Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File:                     MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier:          egM9l//qkEWliP5Hh9fxK8//OzjC7WULQcOmc50NOJs=
Subject key identifier:   4A:26:4C:F4:39:20:F8:7F:23:47:41:F4:57:9C:EE:EA:95:85:FC:89
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer:       /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial:       019655A56348CB6AC29238377ABF13F9B7E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number:          0785
Signing time:             Mon 21 Apr 2025 00:00:24 +0000
Manifest this update:     Mon 21 Apr 2025 00:00:24 +0000
Manifest next update:     Tue 22 Apr 2025 00:00:24 +0000
Files and hashes:         1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
                          2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: zSmngFmMMaIg06XflezunZRR0w0OZYTOtsQSXoCzL+g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 22 Apr 2025 00:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:55:a5:63:48:cb:6a:c2:92:38:37:7a:bf:13:f9:b7:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
        Validity
            Not Before: Apr 21 00:00:24 2025 GMT
            Not After : Apr 22 00:00:24 2025 GMT
        Subject: CN=4a264cf43920f87f234741f4579ceeea9585fc89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:19:6d:84:4e:f0:e4:4d:24:ee:83:c5:eb:de:
                    a0:83:69:9f:62:75:21:2c:1f:f0:f4:bd:6c:2c:0b:
                    2e:30:6a:48:c1:75:84:b7:9d:f7:c4:1c:4e:a9:26:
                    4e:ae:7d:32:8d:2c:fd:b4:c5:49:85:ec:36:39:13:
                    ad:07:4a:d3:a6:2d:1b:60:68:e3:42:c1:9b:4a:26:
                    06:b3:ec:f0:0b:2f:89:ad:b7:50:3f:3a:a2:47:22:
                    d3:53:b4:9e:18:28:4e:88:6e:93:f9:1d:0f:05:ea:
                    57:af:dc:b9:d7:13:c1:ef:b7:91:a0:e4:69:76:6a:
                    ff:89:ed:70:b6:2e:2a:e0:b0:ee:12:ba:5a:19:7d:
                    cd:4d:3d:01:b9:74:75:57:f6:cb:5c:83:97:9a:a7:
                    b1:73:0f:ca:c8:73:65:0c:13:52:b2:97:bb:39:fb:
                    28:7a:24:59:ba:20:d6:1e:cd:94:ad:92:ef:42:fc:
                    99:fd:d2:6d:6b:70:e6:22:ae:f8:a6:fd:9d:07:6f:
                    2e:01:cb:5e:ab:f5:dd:40:23:5e:be:14:c6:07:23:
                    c9:ff:82:da:89:13:3a:22:31:6c:65:07:47:8d:a6:
                    01:25:cb:19:e2:27:c8:9e:2a:90:09:62:30:e6:33:
                    da:82:a8:a0:a6:42:9b:d9:aa:98:38:b1:2a:b7:56:
                    6c:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:26:4C:F4:39:20:F8:7F:23:47:41:F4:57:9C:EE:EA:95:85:FC:89
            X509v3 Authority Key Identifier:
                keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:f9:17:8a:7f:5b:b8:2f:72:33:77:dd:a3:08:d5:37:fb:8a:
         18:45:f1:1a:21:01:30:d0:45:a8:ea:1b:b5:a1:57:8e:7e:7d:
         a4:ec:3b:15:27:40:f8:1f:fb:b3:02:f8:a6:ff:42:c4:06:88:
         2a:dc:7e:2b:c7:df:ef:db:ea:83:51:99:18:9f:a2:90:6b:eb:
         9f:40:5d:ff:76:55:d7:54:cf:1d:ca:5a:fd:c6:7a:17:43:05:
         2a:2d:f5:58:0f:a0:e3:76:48:cd:9c:79:33:0a:04:59:5b:67:
         07:98:0b:f4:d3:35:6c:9f:11:27:bf:b0:50:a6:54:6c:21:9c:
         99:cf:00:40:41:26:ae:4b:78:80:9c:4c:f8:c1:91:0a:db:da:
         bd:02:ff:5f:f2:aa:25:64:14:1c:f6:69:bb:4d:0c:d5:0f:93:
         71:4e:93:d6:e1:2d:62:a3:88:fe:08:7f:3b:f9:5e:07:15:30:
         31:d1:b2:fc:e8:e4:b3:8f:e1:76:cb:26:aa:8b:61:1f:98:b5:
         6b:a2:da:dd:00:82:2b:f2:f0:e7:88:0c:2b:1f:86:3d:6f:0e:
         54:74:44:fb:6f:25:86:b5:3f:2f:24:6a:e7:4a:86:ed:4d:9e:
         09:62:d4:30:b9:fa:0d:7c:09:e5:a1:b0:34:b8:27:a2:10:8d:
         83:1b:0c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:45:28 2025 by rpki-client