Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File:                     g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier:          WtPdiuChe0C8JFSwDGASzzL+MZvrSYG6pk7+ralAU1c=
Subject key identifier:   5D:0A:3C:FD:B8:CF:28:EF:43:75:54:19:5E:5E:80:A2:77:A8:20:91
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer:       /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial:       01975BA4E8918FCB773C8FB70DCBF73335A6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number:          10CB
Signing time:             Tue 10 Jun 2025 21:00:23 +0000
Manifest this update:     Tue 10 Jun 2025 21:00:23 +0000
Manifest next update:     Wed 11 Jun 2025 21:00:23 +0000
Files and hashes:         1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
                          2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: ZqrGkX1NAlpBDtU4K4SBAX359CMz9sX3Fced94uhUf0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:45:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:a4:e8:91:8f:cb:77:3c:8f:b7:0d:cb:f7:33:35:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
        Validity
            Not Before: Jun 10 21:00:23 2025 GMT
            Not After : Jun 11 21:00:23 2025 GMT
        Subject: CN=5d0a3cfdb8cf28ef437554195e5e80a277a82091
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:9c:f0:cb:68:fe:75:52:a4:59:93:d4:3f:ad:
                    5c:b5:5c:74:ad:14:b8:e7:f1:2b:99:62:0d:3d:1b:
                    19:02:64:8f:2b:e4:e4:b8:b0:da:ce:c8:a0:c8:6a:
                    29:4f:75:dc:1c:81:40:16:df:52:c8:f9:04:36:79:
                    8e:0d:20:d2:06:7f:88:39:00:3d:e3:0c:ef:17:cb:
                    c6:5a:b8:63:e2:40:a0:59:88:87:7f:3d:5a:fb:83:
                    1c:83:c7:50:54:56:0f:b9:3d:7d:9c:b3:59:9a:ce:
                    dc:4a:82:a7:06:cb:a3:73:ce:1b:ed:68:98:26:a2:
                    a4:9b:c7:b7:55:83:63:38:0f:4a:f7:8d:53:5c:38:
                    3d:d2:7a:44:e3:c7:78:dc:f9:81:a6:12:7e:0d:df:
                    13:b1:ec:c8:1f:90:70:69:e0:1e:df:d9:a9:d6:f8:
                    5e:c2:d5:d5:dd:81:8b:47:82:71:5b:49:df:20:14:
                    aa:90:d3:68:8d:8c:e4:b1:c5:63:4f:b1:35:f9:61:
                    f4:1d:ce:60:49:0f:71:82:dc:be:31:6a:e0:ed:fa:
                    2e:8c:22:4d:31:05:ce:06:4b:7a:06:61:78:1c:d8:
                    84:10:c9:ed:85:7d:6a:57:35:e2:13:15:02:12:a4:
                    f7:7f:cd:08:4f:f4:e9:f9:93:d4:b4:9e:77:c3:ec:
                    f6:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:0A:3C:FD:B8:CF:28:EF:43:75:54:19:5E:5E:80:A2:77:A8:20:91
            X509v3 Authority Key Identifier:
                keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:b0:39:19:dd:06:a5:82:1f:a4:cf:eb:dc:6a:d6:38:9e:1c:
         65:b8:05:f8:91:68:a6:a9:2c:e2:ba:87:4f:77:8d:22:6f:e9:
         8e:cb:81:99:fb:28:a9:84:08:8c:ce:1c:67:29:36:5d:c4:ab:
         e7:6d:18:8e:e9:e6:8f:36:c1:f8:23:80:7a:41:6e:5c:fd:a3:
         8b:9d:d5:5f:ee:7e:da:6a:95:79:3c:ee:89:59:d8:26:10:a6:
         25:87:d9:87:33:4e:e5:88:f8:20:df:75:65:e3:d5:9a:b7:b9:
         88:0b:6e:2f:14:34:fe:22:e8:60:87:d8:84:ef:08:e7:b2:87:
         1a:a1:38:a0:45:69:6c:ed:ee:3a:5c:79:37:74:d9:2e:9a:6e:
         4c:6d:e5:71:e7:7e:d1:d0:92:fc:46:c9:e5:2e:e5:06:99:79:
         6a:40:3d:a2:2c:42:3c:fc:a0:1f:89:66:34:07:fa:8f:68:71:
         af:a0:19:67:6d:ef:26:a9:25:7b:1f:15:62:c4:07:12:4d:28:
         4c:26:7b:f7:a0:ff:c5:16:5d:69:aa:68:46:61:b9:ae:27:1c:
         c4:e8:2e:2b:a8:80:95:1f:92:18:10:be:84:ad:d5:e5:b5:28:
         65:a8:9b:33:4a:c7:c9:ae:73:99:b7:cf:cc:b6:9d:c9:67:6f:
         62:3b:a9:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 04:37:13 2025 by rpki-client