Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File:                     fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier:          wubvsJzJhkiJS9lyb8ReI1HtD+u2z4bUDjRv94QEPDs=
Subject key identifier:   74:63:DE:0F:2C:F9:B7:1B:21:67:F4:87:B6:1C:B7:C4:E3:DC:4F:A9
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer:       /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial:       01975E6F221053DF2A4E1D7C9C4A2822A1F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number:          03D0
Signing time:             Wed 11 Jun 2025 10:00:30 +0000
Manifest this update:     Wed 11 Jun 2025 10:00:30 +0000
Manifest next update:     Thu 12 Jun 2025 10:00:30 +0000
Files and hashes:         1: 7IU0huufqQxYxItg8zFZPOwzYRM.roa (hash: I4C8M2jxvU1m60xK7AT2Uz7jOA8Cd0LrtZ3lmEnNBLc=)
                          2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: yOweoFp3q3vcKeZZAN9ZwQ98SNecbOwKhQKURKSAWio=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 10:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5e:6f:22:10:53:df:2a:4e:1d:7c:9c:4a:28:22:a1:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
        Validity
            Not Before: Jun 11 10:00:30 2025 GMT
            Not After : Jun 12 10:00:30 2025 GMT
        Subject: CN=7463de0f2cf9b71b2167f487b61cb7c4e3dc4fa9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:0e:b1:c7:59:27:34:46:f8:69:c1:a7:f7:7a:
                    12:d8:5f:9f:22:55:e4:5a:26:24:66:6c:93:5a:9b:
                    37:f0:f3:e4:eb:44:70:bc:78:fa:1b:55:53:00:b0:
                    f6:9e:33:f8:5b:e1:e1:4e:ca:80:ba:4d:39:b8:ec:
                    f7:4b:19:9e:c5:e1:24:a8:ca:d9:bb:b8:fe:5f:93:
                    a8:4d:b3:5c:60:d7:3e:11:14:26:03:02:7c:13:1c:
                    ce:bf:60:e5:42:71:cf:c2:1b:41:e6:15:68:44:b6:
                    6f:1d:9a:e3:59:b3:fe:9b:ad:d9:ce:fd:68:7d:68:
                    f0:0c:2a:e1:94:c7:8d:89:92:e9:96:53:06:3e:bd:
                    fc:a3:2d:44:f8:8b:11:80:0f:79:ab:34:a2:6e:17:
                    1f:c1:73:09:78:0a:4e:4b:85:9e:ca:7b:f0:c1:9b:
                    cb:d4:45:ea:0b:b4:6a:72:0c:3f:3d:0d:31:70:e1:
                    70:bc:33:59:0e:0f:d1:fe:7f:58:66:d4:96:25:19:
                    af:db:eb:7b:5c:6e:51:44:42:6f:42:f4:b7:25:36:
                    61:af:ac:09:2f:2d:76:de:a2:6f:4b:6d:7e:26:cf:
                    06:23:c2:2b:80:83:6b:13:c6:db:c6:78:43:13:6c:
                    af:7c:1b:95:a7:5c:49:a9:f6:54:d0:6a:dd:bc:63:
                    fd:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:63:DE:0F:2C:F9:B7:1B:21:67:F4:87:B6:1C:B7:C4:E3:DC:4F:A9
            X509v3 Authority Key Identifier:
                keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:59:21:d2:8a:0b:e7:1f:98:6f:56:d4:3e:0b:01:4b:c0:92:
         57:49:21:8e:91:e8:7d:80:10:c6:3a:b6:da:3e:3b:f4:84:4d:
         c3:db:63:44:75:96:d9:6a:c8:66:d2:72:01:71:bb:81:8c:e1:
         2b:6d:bb:f5:98:6c:47:90:a1:f7:03:19:8a:13:90:02:d4:57:
         ce:44:7e:55:86:c3:10:ae:98:2d:6d:19:85:6e:8d:7d:4a:de:
         89:cd:9c:66:ca:3d:52:dc:21:db:c0:ed:c1:ce:19:72:da:31:
         bd:a8:fa:2b:50:9f:ad:79:a7:b4:8e:87:0a:61:9f:6b:91:a2:
         31:f0:99:1d:3e:47:ef:81:db:cf:97:58:69:5a:5e:62:98:4a:
         b3:ca:54:77:32:51:6c:1a:35:ec:77:b9:41:ed:c9:57:01:b2:
         dd:91:c3:47:9d:60:5f:3d:d4:d8:b7:92:9a:0e:92:19:5b:20:
         99:82:80:de:49:51:4b:91:27:49:26:8a:3b:ee:40:90:04:42:
         ce:1b:a1:e3:db:dc:73:36:0e:35:99:8e:a1:60:0c:fe:2a:e6:
         68:f9:fc:06:46:5c:9f:ac:00:ef:a6:01:97:9b:e5:39:fd:06:
         96:92:b7:92:d4:bd:d5:a4:ce:a5:bd:74:96:85:e3:d1:d0:b1:
         71:8d:84:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:32:34 2025 by rpki-client