Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File:                     BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier:          UgQ8IK2usqXCu0BSf1xWLBnzSz4GjvTTYRD7YA1zTMQ=
Subject key identifier:   FA:16:BA:B8:66:88:6F:06:E8:10:45:73:73:41:93:4B:B3:27:07:A6
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer:       /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial:       019758DB90B7880159B50C8CD3A1EC5D6B6C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number:          0858
Signing time:             Tue 10 Jun 2025 08:01:13 +0000
Manifest this update:     Tue 10 Jun 2025 08:01:13 +0000
Manifest next update:     Wed 11 Jun 2025 08:01:13 +0000
Files and hashes:         1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=)
                          2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=)
                          3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=)
                          4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: Qp6lvZJdQE7rO0quUMc1MYa1qZ3gdInCQiz1le9gUiI=)
                          5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=)
                          6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=)
                          7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=)
                          8: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=)
                          9: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=)
                          10: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=)
                          11: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=)
                          12: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=)
                          13: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=)
                          14: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:db:90:b7:88:01:59:b5:0c:8c:d3:a1:ec:5d:6b:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
        Validity
            Not Before: Jun 10 08:01:13 2025 GMT
            Not After : Jun 11 08:01:13 2025 GMT
        Subject: CN=fa16bab866886f06e81045737341934bb32707a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:19:c2:b4:a9:16:e2:be:36:44:25:a8:0c:03:
                    f3:61:36:b4:87:13:a9:05:51:76:36:c3:d1:8a:e4:
                    bc:b7:b7:63:42:d7:ad:23:d2:a2:04:eb:38:d9:cf:
                    db:58:7b:d6:88:f2:95:ca:89:89:3d:21:f7:cb:07:
                    e8:17:c2:0b:14:bb:9b:74:25:b2:35:6c:55:6f:3b:
                    60:9b:8a:34:b5:3f:ae:de:61:e0:b8:18:c3:57:06:
                    ae:bf:b2:84:80:61:fa:f9:53:f0:eb:fc:3b:8b:59:
                    e9:5d:e8:0b:f5:c0:50:75:8b:ba:c4:7c:62:56:67:
                    1a:cf:18:9c:17:76:9b:b3:63:28:0d:ea:d4:2b:a1:
                    24:f4:64:78:76:47:f7:ff:f9:9f:50:f8:43:b3:d6:
                    f0:c5:73:a9:19:f1:14:fa:f1:18:e9:5e:e0:d2:41:
                    ca:66:36:02:a5:13:c7:98:3e:d7:8d:0d:bc:a6:b9:
                    ae:50:43:c6:ef:96:a4:e1:d7:88:e8:ae:70:69:8f:
                    cb:3c:57:a3:77:65:dd:1e:8d:21:87:2b:01:10:92:
                    39:de:39:a8:58:0c:2a:02:2a:1a:6e:db:77:01:0e:
                    c5:ae:f1:9c:0f:d5:18:36:ec:5d:04:84:58:33:1c:
                    f4:32:5e:3d:2f:52:76:47:84:c3:db:39:94:fd:5e:
                    9a:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:16:BA:B8:66:88:6F:06:E8:10:45:73:73:41:93:4B:B3:27:07:A6
            X509v3 Authority Key Identifier:
                keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:d3:87:43:80:94:b5:79:39:cd:4a:2c:de:8b:43:a3:95:0f:
         ea:05:85:c1:30:65:bd:92:c4:e5:27:f2:76:3c:c8:c5:ea:f7:
         8f:05:13:dd:7e:c7:73:13:4d:91:76:18:c6:f2:c0:59:bb:6c:
         c6:fe:ed:fa:55:d1:bb:48:87:a7:b3:78:f5:01:8a:80:f3:98:
         67:17:3c:96:3e:46:3d:08:00:d2:b9:47:6e:f4:fc:46:34:0d:
         e6:0e:06:6a:b3:d9:c3:a3:c1:85:32:a3:e7:85:8a:bf:a9:0f:
         bc:e4:fa:d7:23:98:55:ab:e0:20:93:21:6e:5e:53:25:e1:dc:
         10:62:d8:b0:a0:d3:3d:7b:9e:12:48:f9:b5:43:63:2a:ad:8d:
         32:85:6b:8c:f4:2d:9a:6d:10:a8:d1:3d:fc:9b:29:f5:48:31:
         83:75:36:a7:3d:2b:ab:9f:54:55:cf:57:9a:ac:79:cf:66:e2:
         41:de:de:6e:7b:8f:bc:4d:6d:40:36:69:8c:53:49:eb:32:00:
         35:36:08:d1:bd:cd:60:1b:c2:ff:f5:ee:72:f8:7d:9f:3c:6c:
         df:18:b0:00:c8:6e:54:f5:77:73:0a:b8:a8:24:aa:ec:b3:0c:
         be:95:64:3a:99:f8:87:ef:7b:0d:ac:52:6a:a8:fd:10:68:fa:
         0d:8b:f9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:25:23 2025 by rpki-client