Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File:                     bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier:          R30wyX8tUOiW8Z4oceRma2duLA8EJ/xwQgHdyJ8M9n0=
Subject key identifier:   9F:19:D4:20:12:4D:B7:B4:AC:99:93:61:6C:09:D9:83:5B:18:31:47
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer:       /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial:       01976A3C857F85E4461EDAF45F5C1EEFAA30
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number:          158E
Signing time:             Fri 13 Jun 2025 17:00:40 +0000
Manifest this update:     Fri 13 Jun 2025 17:00:40 +0000
Manifest next update:     Sat 14 Jun 2025 17:00:40 +0000
Files and hashes:         1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
                          2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: vCo1i3wUCIJEdA1eyWTQWGGinqhLdAnCuKV9+Yss20M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:3c:85:7f:85:e4:46:1e:da:f4:5f:5c:1e:ef:aa:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
        Validity
            Not Before: Jun 13 17:00:40 2025 GMT
            Not After : Jun 14 17:00:40 2025 GMT
        Subject: CN=9f19d420124db7b4ac9993616c09d9835b183147
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:ea:96:3f:f7:b9:f7:fe:e3:b9:29:21:2b:ba:
                    49:5b:21:df:e0:f1:fc:9f:35:36:51:d2:c3:80:3b:
                    f0:cd:c0:a9:97:82:3c:2e:0a:67:0d:f8:42:60:51:
                    d8:2c:c6:af:0a:50:13:ce:29:0e:a2:97:fb:0b:85:
                    50:c5:38:07:52:7c:61:9e:e0:88:69:c5:ce:f2:17:
                    98:34:b3:c5:9c:53:ed:57:1a:74:ee:7f:3a:ec:8a:
                    8d:e5:08:27:e4:ee:36:04:32:b9:21:f6:0c:c3:c8:
                    fa:f8:15:b8:31:dd:ea:0c:ad:9d:1f:41:35:60:36:
                    3e:d1:7e:47:d2:db:d2:18:c0:7f:33:65:f7:35:85:
                    b0:94:80:b0:3a:32:a4:5c:ad:47:48:38:ce:d6:b7:
                    95:1b:ba:43:da:b8:c4:99:b3:57:fc:f8:3e:5c:23:
                    3c:ef:fb:26:03:3f:89:47:fd:04:04:64:d0:50:b8:
                    bf:47:b8:5b:0b:e9:09:8c:c0:55:49:f7:75:c1:8e:
                    b6:72:bf:5e:92:d9:aa:e9:0c:e7:3a:ce:32:4a:ee:
                    61:4a:7c:ac:33:b1:e8:c2:e8:26:56:f5:e0:ea:7c:
                    bc:57:63:78:90:91:5f:81:e2:d3:6b:58:d0:8d:94:
                    cd:55:3b:e3:14:50:28:cf:80:3a:d5:4c:a3:22:2f:
                    6f:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:19:D4:20:12:4D:B7:B4:AC:99:93:61:6C:09:D9:83:5B:18:31:47
            X509v3 Authority Key Identifier:
                keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:ec:ef:df:5f:5c:07:61:3d:e8:15:cf:35:85:7d:ba:ec:e6:
         e7:50:c8:da:24:e1:99:b6:df:c8:7b:41:c8:cb:aa:b1:e5:76:
         52:5e:f7:49:a5:6d:0a:bd:33:46:61:d7:41:55:c9:5d:71:c5:
         a1:1b:a1:b3:9d:50:f9:de:3e:06:49:49:42:58:fc:48:88:4b:
         2c:f3:25:d6:24:de:b9:ec:3b:7d:d0:cd:c6:b0:a9:74:66:22:
         e7:f6:5b:ff:c0:52:84:a3:b7:d8:02:e8:3d:ec:1a:d7:ed:56:
         28:88:5a:d5:4e:d5:c5:7d:e7:4b:53:20:af:4e:6b:ad:91:82:
         7e:b5:c7:1a:3a:e7:2e:62:0b:bd:3f:ad:e3:cb:c8:aa:34:06:
         31:9a:1c:2a:fd:5a:23:ea:a8:54:62:0a:74:ab:52:dc:7f:1e:
         f1:20:0d:db:0b:88:76:75:f5:e0:e3:83:b3:ee:88:1e:1e:9e:
         f7:7a:33:d4:ba:42:69:3c:df:55:a8:65:f0:1e:24:5c:92:1f:
         5a:b8:fb:96:0c:a4:98:78:08:a8:c4:f1:9a:31:e8:67:cc:5a:
         32:6f:14:9d:7e:99:63:e5:9b:39:3f:7d:1c:21:a9:d9:15:95:
         de:15:a9:2d:e8:59:be:f3:af:27:c0:05:61:0a:82:f3:ba:ff:
         9e:b7:ee:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 21:31:52 2025 by rpki-client