Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File:                     8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier:          5P/SaDzgTFEdoF+cXcTNQzZHRP4gR22ecP0EK93EY5o=
Subject key identifier:   50:49:3F:A7:66:C8:95:B7:77:00:74:AB:32:68:13:2D:E4:98:8C:1E
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer:       /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial:       0197531035362E46A66DBCAA88149C12FBE6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number:          1588
Signing time:             Mon 09 Jun 2025 05:01:00 +0000
Manifest this update:     Mon 09 Jun 2025 05:01:00 +0000
Manifest next update:     Tue 10 Jun 2025 05:01:00 +0000
Files and hashes:         1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: 1Ip9JsG7ncQlpPyhn5WC3bUIqur15uyuu6omU3labFA=)
                          2: _ez--C0KRSwSRmH4lyGu5zUk1HU.roa (hash: KFrEJZmjOcmfSBpY7GDcoqxz0mSObldiNHL67FlKf8w=)
                          3: bHl4gP55LgKhhE_L1xho4xppPEo.roa (hash: rqcbN4+Al2DH9m3ppJi1E488vxtH8t3M86sJsdVuXgY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 05:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:10:35:36:2e:46:a6:6d:bc:aa:88:14:9c:12:fb:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
        Validity
            Not Before: Jun  9 05:01:00 2025 GMT
            Not After : Jun 10 05:01:00 2025 GMT
        Subject: CN=50493fa766c895b7770074ab3268132de4988c1e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:cf:d2:94:c8:3c:5f:d0:d4:b5:9d:f8:9e:35:
                    5f:25:f8:0c:6c:e1:5c:b4:e2:07:7a:64:fd:f5:37:
                    48:bb:fe:5e:18:67:a7:e7:a4:82:26:4d:e3:f8:f3:
                    21:aa:39:4a:3e:55:9d:10:83:aa:ee:3f:1f:91:89:
                    14:a3:d9:6b:18:b9:cf:4d:9c:6c:b9:4e:e8:d0:bd:
                    0f:b0:9e:e2:2e:e3:99:f8:30:8c:73:00:d7:1b:86:
                    cb:c0:03:00:bb:5a:df:22:67:4d:5d:e8:67:3d:7f:
                    70:d1:f4:2f:54:3c:1e:11:20:da:51:04:15:73:85:
                    86:2d:80:bd:9e:f5:7f:c3:7e:17:42:50:37:ca:11:
                    08:dd:99:44:82:cc:c5:66:0e:be:c0:1f:9e:33:56:
                    c5:a2:22:37:74:a0:bc:da:14:f2:1d:9f:79:ae:60:
                    46:0a:77:a1:80:a7:bb:5c:5d:78:df:6b:52:d9:20:
                    22:cb:cb:cd:bb:a7:fb:68:cf:4a:1e:1d:3b:68:40:
                    1c:e2:10:39:4a:2d:cc:c5:7b:27:bc:c3:36:92:09:
                    7b:c0:5e:6a:95:73:2a:0d:f7:09:7b:29:df:18:ee:
                    fc:13:ad:9e:3d:7c:dd:5c:e4:9e:e6:87:2d:9d:16:
                    d0:c1:21:a6:f1:26:ca:fd:b6:21:71:d4:ee:bf:5a:
                    b8:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:49:3F:A7:66:C8:95:B7:77:00:74:AB:32:68:13:2D:E4:98:8C:1E
            X509v3 Authority Key Identifier:
                keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:c4:44:c1:27:5f:a9:a6:e2:f8:1d:c7:85:39:3e:3b:34:94:
         4b:e0:09:e4:89:c8:89:54:87:59:d7:db:ff:87:28:bf:51:d7:
         49:95:0b:b1:8f:6f:72:5f:60:5e:71:e8:6f:a8:47:11:b8:d8:
         fe:24:87:10:3f:19:bd:e9:99:84:ca:1b:7c:bf:f9:69:89:3b:
         02:e5:3a:c6:ce:83:e6:94:b9:9e:40:ba:f0:4b:b6:4a:08:7f:
         b9:e2:02:30:7d:67:ff:68:37:c5:d6:42:be:69:0f:3b:0f:45:
         6b:13:77:04:37:2a:b5:9a:41:84:84:3d:35:3c:57:a3:3b:61:
         de:a4:ab:8e:ec:95:4f:a6:cf:6c:05:4a:b6:a5:8a:f6:f6:ed:
         4e:0c:32:d1:80:19:41:9a:ed:10:e8:3f:bd:0b:8a:21:97:2d:
         d6:66:b2:18:19:99:e2:d8:40:07:8d:d9:5b:63:18:1c:54:ad:
         42:d7:bb:14:10:fd:b1:6c:ac:dd:1f:4a:94:1c:13:16:63:fa:
         84:17:04:77:d5:af:4a:13:64:d3:e0:9f:1f:4d:de:7a:cb:ac:
         a7:27:f8:a3:5a:03:2b:e2:9e:59:a2:0e:ea:3b:68:79:92:bc:
         e6:58:4c:2a:ba:ce:e0:0b:ca:01:91:dd:67:d6:28:a9:fa:33:
         ca:66:62:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTEDU2LkambbyqiBScEvvmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMmJlOTgyMDYwYTQzNzM0ZDBhZDEyNmFkNDZkYTJmMzk1
YzlkZWYwHhcNMjUwNjA5MDUwMTAwWhcNMjUwNjEwMDUwMTAwWjAzMTEwLwYDVQQD
Eyg1MDQ5M2ZhNzY2Yzg5NWI3NzcwMDc0YWIzMjY4MTMyZGU0OTg4YzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsc/SlMg8X9DUtZ34njVfJfgMbOFc
tOIHemT99TdIu/5eGGen56SCJk3j+PMhqjlKPlWdEIOq7j8fkYkUo9lrGLnPTZxs
uU7o0L0PsJ7iLuOZ+DCMcwDXG4bLwAMAu1rfImdNXehnPX9w0fQvVDweESDaUQQV
c4WGLYC9nvV/w34XQlA3yhEI3ZlEgszFZg6+wB+eM1bFoiI3dKC82hTyHZ95rmBG
CnehgKe7XF1432tS2SAiy8vNu6f7aM9KHh07aEAc4hA5Si3MxXsnvMM2kgl7wF5q
lXMqDfcJeynfGO78E62ePXzdXOSe5octnRbQwSGm8SbK/bYhcdTuv1q4LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFBJP6dmyJW3dwB0qzJoEy3kmIweMB8GA1UdIwQY
MBaAFPMr6YIGCkNzTQrRJq1G2i85XJ3vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGIt
OTliY2JlNmQ3ZjYzLzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9kYTNiMWQtN2FjZi00NTFmLWI2OGItOTliY2JlNmQ3ZjYz
LzEvOHl2cGdnWUtRM05OQ3RFbXJVYmFMemxjbmU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV8REwSdf
qabi+B3HhTk+OzSUS+AJ5InIiVSHWdfb/4cov1HXSZULsY9vcl9gXnHob6hHEbjY
/iSHED8ZvemZhMobfL/5aYk7AuU6xs6D5pS5nkC68Eu2Sgh/ueICMH1n/2g3xdZC
vmkPOw9FaxN3BDcqtZpBhIQ9NTxXozth3qSrjuyVT6bPbAVKtqWK9vbtTgwy0YAZ
QZrtEOg/vQuKIZct1mayGBmZ4thAB43ZW2MYHFStQte7FBD9sWys3R9KlBwTFmP6
hBcEd9WvShNk0+CfH03eesuspyf4o1oDK+KeWaIO6jtoeZK85lhMKrrO4AvKAZHd
Z9YoqfozymZiMg==
-----END CERTIFICATE-----
Generated at Mon Jun 9 12:45:03 2025 by rpki-client