Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
File:                     nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json)
Hash identifier:          eY0a0RUu6+0IrxgJllBkzjczUGIyLU4jbBhvu0qGzc0=
Subject key identifier:   08:99:CC:79:09:9C:99:91:B9:C3:89:14:48:29:7E:D6:08:F8:3E:03
Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0
Certificate issuer:       /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
Certificate serial:       019767724002D97E0AE68D60B18E75409096
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
Manifest number:          0804
Signing time:             Fri 13 Jun 2025 04:00:30 +0000
Manifest this update:     Fri 13 Jun 2025 04:00:30 +0000
Manifest next update:     Sat 14 Jun 2025 04:00:30 +0000
Files and hashes:         1: cb8dWgekdgTmGEn_puzoSrtajs0.roa (hash: klMt7aeT4NJnkoShXspgSHaq5Jk7n53EuU54bLRTaLc=)
                          2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: w8Y1xj5qM/3nSMbdYcRdYfSp6nbchBzTPHqVffE3Y5k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 04:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:72:40:02:d9:7e:0a:e6:8d:60:b1:8e:75:40:90:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0
        Validity
            Not Before: Jun 13 04:00:30 2025 GMT
            Not After : Jun 14 04:00:30 2025 GMT
        Subject: CN=0899cc79099c9991b9c3891448297ed608f83e03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:a8:88:55:1f:1d:60:7b:56:8e:9d:9c:06:3f:
                    3e:31:1f:32:27:cd:2b:70:c7:53:01:35:ed:20:d6:
                    cf:b7:b8:9b:fd:69:5a:8b:4d:96:11:0e:27:35:e1:
                    b5:9c:5a:dd:4b:d1:a3:2f:24:28:bc:cb:b0:4f:1e:
                    8d:47:e0:41:1f:f1:f2:fc:d3:2e:0f:81:bc:ee:3f:
                    d1:b5:fe:9b:17:5c:11:06:2d:47:9b:be:ee:6d:36:
                    c5:25:22:cc:b7:02:dd:16:02:2f:86:f1:3c:12:38:
                    09:b8:5f:e4:a4:73:7d:cd:a6:02:b9:df:1e:2c:82:
                    ac:de:ba:d6:d2:28:e5:b6:64:5d:14:2d:a6:c3:10:
                    29:78:f7:dc:1b:e9:ee:95:1d:23:e2:7c:60:05:d0:
                    fd:fd:83:80:62:ff:b1:4b:96:dd:bb:89:57:bf:13:
                    7c:79:75:92:63:e7:c3:d0:74:f5:1c:19:6d:ac:80:
                    63:1f:81:ec:c5:4f:32:67:72:6b:d6:af:82:56:0c:
                    35:46:5b:3e:a8:35:3b:fa:30:c7:0f:0d:a7:dc:ff:
                    23:ae:99:a0:b8:e3:b9:ce:8a:40:eb:ff:2d:d6:59:
                    59:97:9d:57:e2:11:bc:3e:97:c9:f7:0d:21:4b:8a:
                    a2:5d:4a:1c:13:9d:1e:47:7b:e9:10:a9:69:24:cf:
                    82:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:99:CC:79:09:9C:99:91:B9:C3:89:14:48:29:7E:D6:08:F8:3E:03
            X509v3 Authority Key Identifier:
                keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:d6:4c:cf:37:e9:04:1d:00:16:a0:f9:6d:f9:69:e5:7c:e5:
         ba:ae:75:41:df:26:cd:42:1d:33:8c:10:00:ac:84:40:9a:7d:
         5c:a0:36:46:20:77:b9:7e:60:cd:9c:b9:00:51:51:0c:86:30:
         d1:7c:48:0b:0c:6a:d4:5f:95:55:c7:f0:37:28:cd:46:fb:2a:
         ff:2d:6e:12:2f:83:6d:a7:5a:c4:83:e4:6a:8c:d6:b9:23:56:
         8d:23:bb:bd:ec:fc:af:64:ce:96:5d:a7:ed:8f:51:54:98:42:
         6c:94:2c:a5:3e:df:50:d3:d4:3f:d9:30:43:46:00:13:16:ea:
         ea:af:eb:5d:36:85:36:74:cc:82:c1:b5:54:49:25:30:2f:fc:
         d9:48:58:03:d1:c4:6f:22:6d:da:c6:40:47:3d:b4:a2:94:db:
         38:f9:60:88:60:e4:7b:30:06:89:ce:58:05:d0:17:80:ed:53:
         29:92:5d:7a:70:b9:c4:c8:ee:28:53:eb:e3:7a:10:93:f1:2e:
         cc:1a:a3:13:0e:4c:b2:9a:9f:cb:b7:ce:b6:76:1a:1b:93:7f:
         40:f1:af:db:90:70:62:ce:42:14:04:93:f4:52:ff:37:38:86:
         a7:03:d8:fc:b4:62:c8:d9:6f:a3:5e:fd:a0:6c:02:cc:13:dd:
         e8:ae:24:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:25:18 2025 by rpki-client