Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File:                     aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier:          Iooqa0Te+4oq9WrhiqchUIVlWiWANuX579CBdxVgy8w=
Subject key identifier:   C2:C6:C3:FA:0A:F6:E7:FE:A5:B3:2D:56:F8:FB:FC:81:DD:34:88:56
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer:       /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial:       0197673B5DD667F6BE3F9D335D0864D4219F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number:          0FEE
Signing time:             Fri 13 Jun 2025 03:00:33 +0000
Manifest this update:     Fri 13 Jun 2025 03:00:33 +0000
Manifest next update:     Sat 14 Jun 2025 03:00:33 +0000
Files and hashes:         1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=)
                          2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: d28C0fAhaEvaW0lT97O3qCNSaV+hrL7dpX1gM7j050A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 03:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:3b:5d:d6:67:f6:be:3f:9d:33:5d:08:64:d4:21:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
        Validity
            Not Before: Jun 13 03:00:33 2025 GMT
            Not After : Jun 14 03:00:33 2025 GMT
        Subject: CN=c2c6c3fa0af6e7fea5b32d56f8fbfc81dd348856
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:4f:d2:73:8a:0a:7b:91:fa:c3:8c:d3:3b:e1:
                    4a:fa:bb:97:9e:f3:58:25:bb:1b:fe:41:3f:d8:b4:
                    22:07:fe:74:a5:36:12:0b:f9:c2:91:68:8f:7a:8b:
                    c0:09:62:f3:aa:f1:d5:e7:30:b8:a7:06:1b:65:77:
                    2e:bd:c7:e1:04:aa:53:a0:07:ac:73:42:5d:3d:7e:
                    1b:fe:fa:13:79:cb:d4:b4:49:c4:52:97:d2:4d:b9:
                    03:84:01:54:40:f1:74:bd:94:d5:bc:45:a1:65:0f:
                    06:3e:ea:67:13:61:04:ea:3d:11:01:c4:aa:9c:3c:
                    69:fd:00:e8:6b:f4:82:82:32:8a:49:bc:7f:52:b6:
                    2a:2a:0a:70:49:80:9e:34:d2:6e:1d:5b:85:5a:b9:
                    fb:b6:4d:94:2a:55:5b:10:aa:1c:70:b2:01:cd:b2:
                    77:53:2c:b2:0f:a5:af:26:1b:72:7f:7c:78:1d:88:
                    3c:de:df:79:40:90:22:5a:6b:bb:2b:13:a0:05:52:
                    b8:f6:95:ae:8e:6f:e1:ba:f2:36:45:f5:ce:ca:42:
                    a6:1a:ba:bf:93:d2:46:dc:c5:36:b3:38:bd:d5:ad:
                    b3:e0:d5:a9:ec:a9:f1:75:da:72:e8:2c:46:63:a6:
                    cf:f0:4a:ca:e6:03:de:3d:2b:48:6f:c2:a3:c2:76:
                    2d:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:C6:C3:FA:0A:F6:E7:FE:A5:B3:2D:56:F8:FB:FC:81:DD:34:88:56
            X509v3 Authority Key Identifier:
                keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:86:60:6a:89:0f:09:81:34:66:06:f3:6a:78:98:03:4e:83:
         44:bd:cf:35:80:ae:63:8f:31:a8:9a:e4:25:6f:1b:5f:de:b7:
         ee:02:40:23:ad:32:b6:44:8d:49:f0:05:44:a9:67:99:f8:98:
         aa:47:ba:be:e4:e0:34:16:ea:5a:02:0a:b3:17:5d:9f:cd:7e:
         28:c3:7e:f6:04:2b:40:0e:d1:ed:e2:b8:8a:01:47:c1:0c:b1:
         5d:32:60:c0:e0:ee:50:b5:29:53:6b:9d:f2:1c:48:44:19:8f:
         e7:a8:05:70:a9:32:f7:49:a4:96:56:55:22:ef:ce:31:0d:02:
         5e:5d:c1:fc:50:ab:ff:5a:1d:b2:cd:e9:38:e4:9f:ac:85:f8:
         ba:88:45:ed:7d:de:b1:5f:96:e2:89:cd:e0:04:44:eb:14:f4:
         95:95:12:4f:d6:fc:f0:3c:f2:f1:05:cb:08:e6:fa:da:bc:ef:
         7f:84:1a:59:5d:6b:e7:fd:46:d7:45:d9:df:ba:0e:c9:f6:26:
         98:15:93:21:35:2e:0b:46:b4:c3:5e:18:a0:ca:5f:92:60:9f:
         5e:38:97:33:e3:c6:a9:a2:46:bb:8c:6e:83:00:70:f3:16:18:
         c8:3a:b9:1a:e9:da:3c:49:d2:e5:38:71:fb:4d:a8:cd:84:72:
         a6:98:f9:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 11:09:17 2025 by rpki-client