Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File:                     gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier:          EPU/Eu4vIVUcgS1/RKQzWjyH3/qbhxRYhgIRLXL8g08=
Subject key identifier:   23:94:AC:7F:A1:E6:60:9B:CE:9F:8A:82:61:35:1B:BA:26:33:9B:AD
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer:       /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial:       019757C87C82EFB2F374681C716A04A9478D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number:          0EE6
Signing time:             Tue 10 Jun 2025 03:00:46 +0000
Manifest this update:     Tue 10 Jun 2025 03:00:46 +0000
Manifest next update:     Wed 11 Jun 2025 03:00:46 +0000
Files and hashes:         1: bNgvelwVPVFr3h5RMUdr0LrSObg.roa (hash: 8+lwoJWYw+/prpcpMbrRUmfEGjzLktOqFPr4MMdHS+M=)
                          2: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: tWK9rb4usoobJWIAfT2p4yquCIXxxCOVDAjhEagrqOs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:c8:7c:82:ef:b2:f3:74:68:1c:71:6a:04:a9:47:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
        Validity
            Not Before: Jun 10 03:00:46 2025 GMT
            Not After : Jun 11 03:00:46 2025 GMT
        Subject: CN=2394ac7fa1e6609bce9f8a8261351bba26339bad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:ec:2d:41:66:00:f1:98:c2:bd:5f:3b:ea:cc:
                    23:21:d4:ff:63:11:53:5d:92:bd:09:4c:7f:66:ef:
                    2c:49:62:53:d9:7a:31:6c:c2:ad:ab:f4:ae:ce:76:
                    32:8e:f7:19:b2:04:d5:b2:02:a0:68:41:97:db:ee:
                    59:1f:2f:90:48:29:2a:70:9b:47:a1:62:c6:3d:43:
                    14:5c:fd:fe:79:37:84:57:b4:45:39:4d:0c:c5:ca:
                    93:10:21:7a:b1:e4:99:f3:df:0f:b6:04:bc:2f:66:
                    81:d8:cd:fe:24:07:88:67:5a:92:79:41:fc:e3:98:
                    ce:50:49:ab:f8:cf:31:91:ac:09:c2:dc:8b:bf:b5:
                    b4:9b:d1:1e:51:42:8a:99:f6:c8:87:3b:7c:e0:86:
                    48:7c:e3:37:f6:dc:ac:82:34:5b:86:8e:72:cb:07:
                    0d:ef:cc:71:94:82:ee:0b:ba:b5:15:37:c5:6d:ee:
                    90:d0:ee:59:0e:27:b7:1c:84:d0:73:28:a3:1c:07:
                    9c:96:ed:04:65:43:74:4f:e2:e9:51:89:b2:f0:ef:
                    f4:d3:0f:8f:25:ec:f6:d9:74:ca:7b:47:aa:86:cc:
                    49:89:3b:fe:82:ea:d5:78:a2:70:5c:a1:fa:35:d3:
                    6e:4d:95:56:48:f0:b3:fe:64:40:f6:9c:55:d9:13:
                    8e:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:94:AC:7F:A1:E6:60:9B:CE:9F:8A:82:61:35:1B:BA:26:33:9B:AD
            X509v3 Authority Key Identifier:
                keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:ef:1e:70:8e:da:85:9c:34:75:20:ec:fe:3a:ab:09:09:8b:
         0c:b6:15:e2:df:88:0a:0a:cc:e0:87:2a:f2:f1:4a:0a:0f:e0:
         1d:6e:d6:b0:4f:f3:39:a7:c6:fe:20:db:a4:e1:93:8b:b6:06:
         72:87:f3:66:27:c4:e5:ce:a9:56:18:e8:bd:4d:f8:75:a4:5c:
         fb:bc:36:35:40:a9:32:40:a7:7b:fd:ee:73:cb:41:26:c1:77:
         6a:61:a5:29:50:18:96:44:71:10:33:f1:20:53:f8:fc:94:97:
         26:2d:23:dc:ed:95:a4:e9:f1:ed:73:24:26:22:8d:02:28:db:
         51:a2:7c:8d:4d:c0:80:43:47:21:13:d5:c5:78:f7:50:8e:c3:
         3f:ed:f0:72:c6:7a:be:56:ac:71:44:cf:12:77:54:f3:cd:48:
         16:6e:86:2a:58:09:80:13:67:78:f6:56:fb:f9:4f:1e:d0:26:
         42:cf:22:17:7c:05:c1:00:7a:bb:6d:08:6f:2b:a2:22:3a:17:
         32:ab:78:3d:07:ea:c1:e0:eb:d7:36:bc:ca:38:0c:1d:b4:16:
         c5:09:9b:a0:05:08:99:be:21:2b:35:fc:11:7b:81:6d:b9:78:
         19:1a:6f:84:2d:11:40:81:39:e0:21:32:39:f0:f7:9a:07:a4:
         52:06:e2:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdXyHyC77LzdGgccWoEqUeNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMzZjYTE1MWVkNGMzMjNkNDk4ZjA2ZGQ3YzVhZTM5NGNl
YWM1OWYwHhcNMjUwNjEwMDMwMDQ2WhcNMjUwNjExMDMwMDQ2WjAzMTEwLwYDVQQD
EygyMzk0YWM3ZmExZTY2MDliY2U5ZjhhODI2MTM1MWJiYTI2MzM5YmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuwtQWYA8ZjCvV876swjIdT/YxFT
XZK9CUx/Zu8sSWJT2XoxbMKtq/SuznYyjvcZsgTVsgKgaEGX2+5ZHy+QSCkqcJtH
oWLGPUMUXP3+eTeEV7RFOU0MxcqTECF6seSZ898PtgS8L2aB2M3+JAeIZ1qSeUH8
45jOUEmr+M8xkawJwtyLv7W0m9EeUUKKmfbIhzt84IZIfOM39tysgjRbho5yywcN
78xxlILuC7q1FTfFbe6Q0O5ZDie3HITQcyijHAeclu0EZUN0T+LpUYmy8O/00w+P
Jez22XTKe0eqhsxJiTv+gurVeKJwXKH6NdNuTZVWSPCz/mRA9pxV2ROOtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCOUrH+h5mCbzp+KgmE1G7omM5utMB8GA1UdIwQY
MBaAFIM2yhUe1MMj1JjwbdfFrjlM6sWfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3piS0ZSN1V3eVBVbVBCdDE4V3VPVXpxeFo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xZmFjZTEtOWUyOC00ZDg5LWJmNTIt
OTE3OTUzMTk4NDVjLzEvZ3piS0ZSN1V3eVBVbVBCdDE4V3VPVXpxeFo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8xZmFjZTEtOWUyOC00ZDg5LWJmNTItOTE3OTUzMTk4NDVj
LzEvZ3piS0ZSN1V3eVBVbVBCdDE4V3VPVXpxeFo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqO8ecI7a
hZw0dSDs/jqrCQmLDLYV4t+ICgrM4Icq8vFKCg/gHW7WsE/zOafG/iDbpOGTi7YG
cofzZifE5c6pVhjovU34daRc+7w2NUCpMkCne/3uc8tBJsF3amGlKVAYlkRxEDPx
IFP4/JSXJi0j3O2VpOnx7XMkJiKNAijbUaJ8jU3AgENHIRPVxXj3UI7DP+3wcsZ6
vlascUTPEndU881IFm6GKlgJgBNnePZW+/lPHtAmQs8iF3wFwQB6u20IbyuiIjoX
Mqt4PQfqweDr1za8yjgMHbQWxQmboAUImb4hKzX8EXuBbbl4GRpvhC0RQIE54CEy
OfD3mgekUgbigw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 07:36:43 2025 by rpki-client