Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File:                     OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier:          9/l85ALrMlgZaKHaCzPY19g129TdMibjNWiOH7qEfdI=
Subject key identifier:   3F:40:13:E7:75:02:C1:BA:EB:5F:5D:48:AB:3C:E9:2F:74:DE:8F:FE
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer:       /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial:       0197537D8BD74EEAF54F1627C589563C2DFD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number:          1096
Signing time:             Mon 09 Jun 2025 07:00:26 +0000
Manifest this update:     Mon 09 Jun 2025 07:00:26 +0000
Manifest next update:     Tue 10 Jun 2025 07:00:26 +0000
Files and hashes:         1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
                          2: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: EJ9J1DKO3kGJfwQ6sTQsQb3Fh8Bqsfc3oUacHeXZO9k=)
                          3: lKnLzY94Z9zOTG6_1gzuoDIJ_5Y.roa (hash: veP44H4IXhWwV/CHwiAUB7r/bJ77LhyJozTjkioLQx0=)
                          4: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
                          5: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:7d:8b:d7:4e:ea:f5:4f:16:27:c5:89:56:3c:2d:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
        Validity
            Not Before: Jun  9 07:00:26 2025 GMT
            Not After : Jun 10 07:00:26 2025 GMT
        Subject: CN=3f4013e77502c1baeb5f5d48ab3ce92f74de8ffe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:5f:70:74:20:29:30:ff:81:ad:28:be:19:e3:
                    8c:ce:5a:db:c6:d8:15:05:8a:e2:71:ea:81:7e:d9:
                    2d:e1:4b:52:01:37:51:04:6f:08:80:41:5e:d2:b9:
                    03:5c:bb:11:af:d8:6d:56:04:3c:69:ce:fc:fc:68:
                    d3:89:3a:00:3c:6c:98:b9:63:18:95:8d:41:7c:f8:
                    b2:e0:1c:4f:fc:66:a1:38:f9:6a:70:02:60:1f:48:
                    76:58:21:57:3f:27:16:12:48:86:37:c5:27:e1:b6:
                    25:5e:38:8d:ab:af:46:7f:ab:3c:fd:81:29:25:ee:
                    9e:f2:62:3b:7e:cd:a4:13:08:c3:a7:cc:97:6a:aa:
                    44:ba:5d:db:92:92:97:e7:64:f4:62:37:fe:70:dd:
                    cb:36:95:cb:cf:5a:1a:03:e1:70:19:6d:97:45:9d:
                    ef:dc:41:79:a5:e8:b0:9a:71:96:1d:46:ad:8a:3e:
                    88:21:f8:ed:b1:42:39:7e:0e:99:00:b7:26:fc:09:
                    cc:d0:60:48:58:17:16:0a:c4:bf:d6:a5:d5:7c:39:
                    2a:52:7e:6d:45:dd:94:a2:8e:43:90:e7:4f:80:b4:
                    e1:68:fa:48:a7:b6:d6:a0:e1:f3:2e:06:74:75:76:
                    ad:38:b5:9e:f2:43:e7:34:19:7f:98:01:bb:92:93:
                    39:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:40:13:E7:75:02:C1:BA:EB:5F:5D:48:AB:3C:E9:2F:74:DE:8F:FE
            X509v3 Authority Key Identifier:
                keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:ec:57:9c:e2:ca:72:73:ce:cb:5a:3a:7a:0e:bf:62:78:e5:
         38:84:a3:c7:12:c6:2a:2a:ab:a9:c8:6b:ca:c1:fd:94:5d:0b:
         78:5c:f3:23:7c:eb:f6:de:80:d8:ed:eb:8e:44:d1:89:af:d4:
         fe:c7:f5:d3:00:0d:c3:59:2b:a5:f2:b2:3a:f5:ed:00:fc:c7:
         41:b5:46:7b:c8:66:83:f1:1d:12:ff:20:ff:fc:5d:22:23:4c:
         f1:df:18:51:c1:3d:2b:52:fa:79:4f:5f:a4:09:fa:f9:36:60:
         7e:8f:ab:1f:12:c3:b0:24:57:b6:ca:f4:e3:db:bb:60:0c:a2:
         5d:69:01:35:d6:81:ff:d7:ed:ba:40:d9:ed:82:bd:25:2a:08:
         0a:69:88:de:38:59:04:c0:f4:d2:71:c8:5f:8a:9c:01:d5:53:
         af:98:e3:46:24:2a:84:21:d2:1c:72:41:74:0f:bc:ea:8f:2c:
         41:67:3a:91:43:8a:a5:ff:13:3f:37:d9:9a:f5:73:2c:4d:64:
         62:28:07:95:82:8b:d8:4b:52:78:33:e1:f8:33:4e:a4:75:fd:
         1d:be:e8:b9:b0:3f:76:55:b5:bd:78:a1:98:cf:a4:db:d8:c1:
         2a:8b:33:2d:dc:80:fd:60:f9:45:a5:37:3b:cf:5a:fe:6f:f5:
         f5:e3:26:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 15:13:20 2025 by rpki-client