Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File:                     BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier:          ae5Z89vE1gCexYNSdvlWXNOQHa6ucjHnHanfH/hgRdI=
Subject key identifier:   0A:87:03:FD:EE:3D:B4:8E:F0:33:73:4D:D4:82:42:B4:97:4C:F2:5C
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer:       /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial:       01975CB7E6E408A9EB888A9C90FFD3635E85
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number:          085A
Signing time:             Wed 11 Jun 2025 02:00:45 +0000
Manifest this update:     Wed 11 Jun 2025 02:00:45 +0000
Manifest next update:     Thu 12 Jun 2025 02:00:45 +0000
Files and hashes:         1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=)
                          2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=)
                          3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=)
                          4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: 3Tbjpom0IjNoqoZsYNGjUvpzvcQDnJearEcKsQVqDwk=)
                          5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=)
                          6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=)
                          7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=)
                          8: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=)
                          9: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=)
                          10: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=)
                          11: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=)
                          12: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=)
                          13: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=)
                          14: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 02:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:b7:e6:e4:08:a9:eb:88:8a:9c:90:ff:d3:63:5e:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
        Validity
            Not Before: Jun 11 02:00:45 2025 GMT
            Not After : Jun 12 02:00:45 2025 GMT
        Subject: CN=0a8703fdee3db48ef033734dd48242b4974cf25c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:34:c8:a4:40:d6:9e:1d:24:dd:f4:bf:9e:c1:
                    f4:80:e5:ba:9d:4c:ee:8d:a1:c9:c9:9e:bb:4b:1b:
                    c5:5e:a3:f1:86:24:aa:80:8b:63:7c:b4:a0:92:63:
                    08:b4:9e:3b:fd:2c:cd:3d:b1:90:ff:fa:f3:64:da:
                    90:88:f6:40:21:d8:c8:75:92:db:d8:eb:0c:04:ec:
                    2c:08:de:94:d7:c2:e4:6d:a0:f8:c1:b0:cd:c5:84:
                    94:ef:53:97:12:5d:6f:9e:89:8e:97:56:cb:dd:d3:
                    73:57:49:4d:7b:42:b0:0e:55:12:7b:11:17:32:f5:
                    16:56:7a:2d:66:e3:11:2d:a3:ba:e6:88:26:87:ba:
                    f7:a9:23:7a:63:2a:46:f2:b2:5d:ef:93:fd:c2:ee:
                    89:da:33:84:ab:b2:b3:97:38:9c:ee:2a:26:5f:de:
                    a6:e4:49:28:85:72:38:e4:3a:0e:ff:63:0a:fc:a1:
                    a4:96:d4:1c:4b:6b:85:69:94:8e:a9:28:e7:ef:2a:
                    7e:b0:7d:0f:35:ad:99:35:83:5b:eb:22:9f:9b:35:
                    a3:4c:6d:4e:8f:02:f4:ca:62:11:0d:a3:36:b8:2f:
                    ec:f0:46:82:52:27:36:5f:a5:be:12:78:8c:5f:36:
                    e2:c1:ca:e1:e3:a5:3e:07:ec:2a:28:52:e5:40:ab:
                    4d:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:87:03:FD:EE:3D:B4:8E:F0:33:73:4D:D4:82:42:B4:97:4C:F2:5C
            X509v3 Authority Key Identifier:
                keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:12:29:74:11:07:9e:ed:73:32:24:8d:64:37:3f:7c:71:12:
         53:f4:21:23:32:1e:56:33:15:60:92:1b:78:7d:a2:27:7b:30:
         25:ad:2f:9c:97:9f:99:56:9c:1b:92:2d:ac:80:ea:81:22:49:
         62:2a:21:51:d6:53:91:63:51:b0:2b:11:1c:3b:41:60:71:95:
         83:44:dd:48:fb:dc:c1:39:55:d0:1e:52:36:81:d4:48:b4:aa:
         61:3a:7b:46:83:d2:61:9e:ce:c1:cd:0e:9f:6f:ce:80:09:6a:
         99:30:86:fa:68:33:45:f9:29:87:62:9b:44:29:19:df:11:9c:
         1a:10:dd:19:a5:79:21:50:62:f2:14:f9:19:16:1f:36:13:cb:
         f5:54:3c:5f:72:0c:1b:43:c3:c2:32:68:5d:c1:86:84:fc:77:
         39:28:6e:53:18:fc:e5:b2:20:dd:72:9e:de:b0:ec:eb:92:99:
         fe:3e:ae:30:0c:8b:f1:33:3a:99:91:c6:b0:c9:de:24:19:88:
         44:35:f9:6b:4f:bb:dd:ce:87:76:ef:7d:d0:4f:a8:1e:da:83:
         e6:d2:1e:60:7e:3e:c5:d4:28:6d:e5:d1:43:78:a1:64:ce:53:
         60:8f:da:85:b8:11:6f:42:5f:56:a3:10:19:a2:4f:fa:0e:42:
         f5:bb:55:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdct+bkCKnriIqckP/TY16FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3
Y2ZmOWIwHhcNMjUwNjExMDIwMDQ1WhcNMjUwNjEyMDIwMDQ1WjAzMTEwLwYDVQQD
EygwYTg3MDNmZGVlM2RiNDhlZjAzMzczNGRkNDgyNDJiNDk3NGNmMjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzTIpEDWnh0k3fS/nsH0gOW6nUzu
jaHJyZ67SxvFXqPxhiSqgItjfLSgkmMItJ47/SzNPbGQ//rzZNqQiPZAIdjIdZLb
2OsMBOwsCN6U18LkbaD4wbDNxYSU71OXEl1vnomOl1bL3dNzV0lNe0KwDlUSexEX
MvUWVnotZuMRLaO65ogmh7r3qSN6YypG8rJd75P9wu6J2jOEq7Kzlzic7iomX96m
5EkohXI45DoO/2MK/KGkltQcS2uFaZSOqSjn7yp+sH0PNa2ZNYNb6yKfmzWjTG1O
jwL0ymIRDaM2uC/s8EaCUic2X6W+EniMXzbiwcrh46U+B+wqKFLlQKtNCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAqHA/3uPbSO8DNzTdSCQrSXTPJcMB8GA1UdIwQY
MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt
YzlmNTdlOTU5ZWYxLzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx
LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMxIpdBEH
nu1zMiSNZDc/fHESU/QhIzIeVjMVYJIbeH2iJ3swJa0vnJefmVacG5ItrIDqgSJJ
YiohUdZTkWNRsCsRHDtBYHGVg0TdSPvcwTlV0B5SNoHUSLSqYTp7RoPSYZ7Owc0O
n2/OgAlqmTCG+mgzRfkph2KbRCkZ3xGcGhDdGaV5IVBi8hT5GRYfNhPL9VQ8X3IM
G0PDwjJoXcGGhPx3OShuUxj85bIg3XKe3rDs65KZ/j6uMAyL8TM6mZHGsMneJBmI
RDX5a0+73c6Hdu990E+oHtqD5tIeYH4+xdQobeXRQ3ihZM5TYI/ahbgRb0JfVqMQ
GaJP+g5C9btVuw==
-----END CERTIFICATE-----
Generated at Wed Jun 11 11:16:22 2025 by rpki-client