Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File:                     KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier:          N2CEUY9yfwDd4NsfgR3s/byYMYGWS8NjzPRb9/jJtmE=
Subject key identifier:   CF:4F:6A:16:C8:7D:6A:AE:F2:79:44:C3:61:83:AD:33:8A:E3:CF:9C
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer:       /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial:       019754236EECF1E779CF0DFD4CB135490C90
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number:          0810
Signing time:             Mon 09 Jun 2025 10:01:37 +0000
Manifest this update:     Mon 09 Jun 2025 10:01:37 +0000
Manifest next update:     Tue 10 Jun 2025 10:01:37 +0000
Files and hashes:         1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
                          2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: mJcQ7Xs0ZIUGTHFt6wp99P50HUZ+JmbojYq1JgMGhbo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:23:6e:ec:f1:e7:79:cf:0d:fd:4c:b1:35:49:0c:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
        Validity
            Not Before: Jun  9 10:01:37 2025 GMT
            Not After : Jun 10 10:01:37 2025 GMT
        Subject: CN=cf4f6a16c87d6aaef27944c36183ad338ae3cf9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:42:97:c4:3f:6d:e2:3d:dd:6b:c4:94:a2:30:
                    5d:4f:af:df:5e:8e:36:dd:f6:d0:5d:d3:b8:76:b0:
                    88:c0:de:38:82:9e:b6:2c:17:34:d1:59:1a:e1:82:
                    c3:48:b3:c7:11:9d:09:0f:49:4d:b6:55:64:f5:c0:
                    c1:d9:51:8c:4a:ef:3c:06:27:fd:da:9c:e4:c3:41:
                    a9:40:bd:ee:97:80:14:c8:0c:c7:56:97:c9:57:d0:
                    bd:f8:4b:bd:4e:cd:59:fa:de:b0:ca:76:bf:4c:09:
                    63:ab:46:fe:46:b9:be:12:6f:4d:59:bd:5c:aa:a5:
                    2a:55:88:b2:42:66:e8:22:c2:c0:79:0c:c2:fd:c5:
                    78:f4:8d:97:6f:c0:1f:d1:2f:5c:84:dc:ec:2f:62:
                    10:ef:dc:71:33:a5:e1:ea:8a:b9:5e:51:c1:b7:b8:
                    9f:e1:3f:de:84:ba:6e:ab:1b:41:14:bd:8c:af:ab:
                    81:54:7f:26:cd:dd:93:a5:7e:59:26:d3:a4:0b:95:
                    16:6a:a0:3d:c8:88:d7:16:2a:79:77:5e:71:9d:f5:
                    b3:e0:31:4c:fc:db:b6:e9:52:f2:5a:1e:55:7c:38:
                    7d:c9:1e:3a:fb:c8:95:b1:66:56:9d:90:0e:dc:8b:
                    e7:09:c8:6d:65:5f:9e:9b:39:64:ac:5e:ba:f7:33:
                    b3:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:4F:6A:16:C8:7D:6A:AE:F2:79:44:C3:61:83:AD:33:8A:E3:CF:9C
            X509v3 Authority Key Identifier:
                keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:61:7c:9a:ab:a4:ed:c5:71:e3:f1:e1:dd:10:a8:11:4d:94:
         67:95:2f:3b:d4:93:a0:30:3e:6c:74:91:5d:80:6b:73:d4:3a:
         f0:5b:21:56:82:7d:df:f3:1e:f9:a9:01:21:c9:70:18:b6:30:
         dc:87:8e:22:a7:88:61:72:9b:0d:4a:a7:4b:cd:1f:ec:58:d5:
         a0:fc:34:60:94:56:f5:c8:16:0e:4f:22:d4:b2:56:65:ee:25:
         c0:80:f2:28:59:3a:8a:4c:11:81:7b:62:9f:cb:ce:89:d7:50:
         3a:b4:82:dc:67:db:08:e2:f4:f3:3d:4e:d9:8a:71:c1:d6:ae:
         b8:6b:be:82:75:66:f8:74:ca:3e:fc:7b:25:e9:11:87:a0:d4:
         30:c9:c1:5b:8b:74:ec:0a:e8:28:aa:1a:98:e9:bd:22:25:a0:
         95:e2:89:40:59:3f:16:a5:85:6b:46:c1:96:3a:76:1e:80:66:
         63:8b:76:68:29:b4:c9:4d:ce:19:92:57:74:89:24:57:41:15:
         75:4e:fe:52:8a:32:e0:c2:6a:f9:88:f2:30:96:0a:9a:67:ca:
         0b:cf:4d:59:0f:00:85:77:47:a5:97:29:21:dc:03:26:32:00:
         59:b2:4a:21:ec:9f:c3:ae:e9:f8:77:4c:dc:6f:b8:df:f7:69:
         96:2a:03:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:40:21 2025 by rpki-client