:a3:0e:
         4a:4f:0d:c7:d8:cf:54:16:0f:3a:ea:af:9a:d6:18:6f:b3:78:
         de:07:7b:e5:c1:47:7a:bb:98:28:06:a2:c8:9e:b6:d7:87:4a:
         f6:c0:79:08:2e:3f:61:d1:ed:50:96:98:14:53:58:9b:fe:a7:
         3f:29:55:49:17:92:cb:a3:e6:44:18:eb:d1:77:6f:b3:e5:7b:
         97:81:13:95:be:eb:e0:c9:68:d6:8d:dc:0c:db:71:24:55:f5:
         fc:d1:60:7c:a4:aa:5c:74:71:fa:70:89:5f:66:74:e2:ed:c3:
         f6:6b:54:7f:52:2a:e7:35:95:d7:f4:4e:3f:3a:13:cd:6b:96:
         ca:71:51:65:dc:70:75:68:0e:d6:5e:09:f8:2c:23:7b:d3:8b:
         9d:81:40:8a:27:03:b9:ec:c0:b2:e0:a1:2e:58:15:f3:26:13:
         3f:c8:e1:c9:06:71:f4:c0:16:2c:b4:06:26:8d:6f:69:76:24:
         1a:0a:3e:c6:93:a2:29:62:09:30:48:93:55:cf:95:c4:48:b1:
         bd:66:16:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:40:18 2025 by rpki-client