Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File:                     OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier:          vdhg1FFsuHXW8D+mxZ8q8kBmd/hzPqbj96xvF6ROvVk=
Subject key identifier:   45:08:05:C8:FF:02:83:66:E7:06:0F:24:22:D3:D0:65:59:16:7A:24
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer:       /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial:       0197635EE845CA3CC9495607443B7895AAA7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number:          159C
Signing time:             Thu 12 Jun 2025 09:00:53 +0000
Manifest this update:     Thu 12 Jun 2025 09:00:53 +0000
Manifest next update:     Fri 13 Jun 2025 09:00:53 +0000
Files and hashes:         1: 41o_KDQT0UQR0-pEGq6ZFFoyGEY.roa (hash: mkyU9FNe+9kldpNCWIBTUaB1xImUCSbnmtoOt1trV1c=)
                          2: EfAbE-x7JWikVYwPPlQe_vVwMQg.roa (hash: 7jN/LfmMAw7O2spCMvO+jNeJ92v1x2ZZaE7vPy60zYA=)
                          3: JKilfZrkJhllQ19r3NByhgoqTDg.roa (hash: TyGhUzaYqQpVckTL9iipsY4ZDEots8Yo4CEp0B079m4=)
                          4: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: cdWxjIZ6VrnyKNPxaFEy/h/2rARrPUoQKpBqoq3sqXE=)
                          5: SHIdIo5QDACoW0nIIu5f5RtYZ_Y.roa (hash: Wl9sZv7NXkEqjqOeUmOOqdDlFgYyfsqwHN90exWSc1U=)
                          6: UxDrDzP2TNEJomhvUm5pptefxgA.roa (hash: /MVrUvLgefyKi9OhWDKlnZN9gJaxVmd7pmpH+GNvKAQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:5e:e8:45:ca:3c:c9:49:56:07:44:3b:78:95:aa:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
        Validity
            Not Before: Jun 12 09:00:53 2025 GMT
            Not After : Jun 13 09:00:53 2025 GMT
        Subject: CN=450805c8ff028366e7060f2422d3d06559167a24
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:c5:1e:dd:6e:9c:b9:1d:aa:ff:f0:2c:d7:92:
                    6b:f5:5f:9e:06:2f:7b:00:f0:e3:3a:ad:2d:c8:81:
                    5a:fd:77:06:b0:8d:05:d6:bb:1c:e4:ef:a8:ab:a8:
                    bd:d7:79:3f:38:4c:b9:1a:01:e9:f0:d2:8e:67:28:
                    42:db:ec:f6:51:d6:5b:07:13:2b:7f:7c:3d:68:ce:
                    c1:f7:9e:4e:8e:49:bb:28:95:30:73:24:66:fe:7f:
                    40:6a:ec:8f:b8:c9:81:02:f8:57:b6:7d:84:1e:8f:
                    cd:db:2b:ab:d5:cb:b9:90:ba:7d:cb:12:e7:03:f4:
                    71:11:25:99:82:58:13:c0:ea:4c:b8:99:3c:98:6c:
                    16:00:8a:6f:69:02:4b:1b:fb:73:a1:22:57:4e:72:
                    98:e8:40:00:97:74:66:bc:96:9f:b8:4f:82:d1:e2:
                    ac:0c:24:92:82:5f:bc:d4:1b:1e:be:c5:f0:5c:81:
                    7c:30:b3:be:09:f5:6c:3c:8d:16:9d:13:e1:fc:36:
                    e0:3e:98:95:c0:a7:7e:6f:7e:c3:7a:a2:d6:be:f3:
                    fe:92:f0:69:c3:e7:94:b0:d0:06:a5:38:60:6d:33:
                    64:67:56:11:ac:a8:70:f9:c2:ac:78:39:c3:e7:56:
                    aa:ac:62:48:fc:b1:37:6b:6a:f7:3f:89:45:3c:0b:
                    cf:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:08:05:C8:FF:02:83:66:E7:06:0F:24:22:D3:D0:65:59:16:7A:24
            X509v3 Authority Key Identifier:
                keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:18:96:67:51:71:ec:02:0a:b5:52:fb:75:21:7f:41:8e:af:
         8c:2b:8e:58:36:13:a3:8b:2a:60:d5:59:20:3f:af:01:21:f3:
         2f:12:68:06:40:24:c2:61:8f:f4:e4:61:8f:38:b0:38:20:ef:
         b3:e6:91:75:21:b2:e1:12:fa:bd:0c:dd:14:e1:72:3d:19:e6:
         e5:5f:bb:79:7f:6e:0a:cf:4b:12:d7:df:cc:0e:82:2a:2c:f5:
         be:c8:da:f8:be:c6:10:d1:21:33:97:ce:77:a1:aa:05:1d:3c:
         0c:21:b9:f0:26:21:d1:4e:2a:f2:4d:bb:37:6d:fd:84:82:81:
         3c:2d:58:e4:c9:a6:c2:8b:cd:71:de:30:1f:8a:27:de:6c:18:
         51:79:9a:4d:00:02:e1:c1:dc:c8:dc:ca:10:0d:22:75:ac:b1:
         56:db:f0:3d:4b:04:0f:16:f7:ce:73:13:eb:a4:5b:28:41:d1:
         bb:e6:90:28:a2:0d:e3:fd:c4:0c:8e:81:96:6a:31:3e:7d:ff:
         8b:c1:11:01:9d:85:1e:bc:cb:20:fa:d5:94:bc:05:22:9b:5d:
         61:30:fd:d2:a5:05:76:0e:dc:b1:45:46:9f:95:14:66:a6:4d:
         97:bc:2d:64:d8:8f:20:6b:47:52:30:20:38:6e:8b:04:b1:b2:
         7d:bf:58:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 15:15:36 2025 by rpki-client