Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
File:                     TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json)
Hash identifier:          fDYKKxCafwL4GdYDYKJDzLCXDAwGRukn6TP5XbMP6h0=
Subject key identifier:   58:82:2B:2D:82:54:EC:53:25:52:DE:A8:E6:92:6E:7E:F4:2C:4C:95
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Certificate issuer:       /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial:       019755354FA7CED3330E6F49BBF3F1B6C182
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
Manifest number:          1584
Signing time:             Mon 09 Jun 2025 15:00:46 +0000
Manifest this update:     Mon 09 Jun 2025 15:00:46 +0000
Manifest next update:     Tue 10 Jun 2025 15:00:46 +0000
Files and hashes:         1: 6aBtyL1HCBLQz8Fcxx2-wbI-JSY.roa (hash: s+Yjky9WV0WGtiJ2UXV97kZc6gRv1napm2o37+mL6NI=)
                          2: R0B0S-Vvq6PSGq8IAqKsdnjdNUo.roa (hash: jZBNXVMhAxnq4wWzeXUVcxAP1mha5zeShrdHGeYvBL4=)
                          3: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: LB+WkTn/pgwZajgS6/WzOIynqsRZOiwbIpXM/d121Zo=)
                          4: snxuxsWrIVBOH4PJX-798Ws3-_I.roa (hash: eUyKfNa1R42Kf80mOcHHq43jou6WV27ocUUMJBjr/10=)
                          5: wnKhG27ddvv9DbopEcZ0e8BfSyE.roa (hash: 5bhpzUqfkiYr3WyfWoYZHsfUt3MVDy9FbR7pi02+AvQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 11:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:55:35:4f:a7:ce:d3:33:0e:6f:49:bb:f3:f1:b6:c1:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
        Validity
            Not Before: Jun  9 15:00:46 2025 GMT
            Not After : Jun 10 15:00:46 2025 GMT
        Subject: CN=58822b2d8254ec532552dea8e6926e7ef42c4c95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:47:33:71:fa:18:d4:b4:08:09:8c:c4:94:3d:
                    86:d9:d1:9e:51:b9:59:f8:00:ed:7e:00:16:d0:f0:
                    48:29:22:38:aa:80:d3:4a:2a:9b:44:15:8b:8f:41:
                    86:47:ae:e7:de:04:e7:b3:18:24:73:81:94:77:13:
                    61:cb:ae:ea:81:85:5c:17:ee:f2:0f:0b:aa:c3:a9:
                    15:a0:68:21:f9:e7:7c:03:ae:96:28:c3:b0:38:47:
                    7c:d0:20:78:ca:08:41:3c:3e:08:e8:dc:26:e9:59:
                    6f:43:3e:9d:f8:69:66:45:38:d5:05:a1:53:3c:11:
                    e1:7c:71:ad:c0:59:1b:36:37:6d:f2:d7:21:0b:41:
                    2c:4d:40:94:e8:e7:f0:a7:97:48:c0:6f:ee:2c:b4:
                    ea:3b:28:9a:d4:7b:3f:87:be:ee:d8:45:f1:22:11:
                    bd:5b:0f:c3:03:c8:44:8d:d2:91:d3:78:e0:2e:3f:
                    7d:f2:3a:f2:3d:d0:1c:e8:a1:c3:f7:9b:35:f6:5b:
                    da:0a:52:26:78:e4:67:c3:29:ea:24:69:d0:28:1a:
                    56:ca:9c:d7:87:84:20:74:55:bc:64:d2:66:0e:94:
                    88:c2:47:62:0c:cd:d3:a0:2e:78:2c:bc:f0:00:a6:
                    48:88:5c:af:5f:52:21:5e:41:15:69:79:f4:80:b9:
                    f6:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:82:2B:2D:82:54:EC:53:25:52:DE:A8:E6:92:6E:7E:F4:2C:4C:95
            X509v3 Authority Key Identifier:
                keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:a2:ef:99:af:b1:94:13:8f:7c:b7:11:49:15:96:25:aa:3f:
         c1:0d:41:09:d1:42:d7:e4:fc:ef:1c:00:0a:f7:4a:e8:aa:c8:
         ab:bd:64:3e:f1:70:2e:de:bf:24:40:70:98:cf:5d:5c:ed:9d:
         d7:0f:9b:26:c8:8d:9e:02:69:0d:4a:b1:89:af:c8:14:5e:d6:
         c7:bc:43:d1:97:97:30:1e:4f:e8:de:71:18:08:7c:62:6a:68:
         b6:a6:62:74:77:00:82:29:a4:cb:96:6e:b4:6b:46:a7:42:65:
         8e:73:9c:60:80:b6:f6:b5:05:d9:17:d6:cb:fc:6d:ee:9f:b0:
         13:04:f1:fa:21:8f:3b:0a:73:5a:70:77:67:f6:a5:10:2a:cd:
         2e:53:3b:12:3b:e9:5b:d3:e7:eb:29:dd:79:21:5b:92:03:1c:
         bc:54:fb:79:72:57:53:98:8b:a5:0d:5d:5a:e1:9b:d5:39:20:
         a2:f4:46:1b:82:54:c2:8f:2f:57:b6:54:44:a8:2e:fb:09:08:
         b8:fb:17:d9:b9:fd:64:23:31:b2:9a:4b:36:54:bc:2a:7f:8d:
         8d:d3:e5:34:fc:29:4d:54:c1:67:3f:a1:42:57:c2:24:71:50:
         1b:23:be:d7:e2:49:96:1f:7d:46:4c:f5:03:b8:e0:1d:be:d3:
         e1:0c:dd:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdVNU+nztMzDm9Ju/PxtsGCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmM2JkNTZlOGI1NGU2ZGEyN2JiZTY2MjJkYWM2N2NiZjAy
YTgxZWEwHhcNMjUwNjA5MTUwMDQ2WhcNMjUwNjEwMTUwMDQ2WjAzMTEwLwYDVQQD
Eyg1ODgyMmIyZDgyNTRlYzUzMjU1MmRlYThlNjkyNmU3ZWY0MmM0Yzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUczcfoY1LQICYzElD2G2dGeUblZ
+ADtfgAW0PBIKSI4qoDTSiqbRBWLj0GGR67n3gTnsxgkc4GUdxNhy67qgYVcF+7y
Dwuqw6kVoGgh+ed8A66WKMOwOEd80CB4yghBPD4I6Nwm6VlvQz6d+GlmRTjVBaFT
PBHhfHGtwFkbNjdt8tchC0EsTUCU6Ofwp5dIwG/uLLTqOyia1Hs/h77u2EXxIhG9
Ww/DA8hEjdKR03jgLj998jryPdAc6KHD95s19lvaClImeORnwynqJGnQKBpWypzX
h4QgdFW8ZNJmDpSIwkdiDM3ToC54LLzwAKZIiFyvX1IhXkEVaXn0gLn28QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFiCKy2CVOxTJVLeqOaSbn70LEyVMB8GA1UdIwQY
MBaAFE871W6LVObaJ7vmYi2sZ8vwKoHqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS82ZmUxNDktOGE3Mi00N2ZkLTg3MzUt
N2RjNWJkZGY5MWI1LzEvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS82ZmUxNDktOGE3Mi00N2ZkLTg3MzUtN2RjNWJkZGY5MWI1
LzEvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU6Lvma+x
lBOPfLcRSRWWJao/wQ1BCdFC1+T87xwACvdK6KrIq71kPvFwLt6/JEBwmM9dXO2d
1w+bJsiNngJpDUqxia/IFF7Wx7xD0ZeXMB5P6N5xGAh8YmpotqZidHcAgimky5Zu
tGtGp0JljnOcYIC29rUF2RfWy/xt7p+wEwTx+iGPOwpzWnB3Z/alECrNLlM7Ejvp
W9Pn6yndeSFbkgMcvFT7eXJXU5iLpQ1dWuGb1TkgovRGG4JUwo8vV7ZURKgu+wkI
uPsX2bn9ZCMxsppLNlS8Kn+NjdPlNPwpTVTBZz+hQlfCJHFQGyO+1+JJlh99Rkz1
A7jgHb7T4Qzdlw==
-----END CERTIFICATE-----
Generated at Mon Jun 9 19:05:01 2025 by rpki-client