Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File:                     h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier:          yufE0RsANWLz9u04zpq8AQ8/gOwJFbY0DkHulCcpWKA=
Subject key identifier:   C8:80:41:56:01:CA:66:94:76:A9:78:22:60:95:FD:E3:90:DA:97:39
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer:       /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial:       01975FB89BED1EEF58C7EE3B09BD99CCB7AC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number:          1589
Signing time:             Wed 11 Jun 2025 16:00:23 +0000
Manifest this update:     Wed 11 Jun 2025 16:00:23 +0000
Manifest next update:     Thu 12 Jun 2025 16:00:23 +0000
Files and hashes:         1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: y/EgG7ulrCSAhfJSPm24rZYM+EebbyfqjxBQZg/g/YI=)
                          2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:b8:9b:ed:1e:ef:58:c7:ee:3b:09:bd:99:cc:b7:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
        Validity
            Not Before: Jun 11 16:00:23 2025 GMT
            Not After : Jun 12 16:00:23 2025 GMT
        Subject: CN=c880415601ca669476a978226095fde390da9739
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:38:88:98:db:cc:2d:aa:7f:55:1f:8e:d6:c5:
                    10:1c:5c:b2:24:7d:5b:db:d6:1f:5e:34:13:6d:f9:
                    e4:ef:57:fc:e8:05:e1:e7:26:f8:75:cb:c1:79:03:
                    23:ca:02:82:d8:ac:53:66:0b:c0:96:ef:6b:bf:a0:
                    d8:7a:c1:d4:f2:da:90:67:cc:85:7a:09:bb:1a:e2:
                    58:4d:1a:5b:ed:ba:62:d3:9d:5f:6a:f8:a3:d7:47:
                    f3:58:fa:13:72:4a:ab:83:f1:93:26:fd:f4:2c:5c:
                    48:e9:b7:53:1d:01:28:da:f4:eb:50:1c:1c:be:e7:
                    bc:a2:b9:72:f6:ee:72:f8:c6:41:84:aa:bd:50:41:
                    31:60:1c:dd:26:6b:af:18:57:a2:c8:98:b1:e5:c5:
                    7c:22:df:7d:8b:db:e5:98:62:3a:c5:8c:87:4c:2c:
                    9b:30:20:5b:8b:0b:c0:4c:e3:46:96:45:c9:f9:ca:
                    5f:e3:a5:dc:37:0a:de:0a:3a:ec:cb:74:8b:32:d8:
                    2b:21:e4:39:b0:55:78:49:14:5c:2b:d6:fc:26:17:
                    17:dd:1d:76:d3:58:92:08:15:90:0f:43:e7:63:2e:
                    dd:3d:97:4e:99:91:e0:cb:d8:17:3e:3c:b3:55:ec:
                    c8:a9:eb:c0:63:4f:60:47:8b:1e:c1:d6:d9:fa:74:
                    af:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:80:41:56:01:CA:66:94:76:A9:78:22:60:95:FD:E3:90:DA:97:39
            X509v3 Authority Key Identifier:
                keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:e3:58:f9:a6:ae:be:b6:26:fe:98:74:c5:f4:58:a4:69:62:
         89:f4:ba:1d:63:f3:cc:f7:bb:1a:df:17:b5:ec:3b:20:19:dd:
         c3:c2:b8:98:d3:de:c7:78:87:5a:a9:57:86:66:a3:0e:d1:4d:
         2f:06:16:23:49:03:e2:34:4e:12:40:ca:cd:71:f9:c3:a3:80:
         04:8c:27:c1:ae:38:ba:52:df:47:19:91:31:60:33:65:89:56:
         d1:6b:ff:b1:6c:3e:03:ca:31:e7:1f:fd:5e:e1:f9:89:a0:f2:
         ac:16:a7:af:ad:0d:51:2b:5b:24:be:4c:e3:8a:65:58:35:39:
         1c:fb:cd:05:6f:4d:ce:4f:02:ef:6b:b7:a1:ce:1c:b6:34:e5:
         b5:c3:90:1f:4c:1e:52:b0:2c:03:96:11:76:b2:2f:27:20:01:
         a5:28:d5:68:3e:5b:6d:36:5d:1c:91:17:db:bf:ba:39:af:7b:
         fb:06:cd:3e:9e:e2:c1:2a:58:31:73:4a:de:d5:cc:d2:8d:a2:
         75:7e:7f:e3:54:87:b1:da:0d:35:74:92:f1:d6:b6:33:40:63:
         7d:4f:57:01:8d:ee:09:61:47:09:2a:43:dd:8a:52:3e:07:f2:
         64:b4:2d:11:0e:64:03:3d:86:7e:d5:a0:a1:f8:91:5e:62:64:
         9a:fe:b3:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdfuJvtHu9Yx+47Cb2ZzLesMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTkyMDg4ZTc2NTVjYjEzNDAyMGNhOTViMGU1N2Q0ZTZk
YWY0MGYwHhcNMjUwNjExMTYwMDIzWhcNMjUwNjEyMTYwMDIzWjAzMTEwLwYDVQQD
EyhjODgwNDE1NjAxY2E2Njk0NzZhOTc4MjI2MDk1ZmRlMzkwZGE5NzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTiImNvMLap/VR+O1sUQHFyyJH1b
29YfXjQTbfnk71f86AXh5yb4dcvBeQMjygKC2KxTZgvAlu9rv6DYesHU8tqQZ8yF
egm7GuJYTRpb7bpi051favij10fzWPoTckqrg/GTJv30LFxI6bdTHQEo2vTrUBwc
vue8orly9u5y+MZBhKq9UEExYBzdJmuvGFeiyJix5cV8It99i9vlmGI6xYyHTCyb
MCBbiwvATONGlkXJ+cpf46XcNwreCjrsy3SLMtgrIeQ5sFV4SRRcK9b8JhcX3R12
01iSCBWQD0PnYy7dPZdOmZHgy9gXPjyzVezIqevAY09gR4sewdbZ+nSv2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMiAQVYBymaUdql4ImCV/eOQ2pc5MB8GA1UdIwQY
MBaAFIeZIIjnZVyxNAIMqVsOV9Tm2vQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMt
ODVlYTYzYzI0NDc0LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMtODVlYTYzYzI0NDc0
LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIONY+aau
vrYm/ph0xfRYpGliifS6HWPzzPe7Gt8Xtew7IBndw8K4mNPex3iHWqlXhmajDtFN
LwYWI0kD4jROEkDKzXH5w6OABIwnwa44ulLfRxmRMWAzZYlW0Wv/sWw+A8ox5x/9
XuH5iaDyrBanr60NUStbJL5M44plWDU5HPvNBW9Nzk8C72u3oc4ctjTltcOQH0we
UrAsA5YRdrIvJyABpSjVaD5bbTZdHJEX27+6Oa97+wbNPp7iwSpYMXNK3tXM0o2i
dX5/41SHsdoNNXSS8da2M0BjfU9XAY3uCWFHCSpD3YpSPgfyZLQtEQ5kAz2GftWg
ofiRXmJkmv6zEg==
-----END CERTIFICATE-----
Generated at Wed Jun 11 20:50:40 2025 by rpki-client