Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File:                     oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier:          ZjNiL5IrwAIn3lF5wJEhqv449annq5xPV/Yddb/8K3I=
Subject key identifier:   CB:5A:72:AC:13:9F:83:B7:53:17:2D:3A:85:D6:4F:34:AC:51:99:EE
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer:       /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial:       0197613956E118ADAA76EAA61E340D34FECC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number:          0F83
Signing time:             Wed 11 Jun 2025 23:00:37 +0000
Manifest this update:     Wed 11 Jun 2025 23:00:37 +0000
Manifest next update:     Thu 12 Jun 2025 23:00:37 +0000
Files and hashes:         1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
                          2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: rjPUHjrZUYduj/t71cCl/9TyWUm9PYuRtX3JzXEIvLI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 21:26:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:39:56:e1:18:ad:aa:76:ea:a6:1e:34:0d:34:fe:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
        Validity
            Not Before: Jun 11 23:00:37 2025 GMT
            Not After : Jun 12 23:00:37 2025 GMT
        Subject: CN=cb5a72ac139f83b753172d3a85d64f34ac5199ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:ae:af:02:59:c1:8c:9c:18:08:f6:25:2d:07:
                    55:10:52:e3:c3:e8:61:e8:0c:0d:ce:e9:2e:11:b8:
                    82:98:45:fc:46:2b:6b:9d:39:fd:67:ee:2d:cb:3f:
                    95:1f:76:2b:a7:96:a0:74:d9:06:b0:94:d6:e2:05:
                    6f:31:48:2c:7c:49:3f:a5:06:49:30:31:ea:b2:01:
                    a1:ce:f7:a9:cd:b5:29:20:3b:1a:94:ed:e0:6e:ce:
                    c0:b6:20:c9:44:1e:a1:da:6a:d7:8f:fb:41:6a:61:
                    f6:7d:35:47:80:0f:51:4a:40:4f:fd:26:e3:10:6c:
                    10:48:c2:3c:1b:56:f2:9c:7b:b2:88:a4:9c:27:0c:
                    96:fa:f0:01:7b:40:85:a2:14:4e:8e:58:7c:8a:03:
                    e4:45:c6:6b:e6:5a:98:21:e8:28:a0:78:0f:6d:92:
                    bd:c1:77:ec:a7:89:76:e7:d7:05:98:c1:4d:2b:b5:
                    1a:5c:be:78:19:62:2c:ce:33:47:6d:2c:1d:a5:32:
                    fd:e0:73:31:36:f6:4e:f8:78:01:5d:7c:00:fe:1e:
                    51:55:b8:1a:8a:86:95:77:17:2d:0e:20:73:35:f9:
                    65:32:54:17:a8:6a:b3:90:55:e3:1d:f6:b6:70:35:
                    10:e8:89:07:66:50:cc:6a:96:0b:c3:45:c5:a3:69:
                    a5:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:5A:72:AC:13:9F:83:B7:53:17:2D:3A:85:D6:4F:34:AC:51:99:EE
            X509v3 Authority Key Identifier:
                keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:08:e0:9a:12:34:60:03:58:a0:b7:77:9e:ae:4e:37:e5:be:
         16:91:b4:f5:71:af:c0:40:f6:97:6a:24:12:a6:14:0e:01:b2:
         07:ba:6a:98:f0:96:74:b7:ae:3b:f8:d3:89:9f:63:6d:55:77:
         61:71:be:5b:aa:20:19:65:6b:dc:6d:cb:56:2d:a8:f4:1f:cc:
         fb:fd:ac:64:b7:3f:e1:54:9a:5d:9a:b1:4f:74:b6:5c:70:50:
         80:cb:c6:51:d8:1c:65:f9:ba:02:3d:bf:cd:40:59:22:85:7e:
         2d:f7:7a:b9:16:28:35:2a:bf:9c:a9:82:0d:5a:f1:85:27:37:
         66:c9:58:fb:30:d5:5a:a9:4e:51:6e:27:b2:fd:49:4b:2f:91:
         28:37:55:e9:a0:bd:f1:f8:43:5e:ed:27:0d:19:31:da:dd:a0:
         00:07:64:63:39:71:21:b4:f5:98:57:64:4c:55:d7:78:5b:6e:
         0b:f7:d8:cb:4d:42:1a:0c:8b:44:fb:b8:a3:a1:a9:34:a4:f8:
         9a:03:61:d9:3d:89:75:07:b2:57:de:17:7d:7c:c4:3c:0a:03:
         ca:46:aa:2b:c7:37:a3:21:a6:2b:43:c5:f0:11:45:4f:ef:06:
         dd:01:15:dc:44:6b:d9:00:4f:a4:a8:48:44:68:54:f0:b7:63:
         78:53:e2:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 01:58:19 2025 by rpki-client