Manifest

$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
File:                     bW-_qXU9uNhGQz21NR2ansB8lr0.mft (raw, json)
Hash identifier:          tDnivvVEgiEbquDyQnq55JhcWAcy2bZi4dBycBWBhc4=
Subject key identifier:   C9:50:BF:21:67:38:3C:4F:F8:95:88:ED:AE:51:94:CE:E6:49:1F:B2
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Certificate issuer:       /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial:       01AAA4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access:      rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
Manifest number:          013F3D
Signing time:             Thu 24 Jul 2025 06:31:34 +0000
Manifest this update:     Thu 24 Jul 2025 06:31:34 +0000
Manifest next update:     Thu 24 Jul 2025 12:31:34 +0000
Files and hashes:         1: 0eIyeiGyIFKlmQZQX86bC9ciEr0.roa (hash: cyM/FkQoj9xO06P7TCTTv/LOo2Xuut82u3dZZ39/U9g=)
                          2: E0AAy4jgV_BtY7GQELCxALV6Q5U.roa (hash: 0YEsF8nmeEujfyIIOFiGW6CDXyDY9JCTr+LXIKq+emU=)
                          3: IdgNYO8v_dEbdoPuHFTpsjA3l0U.roa (hash: rr4euxcMf4+ZXrKMACe3mGR+5zZFKDjuT9seOvH/4fA=)
                          4: R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer (hash: fwCKuxtzzirqS8FvTIV+k7he6U4wthwt1LkI0CdYJKc=)
                          5: UDn6-ZD0WTj18D8nHih3D--ZO_s.roa (hash: E0/WsIxOejz2/RTbLMdD/5U9XX5PVXs0IPlP2v1u8tI=)
                          6: ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer (hash: Pft9iYjBesYTNht4g1UqgMiTx81vUwBXh8MKS/81v8U=)
                          7: bW-_qXU9uNhGQz21NR2ansB8lr0.crl (hash: HOS7Rg6OM7mTBlurD/Ypv944T/cufYECmseD4xjrPmY=)
                          8: fDvN8JDIeg8h7b5wWCFK_F7J_SY.roa (hash: 3XTR+/4DackDLN++CL7fLb+4xpAjYp7KADxJhiiuXY4=)
                          9: fykdvBDNLvaFDLOeKcvquSaaNlM.roa (hash: 36Psre3MLHPEb3ezhbbE40C2QS1KDUyERdtNq15GTwU=)
                          10: lAN537Pqyt3IsX0kCwc4qs0Cejk.roa (hash: lXT5FVM7+7MTpRMcu84qhNRJxD2GNBRwCl7nT4luylk=)
                          11: laI1_vEYtlNzj-K0SXR_yGpd1TA.gbr (hash: UqQYG2z76G043/AlJNMTiXkQS0iMsC+J/mdxEEWdE3w=)
                          12: r-pLC2fDZMfxKp9PL1lylxFeQHs.roa (hash: NwnUQOTwUtYfhDg8EyWEkjuxKkBF9rlR8HB0QXbZKuA=)
                          13: xF8fZFbI8NRA4qk_N5CLpw6Nmj8.roa (hash: uVos6KXGCj74GgHG7sOPwpP0it60WyuUCM+9kzZw+Fw=)
Validation:               OK
Signature path:           rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
                          rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 24 Jul 2025 12:31:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 109220 (0x1aaa4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
        Validity
            Not Before: Jul 24 06:31:34 2025 GMT
            Not After : Jul  1 00:00:00 2026 GMT
        Subject: CN=C950BF2167383C4FF89588EDAE5194CEE6491FB2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:da:45:0c:00:be:b7:58:e2:31:61:75:d9:6e:
                    04:a8:65:67:71:84:8a:4e:db:4d:b5:a2:66:87:4d:
                    84:8a:8e:56:71:f9:6e:4b:33:ec:8e:40:e1:3d:ea:
                    e0:69:36:97:fc:e4:d2:29:88:8b:45:10:47:24:02:
                    5d:b1:eb:3d:60:6e:31:d8:d1:76:69:04:da:fa:82:
                    0a:50:ba:4d:ee:fc:f6:3c:8a:88:d3:55:a3:30:43:
                    c2:fd:33:a1:fe:c9:42:84:87:8a:f9:48:89:ba:8e:
                    ad:30:04:3a:25:e3:04:a2:a5:16:ae:60:8f:e4:6c:
                    8d:d2:b7:5d:24:22:02:89:83:9e:d3:7b:1d:4c:d4:
                    d9:b0:29:c2:57:61:ec:48:f2:f4:9a:fa:dd:ab:34:
                    2e:c8:be:f9:c3:6a:ef:5b:a9:f4:18:88:6b:1c:35:
                    db:69:c7:a7:03:ad:64:76:6f:55:54:82:39:bf:51:
                    4b:3a:a1:9a:3e:8c:09:f2:45:3b:04:c2:a4:91:b4:
                    24:90:1c:61:64:c8:fb:1f:77:6e:e5:8b:e5:55:fc:
                    43:0f:73:bd:fe:a8:3d:31:8e:9f:9b:a2:50:ea:19:
                    70:40:0f:00:2e:50:87:3f:5f:53:50:af:19:dd:83:
                    f1:b5:55:fd:42:da:40:dd:00:66:db:63:1a:f6:50:
                    3e:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:50:BF:21:67:38:3C:4F:F8:95:88:ED:AE:51:94:CE:E6:49:1F:B2
            X509v3 Authority Key Identifier:
                keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
                RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:d4:f6:8d:5c:0d:d2:ea:39:6c:c5:8c:79:e6:66:d5:61:6d:
         51:8d:d3:31:5c:3b:ac:23:99:15:f1:99:a7:83:f7:08:f8:50:
         16:46:c5:90:d6:4c:c8:08:ba:b9:48:78:46:90:a4:26:23:fa:
         64:5c:6f:c6:68:91:34:93:58:5d:54:8d:82:ac:59:f0:50:b3:
         95:fb:6d:a4:16:97:f5:87:0c:3e:3b:1a:c3:7d:d0:09:a3:a7:
         f4:e1:68:01:62:10:69:d8:3b:66:38:80:a0:27:27:59:f7:6f:
         82:e0:1a:3f:f2:db:bf:7a:b4:36:39:46:bc:4f:fd:5f:34:fb:
         32:b1:00:66:49:86:65:f6:bc:74:90:0e:b9:b8:9b:1d:2f:1d:
         64:d7:0a:f0:9d:1a:f8:dc:3d:2e:9f:2b:5c:df:46:38:96:57:
         9a:88:dd:89:82:22:a6:04:ae:83:d0:f3:46:ec:c3:fb:5c:da:
         0c:05:c0:00:78:7b:57:27:23:cf:68:8e:3a:b6:58:cb:70:68:
         1d:c8:dc:5d:e0:3d:ac:44:a1:48:9a:58:f8:10:53:11:c4:b0:
         e4:03:e5:63:1d:8e:3a:49:56:63:1b:81:e7:b3:dd:c9:50:3f:
         92:5f:34:60:3a:a5:b9:dc:39:8b:e8:67:76:75:8e:9a:aa:e0:
         e6:98:8f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 08:27:52 2025 by rpki-client