Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File:                     aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier:          SyL8612WtACmBo0sNrCYU/Tx0fZoHWYmE7/j78ATXj4=
Subject key identifier:   7D:14:2E:C6:F8:0C:12:CC:4F:8B:46:7E:03:D7:99:BE:C2:13:E9:16
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer:       /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial:       01976D06D6FDE097A2B9CC8B959BD42C187C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number:          0FF1
Signing time:             Sat 14 Jun 2025 06:00:54 +0000
Manifest this update:     Sat 14 Jun 2025 06:00:54 +0000
Manifest next update:     Sun 15 Jun 2025 06:00:54 +0000
Files and hashes:         1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=)
                          2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: nSC7vs/qAVHEDKQdWkIGOqXkQQKlXOTZs6DzCi9pPe8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:06:d6:fd:e0:97:a2:b9:cc:8b:95:9b:d4:2c:18:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
        Validity
            Not Before: Jun 14 06:00:54 2025 GMT
            Not After : Jun 15 06:00:54 2025 GMT
        Subject: CN=7d142ec6f80c12cc4f8b467e03d799bec213e916
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ba:8a:16:c1:72:57:c1:c2:7f:e9:ae:bf:fe:
                    9c:fd:56:3a:7e:aa:96:fb:4e:8c:23:74:bc:fa:4b:
                    7a:5f:1b:8d:cb:84:f4:04:a4:f2:9a:7e:50:ab:b1:
                    26:e8:ee:5e:2b:99:f7:41:a3:b8:83:32:4b:5f:62:
                    5d:c2:3b:4c:6c:91:ba:ed:c6:2a:f0:10:4b:7f:37:
                    d9:07:9b:78:b8:0d:ce:9c:5e:01:8d:e4:1f:fe:51:
                    c1:0e:24:fb:da:38:b4:75:e8:e0:38:f4:59:d0:90:
                    9e:c3:b8:20:ff:24:fe:e6:ba:03:5c:ea:74:c8:43:
                    f2:8b:fd:ac:91:89:33:04:75:ba:58:6d:43:81:27:
                    ec:d2:12:06:dc:9a:82:ad:3f:3a:88:31:46:c5:cf:
                    5d:20:ea:40:3d:8c:2a:87:6d:7f:50:74:df:47:8b:
                    ec:4f:58:21:2f:b1:67:42:72:83:5d:fd:8b:85:30:
                    ff:1d:12:89:36:21:f3:61:ea:b5:05:09:72:df:21:
                    b4:77:4f:06:e6:57:cd:68:ad:44:af:01:3c:50:55:
                    87:49:c1:1e:5e:30:a4:ab:a5:9f:2b:09:08:91:1a:
                    48:93:14:13:ef:32:97:89:e2:88:c6:15:98:4d:1d:
                    43:69:15:96:7b:e8:76:41:42:08:45:7a:25:25:ba:
                    d4:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:14:2E:C6:F8:0C:12:CC:4F:8B:46:7E:03:D7:99:BE:C2:13:E9:16
            X509v3 Authority Key Identifier:
                keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:fc:36:2d:07:26:63:88:71:5e:00:18:57:e6:c2:71:f8:e5:
         e5:69:b7:3a:42:d2:1d:a4:6f:53:9b:17:5c:d0:43:53:61:0a:
         22:c2:e4:6b:86:94:75:85:44:b9:3c:b4:e8:69:5f:d3:5f:f6:
         26:dc:39:db:93:f6:01:45:bc:fc:62:97:21:c1:28:01:96:87:
         5f:79:f1:01:e3:ef:40:f6:75:5a:cb:4e:b9:b0:b3:b9:33:69:
         56:cb:52:72:b9:37:39:59:b0:1e:2d:8c:77:89:bc:d2:22:4c:
         b4:d2:f3:cd:38:06:93:e3:f5:3d:4f:70:cb:2e:04:b9:62:c6:
         fc:dc:2c:05:8d:47:9c:75:50:34:90:df:29:5a:c0:c5:a2:78:
         b8:29:8f:18:98:ae:5d:dd:89:fe:1f:fe:84:45:8d:b5:be:0f:
         07:09:8b:39:80:40:a4:32:1c:f7:68:a2:15:32:cd:f8:18:97:
         68:e0:6e:1b:8d:7f:0d:a4:e6:d3:10:35:31:46:cc:32:ea:79:
         bd:27:d1:58:a4:b2:42:3b:4e:d7:75:7a:14:73:ce:d9:77:5b:
         6b:7c:71:87:c3:ef:4a:b3:35:53:fa:0c:e0:07:c0:fb:2e:1f:
         35:12:03:0d:27:54:55:6d:ae:41:34:e5:ac:3d:de:f4:48:15:
         d3:f6:48:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:19:46 2025 by rpki-client