Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File:                     1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier:          e1WMfCn56ApVD3AVPD2qF3zkYUpERNuSEG/y8PMR5FU=
Subject key identifier:   EF:B1:BE:01:82:AE:BC:0A:1D:15:6A:16:E7:00:17:E3:5A:66:03:AB
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer:       /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial:       01976D3E66CAB68527EB49329CC2C0F2F04D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number:          0A8E
Signing time:             Sat 14 Jun 2025 07:01:35 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:35 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:35 +0000
Files and hashes:         1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: he2CTUCDOS9n2xPI9DMFWTbKuywdIXizni8LFkyJMqU=)
                          2: 5hvMdLYnfsXTSuV237JH9FWLZN0.roa (hash: +NNavIzbs+bo3gjOvC6npGrxT+kBJ6ESc9cDAGFiB9M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:66:ca:b6:85:27:eb:49:32:9c:c2:c0:f2:f0:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
        Validity
            Not Before: Jun 14 07:01:35 2025 GMT
            Not After : Jun 15 07:01:35 2025 GMT
        Subject: CN=efb1be0182aebc0a1d156a16e70017e35a6603ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:c3:86:96:c3:19:52:22:fc:48:a5:7f:d7:8f:
                    49:1b:89:bf:f6:de:f5:0c:24:cc:aa:3a:71:33:28:
                    09:29:c2:31:b4:eb:ed:45:ce:53:b1:08:57:5d:80:
                    85:ed:3d:bf:69:d5:92:af:6d:06:26:80:06:9b:62:
                    47:ad:ee:01:e1:53:5c:72:ba:63:e0:46:f1:dc:97:
                    18:d3:38:1a:53:0a:18:6b:17:f8:cb:07:2e:fa:8c:
                    81:b4:2f:f0:9b:de:44:bd:5d:b4:ed:47:5d:39:c8:
                    dd:f8:6d:c3:e3:b6:1f:6b:4b:10:54:c8:38:28:4b:
                    e6:05:e2:2d:52:cc:8f:a6:07:8f:8c:39:18:28:f4:
                    4e:c3:09:dc:03:20:c8:d7:c5:a4:f0:a5:41:7f:f9:
                    34:ea:86:d5:d1:47:84:fe:4c:92:3a:84:b7:e3:11:
                    aa:fc:88:22:eb:d5:30:84:37:61:09:ca:fd:de:ad:
                    0f:2f:6c:20:4b:b4:66:41:bb:f8:37:41:e0:3f:94:
                    90:2c:d6:7c:e2:99:89:e9:0f:9d:36:f2:d8:4c:be:
                    4d:e2:80:1b:78:68:3c:06:4c:f6:05:98:0f:5b:8d:
                    e1:2a:d5:9b:8f:38:8c:d4:7c:20:9b:60:34:d3:03:
                    03:28:d5:47:58:f6:dc:a8:65:bc:64:c7:56:30:c5:
                    d4:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:B1:BE:01:82:AE:BC:0A:1D:15:6A:16:E7:00:17:E3:5A:66:03:AB
            X509v3 Authority Key Identifier:
                keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:42:e3:f8:cd:a2:5d:ae:bb:5a:4a:18:fc:83:62:e8:7f:07:
         94:a2:e9:c9:e1:04:00:e4:02:05:6d:03:2e:f5:9a:31:6c:cc:
         7d:99:d1:92:f6:0d:1a:99:f8:75:2d:c5:0e:b0:84:6d:8f:63:
         c2:fa:46:1d:68:12:6a:73:05:cb:68:af:7e:19:4d:13:0f:1b:
         da:0b:e2:12:99:9c:bc:81:9d:25:8a:5c:aa:2a:bb:5c:79:bf:
         0f:a5:8c:08:fe:b6:0b:c8:4d:30:e0:38:7d:b9:2f:4c:27:72:
         c7:f8:39:c0:bd:e7:08:fe:4b:b2:0c:31:39:6e:99:48:83:fd:
         bc:d8:12:7f:cd:70:02:d3:15:60:75:35:3f:7d:a6:e9:34:1c:
         9c:ac:66:1e:1b:9e:81:41:e8:ed:a1:ad:d1:be:7a:ea:a3:cf:
         61:b0:ab:cc:57:69:5f:0f:2c:d7:36:8c:46:31:c1:ef:06:a0:
         d6:fe:2d:71:d6:3c:0c:8a:8f:98:90:15:d4:e0:4c:f0:e0:97:
         4d:82:2a:a7:ed:14:1b:e7:1a:09:53:a6:ae:ef:2e:80:e6:1d:
         a6:db:53:20:81:d9:9c:ac:0e:ec:72:39:56:f0:2d:8e:3b:29:
         1c:7a:14:d1:8d:05:95:9a:25:f3:1b:e9:7a:58:be:f6:31:57:
         63:d4:8d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 08:59:36 2025 by rpki-client