Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
File:                     XEzh8ZMxT2k5vxw_nawjafYpWFo.mft (raw, json)
Hash identifier:          /EMmxX0gIZ4FHYfYbLYug8bu4VQMcogQ3jtQV4k1ZcU=
Subject key identifier:   03:1E:6C:54:35:A1:E5:F4:56:CD:ED:D8:06:59:4E:0B:13:9E:62:EB
Authority key identifier: 5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
Certificate issuer:       /CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Certificate serial:       0197B8213734456B851B806EC58BDB2085A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
Manifest number:          15B5
Signing time:             Sat 28 Jun 2025 20:01:13 +0000
Manifest this update:     Sat 28 Jun 2025 20:01:13 +0000
Manifest next update:     Sun 29 Jun 2025 20:01:13 +0000
Files and hashes:         1: NeVlE-PzPHn5ppNlSgj87PhylgM.roa (hash: +i1WA9cuFFrQg1WFh0BGIYlKWMIvdmOqwrDe9C8B0aM=)
                          2: XEzh8ZMxT2k5vxw_nawjafYpWFo.crl (hash: wHdRwOmimEmvMb6lNvLKdfQvgJUe6jwOAhbQDi6bPp8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:21:37:34:45:6b:85:1b:80:6e:c5:8b:db:20:85:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
        Validity
            Not Before: Jun 28 20:01:13 2025 GMT
            Not After : Jun 29 20:01:13 2025 GMT
        Subject: CN=031e6c5435a1e5f456cdedd806594e0b139e62eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:88:fe:b0:22:11:15:e7:54:41:47:57:02:71:
                    dd:da:1c:c9:97:b8:c8:7c:e9:f2:29:4b:a0:75:26:
                    37:42:90:dd:e6:31:96:3c:da:e0:46:33:f5:5d:de:
                    4f:97:72:93:23:26:32:a8:b9:19:2d:71:06:fc:a9:
                    83:63:3a:26:aa:56:bb:44:16:4b:b5:13:f3:68:96:
                    1e:16:14:1c:1a:9c:b1:e8:b2:00:e8:7f:cd:67:c6:
                    58:9f:4a:55:9c:90:cb:01:a4:e5:04:78:ba:5d:8a:
                    ef:14:b3:d4:c9:68:5e:ff:eb:e6:b3:c2:fd:26:29:
                    9c:13:15:00:9c:dc:ce:52:8f:9e:e6:87:85:11:4f:
                    c3:ea:ab:77:9c:20:a4:36:4e:bb:3b:7f:54:07:b3:
                    72:5d:3f:80:f3:7f:f1:fd:7f:b2:91:3a:0b:19:71:
                    bc:e2:34:99:eb:a2:97:13:e7:6f:4d:95:d2:9d:b4:
                    1c:38:c2:68:86:6f:7e:2e:02:c2:1f:e7:bb:6b:d2:
                    af:40:11:f2:38:ca:1d:6c:a8:db:53:16:0d:ed:c8:
                    66:4f:31:83:06:25:d6:b9:57:a5:44:6c:9c:f9:e1:
                    dc:49:45:80:1b:81:ea:53:9f:43:e4:9a:cc:11:15:
                    f4:77:6b:f0:c0:3d:5d:ec:49:3e:29:a5:15:a1:db:
                    74:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:1E:6C:54:35:A1:E5:F4:56:CD:ED:D8:06:59:4E:0B:13:9E:62:EB
            X509v3 Authority Key Identifier:
                keyid:5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:62:45:2d:0b:c8:b7:36:58:96:72:6a:2a:7f:53:da:b7:05:
         00:e5:a5:a8:8e:c7:f1:60:ba:a0:ce:2c:c5:b6:ac:bb:a8:12:
         cb:6a:c8:6f:d0:bd:69:42:23:50:88:81:3e:40:bf:a5:c2:90:
         4a:af:5a:32:7d:e3:e9:71:d5:d1:25:e8:14:1f:16:1a:e4:40:
         b7:24:e1:18:0d:45:1d:b4:5f:f4:39:21:60:f2:45:3a:7b:e9:
         c8:93:c4:79:95:be:21:1a:d1:80:85:4e:d9:c4:6b:82:f9:73:
         3f:93:81:04:c0:6d:c6:02:d0:fd:a6:88:fc:8a:01:0d:e6:6f:
         27:71:15:e2:66:fd:1a:2f:8b:fc:66:a9:53:ab:0f:3b:5a:67:
         14:25:23:f6:f3:23:28:2d:ec:49:c5:74:b6:6e:c9:fb:03:e8:
         30:0a:e1:38:30:07:6b:90:64:94:9a:26:1b:a6:3c:0e:db:fb:
         e2:7e:43:2a:d2:96:99:1f:55:71:a5:1b:5f:85:d6:a6:71:f9:
         09:1e:1f:29:27:c0:38:7c:c8:12:ca:37:a7:97:c2:17:aa:1c:
         d0:5e:99:80:b7:eb:91:12:22:3e:8b:2a:25:16:ac:4d:22:34:
         6f:f3:49:f4:cd:79:56:e7:00:0c:55:53:6f:7e:20:bb:f8:e7:
         4b:b6:72:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:17:40 2025 by rpki-client