Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File:                     KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier:          BztdtAueXRKHLKJROJICh3vULYV1CSmOpZWlkXqSsPw=
Subject key identifier:   48:1D:3B:DE:CA:AA:7C:10:CC:EF:67:B3:5C:24:D2:C6:BB:E3:12:DA
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer:       /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial:       01976960CFB30A4121DE6238C79CD03F4DB9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number:          081B
Signing time:             Fri 13 Jun 2025 13:00:41 +0000
Manifest this update:     Fri 13 Jun 2025 13:00:41 +0000
Manifest next update:     Sat 14 Jun 2025 13:00:41 +0000
Files and hashes:         1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
                          2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: xaNfnn3eKZgVE9LpDf8egkhMGZJVQUY9+FGfWO2BNsE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:60:cf:b3:0a:41:21:de:62:38:c7:9c:d0:3f:4d:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
        Validity
            Not Before: Jun 13 13:00:41 2025 GMT
            Not After : Jun 14 13:00:41 2025 GMT
        Subject: CN=481d3bdecaaa7c10ccef67b35c24d2c6bbe312da
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:31:b8:c1:0b:ab:fe:68:6a:9d:61:93:26:76:
                    77:5c:45:48:5d:21:d0:0a:bf:00:40:f1:11:07:c7:
                    a3:6b:f3:39:a7:e9:22:4d:5d:0c:a0:43:8f:7d:af:
                    eb:32:cb:86:02:dc:72:1d:f5:26:d5:7a:de:dd:11:
                    d2:ce:03:21:f3:2d:ea:3b:53:90:8f:e6:b0:4c:c1:
                    e2:a1:a9:bf:9f:78:b7:7a:96:dc:96:03:61:04:98:
                    1b:75:ca:fe:38:98:5b:ea:b6:1a:46:b7:4e:5d:34:
                    33:48:32:15:cf:f6:0a:15:aa:b0:27:d6:b4:80:1a:
                    5a:16:c6:a3:a5:81:be:e5:6d:19:8f:d7:bd:e5:b9:
                    19:b2:18:dd:e9:d8:64:35:9a:f7:f9:8f:12:ed:8b:
                    d8:f5:4c:2f:ed:f1:13:5e:9d:56:3b:b9:4f:b2:3b:
                    0e:c7:36:39:3d:83:9f:62:93:0d:87:e3:76:24:f0:
                    d1:c5:6c:19:15:0d:89:1c:78:b2:ea:7b:a8:ed:dd:
                    86:c8:c9:bd:c5:c6:9a:05:7a:47:f2:0a:36:93:25:
                    b9:cf:9e:04:77:de:fa:05:71:38:da:7b:a9:6a:78:
                    38:bd:79:a6:5f:75:4f:2a:f5:fd:9d:bb:c2:92:1a:
                    dc:b4:0c:b6:f7:cd:c8:36:d5:fa:b2:d4:e9:d8:0d:
                    8e:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:1D:3B:DE:CA:AA:7C:10:CC:EF:67:B3:5C:24:D2:C6:BB:E3:12:DA
            X509v3 Authority Key Identifier:
                keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:60:76:eb:ab:75:f8:40:36:e4:b0:58:c3:58:5a:27:fd:b3:
         1e:32:51:f9:c3:35:55:bd:17:d3:58:6f:bd:4b:d4:73:20:a5:
         59:77:68:21:98:16:4d:11:20:d3:f9:a0:96:32:84:81:7b:ed:
         72:4e:72:7f:5a:71:7d:e2:12:e8:79:06:92:ad:c0:10:52:4b:
         67:15:cb:ad:22:c3:d4:47:29:53:04:fb:ae:4c:c5:87:d1:78:
         73:66:13:19:7a:ec:32:18:13:98:4e:d2:14:aa:bd:cc:6a:f5:
         20:a0:b6:18:ec:e5:ed:f4:6d:6f:41:4a:74:1d:c7:01:e4:d0:
         b2:45:1b:5e:0c:89:94:37:a7:4f:d5:e0:85:c5:f6:20:3e:16:
         2b:d4:80:c9:9f:40:e2:38:d1:9e:a6:4e:1d:da:5d:d8:35:e8:
         cc:37:c8:88:db:63:f2:ea:49:c4:57:ce:b1:b3:f3:71:4f:54:
         94:a8:8c:37:59:2a:18:2a:4f:40:fe:e6:bd:ac:0c:ee:44:05:
         6f:b6:8d:61:fe:db:30:3a:b5:d6:50:91:81:94:fb:a0:94:7f:
         82:21:d4:a9:d7:da:f0:7b:a3:9a:99:fc:2a:97:ef:90:84:7e:
         3c:e1:82:e8:4e:15:d3:4d:c6:18:e2:65:0e:48:13:1c:8a:f0:
         0f:c5:08:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 16:36:37 2025 by rpki-client