Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File:                     OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier:          riyL/e23DEAreoeG1QFWJTHrepYfTN67YSbXwtbhTL0=
Subject key identifier:   C9:D2:62:A1:45:DF:B0:48:7C:12:D4:FD:CA:3E:E2:A0:2D:41:AF:99
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer:       /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial:       01976B181BC997F54822A8AD2CBF4E01BA50
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number:          15A0
Signing time:             Fri 13 Jun 2025 21:00:31 +0000
Manifest this update:     Fri 13 Jun 2025 21:00:31 +0000
Manifest next update:     Sat 14 Jun 2025 21:00:31 +0000
Files and hashes:         1: 41o_KDQT0UQR0-pEGq6ZFFoyGEY.roa (hash: mkyU9FNe+9kldpNCWIBTUaB1xImUCSbnmtoOt1trV1c=)
                          2: EfAbE-x7JWikVYwPPlQe_vVwMQg.roa (hash: 7jN/LfmMAw7O2spCMvO+jNeJ92v1x2ZZaE7vPy60zYA=)
                          3: JKilfZrkJhllQ19r3NByhgoqTDg.roa (hash: TyGhUzaYqQpVckTL9iipsY4ZDEots8Yo4CEp0B079m4=)
                          4: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: 7YJr/2q/KKGzyxnT0xdAX74N3h2vLBPKv+Zl+XdMsKE=)
                          5: SHIdIo5QDACoW0nIIu5f5RtYZ_Y.roa (hash: Wl9sZv7NXkEqjqOeUmOOqdDlFgYyfsqwHN90exWSc1U=)
                          6: UxDrDzP2TNEJomhvUm5pptefxgA.roa (hash: /MVrUvLgefyKi9OhWDKlnZN9gJaxVmd7pmpH+GNvKAQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:18:1b:c9:97:f5:48:22:a8:ad:2c:bf:4e:01:ba:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
        Validity
            Not Before: Jun 13 21:00:31 2025 GMT
            Not After : Jun 14 21:00:31 2025 GMT
        Subject: CN=c9d262a145dfb0487c12d4fdca3ee2a02d41af99
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:4e:9e:df:98:92:30:db:ac:a6:e1:d0:4b:cc:
                    6f:03:6f:92:44:a7:cc:d5:ad:3c:57:d7:92:9b:e2:
                    4d:40:d3:69:4e:89:c9:b3:12:d4:a8:f3:06:84:83:
                    f8:96:89:0b:8d:bd:23:cf:58:e5:54:f1:aa:dc:77:
                    83:46:ba:9f:b0:d3:ac:93:68:50:42:09:b1:a1:e1:
                    63:5d:99:82:d3:c6:14:f2:bb:9a:dc:e6:47:fc:a6:
                    2c:c5:22:f3:66:7f:18:cb:8a:2c:51:2a:8b:da:40:
                    a6:d9:78:a7:4b:c8:f3:38:7f:ce:f5:d1:52:b0:49:
                    72:ec:ce:ef:12:fd:bc:ef:fb:1d:94:c1:a5:9b:b7:
                    0b:c0:ac:b0:da:8b:1a:21:fd:a2:b7:42:81:e0:cf:
                    f1:a2:97:e1:77:de:81:63:0e:5b:62:e1:41:e9:ac:
                    3c:2f:fa:a2:39:91:a8:d3:25:fc:a4:74:7e:0a:2b:
                    87:9c:e4:35:ef:6d:30:6c:34:70:ce:b0:88:b9:d3:
                    71:32:11:b7:73:3a:68:ba:f6:38:fc:2f:60:ed:9e:
                    aa:a4:f4:ba:ca:08:4e:84:d8:21:f2:1c:50:7c:c8:
                    97:90:67:3b:98:ba:fc:40:b4:97:28:0c:35:08:a2:
                    b1:91:08:64:77:6f:0d:ba:ed:37:74:b0:a3:ab:36:
                    93:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:D2:62:A1:45:DF:B0:48:7C:12:D4:FD:CA:3E:E2:A0:2D:41:AF:99
            X509v3 Authority Key Identifier:
                keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:0e:92:4f:dd:8b:a8:54:96:c6:9c:f8:3d:c0:46:c6:ac:e6:
         d2:9a:a4:08:7b:c8:a6:d8:41:41:fc:cb:fd:9e:32:51:d8:34:
         70:48:b1:90:6e:64:15:66:16:42:3f:ee:ef:ac:37:dc:a2:2f:
         83:26:c0:80:ee:2c:35:5b:9f:5f:ca:e6:a6:8c:34:85:8a:2c:
         a4:40:81:48:45:09:af:de:c0:29:fa:0e:d8:a1:9c:2d:86:7c:
         d8:af:2e:09:0a:e7:75:c4:fc:da:3f:be:47:c2:39:87:0e:cf:
         26:fc:5f:72:fc:76:f6:63:ad:dd:e1:cb:c4:3c:7c:ef:89:94:
         5a:7b:29:86:64:1d:43:0f:b7:eb:19:77:7e:03:fd:98:82:be:
         79:ad:c4:f8:af:45:56:0e:05:a0:31:45:7f:36:6f:80:96:fd:
         59:5b:4e:72:4f:22:df:ce:30:0b:ce:76:af:ae:fb:ba:3c:ca:
         a2:d0:5c:19:6d:5d:71:bf:e7:d0:5f:90:1d:30:4c:72:ff:5a:
         fa:b1:5b:36:64:14:a8:44:34:35:c7:8c:30:fa:b2:02:cd:5c:
         3a:86:62:19:ac:7b:47:81:6c:0c:76:f5:e2:48:55:43:9e:38:
         7f:ee:06:15:85:26:7d:2e:e3:a1:17:0c:db:43:f4:28:dd:92:
         ca:6b:b3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 00:32:48 2025 by rpki-client