Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File:                     oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier:          pp7PYVDjfbUeFmlF/e1pp8rs/PIe1m+ca0MvERqObwk=
Subject key identifier:   43:5C:65:B7:BF:80:40:75:4B:B2:67:1E:35:31:66:CF:2A:84:E4:29
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer:       /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial:       019753B47E2A531365EE266A4E830B89FD80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number:          0F7C
Signing time:             Mon 09 Jun 2025 08:00:27 +0000
Manifest this update:     Mon 09 Jun 2025 08:00:27 +0000
Manifest next update:     Tue 10 Jun 2025 08:00:27 +0000
Files and hashes:         1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
                          2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: gFs1LqhwOQjJCO3kCCrn0R+HmsJTRj1R6FwGpWl0nNE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 08:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:b4:7e:2a:53:13:65:ee:26:6a:4e:83:0b:89:fd:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
        Validity
            Not Before: Jun  9 08:00:27 2025 GMT
            Not After : Jun 10 08:00:27 2025 GMT
        Subject: CN=435c65b7bf8040754bb2671e353166cf2a84e429
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:92:58:f5:d3:f9:d2:81:1a:71:9f:ae:58:24:
                    79:02:7a:2b:c2:e1:bc:32:73:ba:98:6b:bc:f9:6d:
                    b1:e9:05:9f:a1:cc:2f:85:8d:36:5c:6e:14:0c:ef:
                    10:70:f4:13:45:6a:aa:65:9a:83:57:9f:c1:3e:da:
                    ab:12:10:8e:82:eb:68:dd:7c:4d:eb:9a:0c:92:c6:
                    db:d9:ce:8c:b2:ae:9a:29:e8:e7:96:90:44:0d:7c:
                    2f:8c:01:0d:3e:93:70:ec:bb:fc:85:1b:1c:63:cb:
                    9b:de:99:e0:11:6e:a9:95:64:05:eb:c4:c6:94:a5:
                    5f:2a:8b:0d:b3:9a:12:a7:03:62:34:e5:ce:56:d2:
                    85:b0:ba:43:dd:65:78:01:33:a8:e6:a5:b6:da:e8:
                    70:49:59:5f:80:a1:98:0b:31:c6:b5:b8:02:53:de:
                    10:98:49:cb:f3:8e:13:a3:22:05:43:26:04:6a:0e:
                    6c:86:87:de:97:6d:3d:77:78:a3:6c:68:82:f6:68:
                    98:a2:7b:df:d9:15:99:f7:94:40:e6:fd:73:e6:fd:
                    b1:26:88:31:20:65:9c:a3:88:bb:f8:64:fe:c0:6e:
                    81:6d:b0:90:9b:3d:a8:b7:ef:eb:77:ca:bc:ac:ee:
                    93:27:ff:26:ea:39:c3:4a:19:2f:9c:b4:88:19:d0:
                    9f:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:5C:65:B7:BF:80:40:75:4B:B2:67:1E:35:31:66:CF:2A:84:E4:29
            X509v3 Authority Key Identifier:
                keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:08:f8:82:a7:1a:71:4e:e7:31:25:f7:de:18:9d:2d:de:64:
         b8:d2:46:0a:e5:95:a3:b7:00:dd:82:c2:c0:a4:c6:b4:11:ef:
         10:2f:f5:24:ef:ad:fb:34:17:50:51:3c:4f:a8:52:5f:7d:87:
         b8:bc:cd:99:2b:29:c0:2c:d3:02:90:98:50:5d:63:ff:75:6f:
         1c:29:29:53:10:cc:cf:27:3e:32:c0:f9:20:cf:a3:b8:2b:b3:
         b5:74:b4:a3:57:56:a1:e6:4d:2c:93:b7:b3:52:df:f5:a3:12:
         5d:0a:98:82:67:59:e2:85:d6:5a:5a:74:a8:4d:ac:2a:af:db:
         90:1e:e0:17:90:02:a3:85:ab:cb:1f:fe:ed:a9:1e:30:96:55:
         cb:e3:c9:91:ac:94:67:76:1d:4d:0b:3b:db:df:64:4c:bb:8e:
         37:47:46:bc:67:36:2b:ea:e3:52:0d:d2:46:d5:17:c6:33:51:
         b6:6f:25:e8:f8:46:67:25:af:c9:8c:10:be:3c:40:5e:9f:d3:
         05:4a:d0:6d:e8:94:f2:7c:b4:f8:ec:9b:ad:e2:14:53:a8:e4:
         6f:0b:79:8d:e9:f3:a4:6d:45:a0:9b:db:96:d2:4c:9f:73:22:
         4d:b9:f2:8f:af:a1:7f:fc:be:a0:95:d6:59:1a:f9:f9:d6:7f:
         da:35:54:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:37:14 2025 by rpki-client