Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
File:                     imlbOroepOZUeIxRZBRYzJlXgEA.mft (raw, json)
Hash identifier:          mUxelwxcha4x4zrBjoW5ZctbxGNWaYxUY0j+T5qklTM=
Subject key identifier:   98:81:E7:C1:E0:10:B6:30:C6:2C:0D:7E:A6:66:E7:6A:7F:00:FD:37
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Certificate issuer:       /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial:       019767E0602C0941177F05D7D7F21B17376F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
Manifest number:          158B
Signing time:             Fri 13 Jun 2025 06:00:47 +0000
Manifest this update:     Fri 13 Jun 2025 06:00:47 +0000
Manifest next update:     Sat 14 Jun 2025 06:00:47 +0000
Files and hashes:         1: imlbOroepOZUeIxRZBRYzJlXgEA.crl (hash: c2vNyq91jji6THlKjnJfPplhNEmMq54dCyXpfOMn9mk=)
                          2: xXvpynv9RLlNuhH_ScFehFzRtz4.roa (hash: QSdQRW1EuXcu0ntbVvgh9fj5LXlqpMEhY2XBCGX6qp8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 06:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:e0:60:2c:09:41:17:7f:05:d7:d7:f2:1b:17:37:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
        Validity
            Not Before: Jun 13 06:00:47 2025 GMT
            Not After : Jun 14 06:00:47 2025 GMT
        Subject: CN=9881e7c1e010b630c62c0d7ea666e76a7f00fd37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:12:5f:5a:fd:0e:0a:b5:7e:42:42:15:7a:b6:
                    2f:dc:74:02:84:2d:43:cb:6f:92:b9:f9:e7:90:46:
                    29:0e:0c:f3:c2:be:44:32:06:8f:31:35:85:47:88:
                    67:63:19:14:e5:4a:e0:0f:24:06:14:90:94:ae:4f:
                    21:3d:53:6d:d1:35:6e:be:2e:05:5a:59:2c:3e:2e:
                    02:c6:79:8f:5b:5e:03:3d:8d:84:93:79:b4:f8:3c:
                    a6:c0:70:7d:74:6e:bc:0f:3f:cf:de:64:94:e3:e6:
                    33:35:19:58:0c:e8:34:e4:03:55:20:7d:6b:d8:dc:
                    94:c0:b9:fb:db:7e:ac:3c:96:0b:cc:f3:40:df:b0:
                    8e:ae:5c:e1:2f:44:63:3c:c4:33:88:a6:e4:b7:73:
                    a1:2d:62:43:13:24:39:c8:d5:3e:46:c4:36:ce:64:
                    83:97:19:bf:6b:25:ce:02:2c:48:05:6e:b7:be:e9:
                    09:5d:cf:be:19:e0:d2:68:ba:78:30:9d:b2:c7:3b:
                    2b:8a:75:80:e5:b6:45:89:a4:23:0d:2e:f0:7f:25:
                    2a:7b:6a:90:06:1f:1d:b2:2f:3d:c6:26:a9:06:a4:
                    7d:92:ad:0f:19:06:22:c2:f9:f0:ff:c6:e1:eb:a9:
                    ea:0d:7a:93:1b:9c:38:36:20:ec:9b:3f:0a:35:e7:
                    41:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:81:E7:C1:E0:10:B6:30:C6:2C:0D:7E:A6:66:E7:6A:7F:00:FD:37
            X509v3 Authority Key Identifier:
                keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:8a:6d:b9:cb:95:09:39:51:c6:1c:77:d0:c1:79:8c:1e:7c:
         65:73:8e:46:ad:bf:d5:cc:15:12:b0:69:39:e4:b1:e7:2e:ea:
         1f:37:2d:89:cb:ba:a6:d7:49:0e:49:4a:9c:d7:06:29:2d:bd:
         f5:2d:03:4e:a3:57:c4:78:cb:70:97:2c:fc:b3:a3:ca:9d:e1:
         da:c5:ea:7c:3f:85:c2:68:2e:60:83:be:97:82:ea:71:c4:cc:
         44:4e:1e:9c:41:6e:6f:f3:61:e0:d6:64:7c:9b:50:3e:c3:60:
         d4:09:c4:ff:c1:6b:37:d4:35:7b:90:5b:46:e6:94:e1:4f:0b:
         51:a3:6c:b2:36:13:26:2d:40:1c:ef:26:4b:86:4f:df:d4:35:
         fb:0e:bb:f9:cf:70:cf:a3:f7:cf:44:d1:ea:fd:1b:a6:c5:c7:
         36:db:d1:5d:bd:c6:47:eb:19:ca:82:00:53:6b:dc:0f:34:9b:
         84:a3:c1:35:1f:62:22:35:ee:54:94:dd:88:6e:e3:dc:de:dd:
         55:c8:ad:2d:f4:e2:56:9a:65:b2:41:64:51:1e:ec:f5:c3:26:
         4f:51:f5:10:f0:8f:90:dd:96:97:76:8a:e4:db:c1:0a:d4:81:
         e8:4e:2b:b5:c5:6b:0e:19:66:f9:e0:e2:1c:b7:22:bc:0b:11:
         6f:61:21:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdn4GAsCUEXfwXX1/IbFzdvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjk1YjNhYmExZWE0ZTY1NDc4OGM1MTY0MTQ1OGNjOTk1
NzgwNDAwHhcNMjUwNjEzMDYwMDQ3WhcNMjUwNjE0MDYwMDQ3WjAzMTEwLwYDVQQD
Eyg5ODgxZTdjMWUwMTBiNjMwYzYyYzBkN2VhNjY2ZTc2YTdmMDBmZDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxJfWv0OCrV+QkIVerYv3HQChC1D
y2+SufnnkEYpDgzzwr5EMgaPMTWFR4hnYxkU5UrgDyQGFJCUrk8hPVNt0TVuvi4F
WlksPi4CxnmPW14DPY2Ek3m0+DymwHB9dG68Dz/P3mSU4+YzNRlYDOg05ANVIH1r
2NyUwLn7236sPJYLzPNA37COrlzhL0RjPMQziKbkt3OhLWJDEyQ5yNU+RsQ2zmSD
lxm/ayXOAixIBW63vukJXc++GeDSaLp4MJ2yxzsrinWA5bZFiaQjDS7wfyUqe2qQ
Bh8dsi89xiapBqR9kq0PGQYiwvnw/8bh66nqDXqTG5w4NiDsmz8KNedBBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJiB58HgELYwxiwNfqZm52p/AP03MB8GA1UdIwQY
MBaAFIppWzq6HqTmVHiMUWQUWMyZV4BAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1sYk9yb2VwT1pVZUl4UlpCUll6SmxYZ0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC81MzgxOTQtNzU2MC00NDU2LWI0NWMt
Y2EyNmMyMmNmYWZkLzEvaW1sYk9yb2VwT1pVZUl4UlpCUll6SmxYZ0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC81MzgxOTQtNzU2MC00NDU2LWI0NWMtY2EyNmMyMmNmYWZk
LzEvaW1sYk9yb2VwT1pVZUl4UlpCUll6SmxYZ0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhoptucuV
CTlRxhx30MF5jB58ZXOORq2/1cwVErBpOeSx5y7qHzcticu6ptdJDklKnNcGKS29
9S0DTqNXxHjLcJcs/LOjyp3h2sXqfD+FwmguYIO+l4LqccTMRE4enEFub/Nh4NZk
fJtQPsNg1AnE/8FrN9Q1e5BbRuaU4U8LUaNssjYTJi1AHO8mS4ZP39Q1+w67+c9w
z6P3z0TR6v0bpsXHNtvRXb3GR+sZyoIAU2vcDzSbhKPBNR9iIjXuVJTdiG7j3N7d
VcitLfTiVpplskFkUR7s9cMmT1H1EPCPkN2Wl3aK5NvBCtSB6E4rtcVrDhlm+eDi
HLcivAsRb2Ehsg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 14:50:05 2025 by rpki-client