Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File:                     oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier:          nZAyoBeTBqQz1lgen5JNHyxoqPc8QEaPB0FfYRabZIU=
Subject key identifier:   47:51:40:A9:A2:4B:49:A5:5F:F3:E5:8B:84:DC:3D:62:8A:B8:ED:3C
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer:       /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial:       01975D5CF781E28FEA7F6416EB391B51639C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number:          0F81
Signing time:             Wed 11 Jun 2025 05:01:03 +0000
Manifest this update:     Wed 11 Jun 2025 05:01:03 +0000
Manifest next update:     Thu 12 Jun 2025 05:01:03 +0000
Files and hashes:         1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
                          2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: r1OcSo9O8f9Dc0j0LlGiuH85tHek0dIZnZVW8DUk5Os=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 05:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:5c:f7:81:e2:8f:ea:7f:64:16:eb:39:1b:51:63:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
        Validity
            Not Before: Jun 11 05:01:03 2025 GMT
            Not After : Jun 12 05:01:03 2025 GMT
        Subject: CN=475140a9a24b49a55ff3e58b84dc3d628ab8ed3c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:63:8e:9f:ac:a0:66:50:05:e5:8a:db:bf:03:
                    df:37:9a:a7:f5:30:67:b5:f1:96:fa:ad:5c:16:27:
                    ee:2f:52:3f:4f:53:3c:b2:1d:db:04:cd:c0:da:b6:
                    31:fe:e5:61:7b:2e:96:54:02:fb:bc:39:9a:75:df:
                    75:2a:0e:2e:2a:29:1f:fc:9f:28:26:bc:47:c0:8f:
                    00:3a:0b:ab:73:b7:52:70:c1:61:39:13:94:b8:59:
                    a4:bb:96:a8:a7:cd:5a:08:6e:fa:2f:c1:9b:cf:9d:
                    5c:9a:92:9e:f3:b4:f7:ec:14:9e:5f:61:5c:1c:03:
                    fb:15:c7:69:28:26:90:ad:51:12:f5:66:60:a0:3f:
                    11:2a:d5:df:0e:4c:e1:21:f4:3d:75:3f:95:73:23:
                    6b:2a:b3:3d:b2:23:f4:8c:52:8c:2e:64:86:21:6d:
                    00:06:69:d3:5e:5c:8b:8f:a0:cb:19:30:42:94:f6:
                    82:a1:e4:f1:df:75:17:a1:b1:61:4f:b6:26:8e:c3:
                    b2:1c:e5:9c:45:38:82:88:08:cc:76:ab:ab:e0:4d:
                    75:46:50:7d:cd:5c:3b:fd:a4:1e:88:87:0e:4d:91:
                    1b:3e:1d:cb:b6:d1:3f:bb:c6:5b:8e:7d:e0:9e:48:
                    45:cb:3c:b3:ad:1b:0e:cd:a5:52:74:9a:94:20:92:
                    32:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:51:40:A9:A2:4B:49:A5:5F:F3:E5:8B:84:DC:3D:62:8A:B8:ED:3C
            X509v3 Authority Key Identifier:
                keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:9b:d1:57:fd:8a:9b:84:1c:32:69:85:fa:19:ba:00:12:c6:
         70:82:08:d2:b6:e1:d5:90:4e:35:2b:18:41:6d:e2:0e:20:ed:
         c4:2e:a2:54:78:70:21:c4:fb:04:10:37:8e:0f:66:f9:77:f8:
         97:52:a1:d9:4e:b5:7c:1d:5a:2b:3a:19:b5:f2:a8:43:46:31:
         58:bf:ac:6b:7a:4a:be:cc:6a:b9:b2:26:1e:5f:ef:c1:59:dc:
         45:f5:f1:16:02:fa:41:43:3f:37:99:df:88:c9:7a:a0:20:04:
         1f:03:6a:9b:5d:d3:58:ce:68:bd:dc:e1:a7:2a:13:8d:3a:69:
         00:b1:ce:1a:29:ad:1b:38:25:24:db:66:c0:46:18:14:d3:b2:
         04:b8:9a:0b:49:50:7d:52:0b:b1:b7:54:10:a0:40:58:2e:56:
         4c:7b:c6:56:e4:8a:92:bd:fd:4b:3d:6e:6b:dd:96:22:95:08:
         4a:80:93:77:41:3d:d3:86:6d:0a:20:43:bc:73:a2:68:2c:47:
         54:89:a7:cf:7a:58:d2:af:f3:fc:f4:06:c2:6f:57:a9:d5:ee:
         72:37:c0:51:43:4a:86:d4:5b:3c:4a:06:fa:45:4c:ba:6c:33:
         6e:f0:fc:41:a0:50:b9:86:81:a3:4b:39:c1:94:59:b5:24:4d:
         69:0b:a2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:52:09 2025 by rpki-client