Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File:                     KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier:          t7LdJyhrlSNcbg0OFmoEfF4U3V6dIrdCwItBOgIHPYs=
Subject key identifier:   BE:14:3D:9C:81:9F:E9:01:64:DB:35:30:31:96:0D:AE:98:76:70:34
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer:       /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial:       019763956E94068EBFBF8C3996FBF72C3182
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number:          0818
Signing time:             Thu 12 Jun 2025 10:00:26 +0000
Manifest this update:     Thu 12 Jun 2025 10:00:26 +0000
Manifest next update:     Fri 13 Jun 2025 10:00:26 +0000
Files and hashes:         1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
                          2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: YipDifG0NkITc5LxYlzxwUvwPhsojX47gQtqV4K3/ZA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 10:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:95:6e:94:06:8e:bf:bf:8c:39:96:fb:f7:2c:31:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
        Validity
            Not Before: Jun 12 10:00:26 2025 GMT
            Not After : Jun 13 10:00:26 2025 GMT
        Subject: CN=be143d9c819fe90164db353031960dae98767034
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:57:ec:03:17:8c:32:f2:1b:ac:8a:87:ae:da:
                    11:53:34:2b:2c:1f:ad:b6:83:25:2b:a3:38:b1:be:
                    e1:2e:a7:54:d7:72:99:93:05:92:d3:83:7d:b5:8f:
                    d4:a5:e3:03:90:cc:a5:7b:04:81:ab:63:34:4a:4c:
                    6e:62:31:eb:3f:bc:8c:64:c8:2f:03:ea:5c:85:d9:
                    51:0f:da:7d:15:b3:fc:8e:f1:f2:45:d1:a2:46:b0:
                    9a:4d:2e:9b:41:36:5f:93:eb:5f:e0:93:94:89:c3:
                    ac:12:62:07:4b:4e:55:9d:ba:2d:c9:60:6d:c7:c9:
                    9e:f2:f3:fb:54:80:36:91:42:ad:d1:a8:50:48:b7:
                    49:a2:ad:a2:e8:d1:8b:13:94:7f:92:21:04:b2:d7:
                    ec:ce:cf:0f:ec:08:34:da:3a:48:91:83:fe:9d:7e:
                    d7:b4:59:03:52:41:1b:f0:d1:55:c4:03:30:2a:61:
                    d3:f3:38:27:b5:9e:6f:c6:8e:44:76:eb:93:00:61:
                    38:7f:2b:cc:27:9d:ad:e2:aa:09:f2:43:15:f2:8e:
                    0a:f4:25:f3:3b:f3:9c:b1:12:43:d3:39:f3:a3:f7:
                    60:14:32:a2:dc:15:42:7b:65:7d:93:ae:a1:5a:be:
                    04:54:0e:be:35:5f:ef:7e:d7:39:9e:38:8c:fb:b7:
                    1b:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:14:3D:9C:81:9F:E9:01:64:DB:35:30:31:96:0D:AE:98:76:70:34
            X509v3 Authority Key Identifier:
                keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:e9:ab:16:fb:07:5c:03:dc:9b:fa:cd:60:42:43:45:d4:71:
         e7:10:3a:56:7a:e9:00:7b:01:b0:f2:78:e5:57:98:a8:ca:f0:
         18:2f:2c:73:9c:b1:a3:66:57:e2:3c:3e:cf:e3:cc:92:34:db:
         d4:c7:5a:78:a6:2a:c0:36:36:6a:15:d7:b3:60:91:c4:da:84:
         56:6c:a3:7f:6e:ee:51:a6:f7:6f:ab:47:f6:b6:03:a5:f6:1b:
         b0:50:d6:29:bf:29:6d:aa:5c:9e:29:ee:5d:42:0b:34:6c:2c:
         d8:e4:02:30:a9:32:99:48:86:25:d7:2a:c3:f8:19:c8:82:56:
         ed:51:a1:55:9b:1b:27:57:86:02:03:6d:c1:f5:e7:7b:13:e3:
         7c:a6:9d:c1:22:2e:a6:ba:23:1c:af:38:f8:b9:c0:7d:81:53:
         f8:73:0f:c3:2b:3b:17:57:89:7e:64:6e:f0:ad:1d:4c:90:47:
         70:87:52:5e:53:33:d6:bc:3a:5a:f8:c3:61:90:02:05:44:c4:
         28:5e:d9:30:09:85:95:08:a6:b0:70:08:02:b7:25:a8:83:b2:
         5c:d6:8c:8f:d7:6d:d9:ea:51:c6:d3:3a:34:d9:39:3e:a6:ea:
         79:54:4e:56:4a:9f:59:28:bc:a9:27:89:66:2f:b2:ec:cd:6e:
         d1:ca:00:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:56:32 2025 by rpki-client