Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File:                     2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier:          FE5MXUmFuzB3CiZXA4+RD4d3LGC5jo/TGpYtq0Mgd+s=
Subject key identifier:   63:D5:12:4D:55:21:FD:25:E2:CD:D0:26:38:BD:A0:1D:F4:A8:BC:9A
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer:       /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial:       01975C80C276D0FA89D7B5875A7537B32FBA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number:          0A86
Signing time:             Wed 11 Jun 2025 01:00:31 +0000
Manifest this update:     Wed 11 Jun 2025 01:00:31 +0000
Manifest next update:     Thu 12 Jun 2025 01:00:31 +0000
Files and hashes:         1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: O091HU3buyeWV7PtTJbjb2SzQJUm3Beg7cUuB2TdhoU=)
                          2: 73kskguN1VPO4tq3u0I-6VPbcl8.roa (hash: IOUFc++3ERmMqSZYKktHNh8ojKEPsIX8mty7/JMNR8c=)
                          3: pwFLoSIf9VUbET6QAXvLZY5rPr0.roa (hash: va4qzagh1XVOL80SDuYlOL0AHUwEGtmHAcyNr2+1pWE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:45:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:80:c2:76:d0:fa:89:d7:b5:87:5a:75:37:b3:2f:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
        Validity
            Not Before: Jun 11 01:00:31 2025 GMT
            Not After : Jun 12 01:00:31 2025 GMT
        Subject: CN=63d5124d5521fd25e2cdd02638bda01df4a8bc9a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:a9:eb:70:2a:57:74:f2:f5:d9:73:2d:b3:2d:
                    1a:0e:1f:b0:23:1f:64:b1:57:c4:77:af:1b:07:ca:
                    59:bb:20:21:86:87:e4:e7:84:98:07:28:bf:02:74:
                    8e:9a:46:27:65:4f:20:77:67:bf:f6:f4:70:f8:9c:
                    3d:1e:46:28:32:e8:07:16:20:8d:9f:73:04:bd:1d:
                    97:1f:84:97:ef:c9:f1:cb:30:10:ca:fb:3c:9b:08:
                    14:37:d3:60:79:02:10:92:3c:6d:09:0a:99:be:6d:
                    7d:1c:76:12:a1:e9:d9:53:f2:3c:68:3f:68:ab:5f:
                    5d:ae:78:51:20:52:aa:0c:90:94:a3:40:57:29:bf:
                    aa:b6:91:62:b8:1e:98:12:6c:2c:7b:b7:9b:69:ae:
                    bd:98:0d:8f:3d:c6:d2:b1:64:16:5f:9a:af:4b:bb:
                    6d:0d:b8:bc:dc:c4:c8:fe:c4:11:a7:69:5e:34:f9:
                    eb:37:8a:e7:66:e6:49:0c:b3:4b:94:72:eb:7a:ea:
                    d8:9b:86:90:0f:67:d4:eb:59:78:15:47:32:06:f7:
                    bf:8f:e1:df:b4:3a:74:db:25:fe:ff:56:50:a8:37:
                    b8:96:11:40:8b:ed:ce:e2:fa:cb:7f:84:d6:44:af:
                    97:a4:02:a6:61:6f:72:1a:11:82:9d:e9:b6:58:43:
                    15:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:D5:12:4D:55:21:FD:25:E2:CD:D0:26:38:BD:A0:1D:F4:A8:BC:9A
            X509v3 Authority Key Identifier:
                keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:bc:18:47:0c:ee:62:73:ca:58:fe:4b:91:7c:25:d0:11:eb:
         5b:f0:f4:dc:6f:62:78:52:e1:a5:e2:78:f5:22:f1:38:90:c6:
         fd:b4:fe:43:25:91:b9:b5:28:89:bd:25:a9:30:cf:72:44:1c:
         2f:17:a4:9b:78:af:93:22:fd:34:78:f4:11:da:4b:fd:a7:c4:
         4b:61:d6:2d:e8:ad:86:7c:c6:4b:57:b2:44:45:3f:1c:62:97:
         21:6f:2b:a9:1d:da:a4:a0:47:25:82:80:9d:bc:3a:57:e6:a7:
         38:6c:cc:57:d6:12:14:0e:0b:ee:ed:c6:d3:6a:e6:0c:4a:44:
         7c:31:c0:aa:74:30:de:11:a1:d7:c4:29:8f:7b:42:10:a9:6f:
         a4:a8:61:3f:23:d9:e3:c7:cd:ea:2d:14:27:c3:07:ed:c1:2f:
         ac:dd:9a:47:8c:94:62:a0:fa:a3:9d:68:22:cd:bb:3c:6e:58:
         9a:ce:1c:66:b0:d6:46:3e:25:ac:70:92:50:89:97:fa:e8:1c:
         8e:3e:ac:e0:29:81:8d:a0:62:91:01:38:a3:97:d6:f9:1d:1e:
         2b:53:a9:16:04:41:85:04:fc:4c:f1:8a:06:38:da:b8:b3:30:
         b6:f0:f7:e9:e1:02:d3:5a:21:75:a5:8c:9b:d5:dd:17:1a:05:
         2b:5f:a3:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:30:06 2025 by rpki-client