Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File:                     bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier:          gDMVBVxx+YiOREhn/pGzmohK75j2bxnxIYrWqNrqLxo=
Subject key identifier:   A5:DC:35:8C:94:C2:D9:BB:C3:92:E5:05:4A:B5:B9:0C:D1:DB:35:B9
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer:       /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial:       019759B6A28D98BAE8A1A286E710BDD76718
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number:          12F0
Signing time:             Tue 10 Jun 2025 12:00:30 +0000
Manifest this update:     Tue 10 Jun 2025 12:00:30 +0000
Manifest next update:     Wed 11 Jun 2025 12:00:30 +0000
Files and hashes:         1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
                          2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: UBVxy60o8mnMTjnW/4RPygb7gpXz1WN7+06VCi+Qs0Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:b6:a2:8d:98:ba:e8:a1:a2:86:e7:10:bd:d7:67:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
        Validity
            Not Before: Jun 10 12:00:30 2025 GMT
            Not After : Jun 11 12:00:30 2025 GMT
        Subject: CN=a5dc358c94c2d9bbc392e5054ab5b90cd1db35b9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:f8:30:76:98:12:93:cc:32:38:af:e1:78:f6:
                    2b:1d:fe:1d:74:f4:ec:2e:f6:3d:02:4f:69:5f:14:
                    fc:f6:0f:fa:fe:4e:d5:ee:f7:dc:b4:e4:47:61:33:
                    c5:c3:15:af:ba:2a:11:1a:78:f0:5a:b0:67:93:a5:
                    54:7a:f4:54:4a:72:bf:5e:99:4c:45:2f:3b:5c:6d:
                    4b:7f:a6:16:aa:19:f8:58:29:4c:25:e6:0b:47:ef:
                    78:96:45:9c:7e:53:3b:78:13:01:32:36:96:f5:ad:
                    20:73:1d:a2:c9:42:0c:8d:07:b5:72:95:92:bd:1c:
                    26:cc:3f:4a:99:ae:9e:18:74:22:60:35:48:05:2e:
                    67:d2:fc:fd:aa:0a:25:a5:a5:51:ec:7e:ff:32:35:
                    3e:e6:51:57:e9:8d:b3:9e:22:62:fa:65:5c:1a:bf:
                    bd:59:8e:af:32:52:37:5a:4c:ef:6a:f1:40:91:5d:
                    46:9d:b1:ea:5b:73:e4:cc:32:40:bd:21:d2:33:d2:
                    f8:2c:0d:6f:44:55:76:8f:ea:02:f2:9b:c3:ea:d8:
                    e7:33:39:76:e9:ca:3f:f6:51:7c:28:b7:9c:77:32:
                    73:3f:45:64:56:70:c4:31:53:b9:37:e7:6a:a4:2f:
                    6e:77:8b:6b:d9:d6:31:c4:99:6c:e1:5b:ff:24:70:
                    53:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:DC:35:8C:94:C2:D9:BB:C3:92:E5:05:4A:B5:B9:0C:D1:DB:35:B9
            X509v3 Authority Key Identifier:
                keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:cb:29:8f:ce:2f:cf:32:17:a4:78:d7:b3:04:fa:75:40:fe:
         69:ae:cc:af:ac:d8:95:fe:3a:d8:42:9e:4a:1f:63:df:b2:72:
         92:e7:b9:27:3c:dc:64:4a:44:ec:8a:4d:a0:b5:1a:0b:ca:4a:
         07:59:7f:66:4f:a1:79:9f:87:40:4b:10:4a:e3:56:0b:35:13:
         88:75:b9:40:7a:87:9a:e8:35:c9:3a:53:0e:a4:1f:ca:8f:cb:
         4e:ac:03:96:c5:f4:b4:e6:1e:cf:72:68:89:41:ae:10:a6:22:
         86:66:a6:9a:be:f7:7d:49:87:fb:c9:01:6b:b1:79:0c:c5:2c:
         53:88:dd:70:7c:bd:79:2a:67:a0:09:c9:01:94:51:cd:8f:e8:
         4a:c5:fd:04:a7:b5:3c:5d:45:27:7d:95:76:74:f8:d1:25:54:
         b0:1d:1e:27:67:8e:8f:cd:c2:1c:b0:43:7c:53:3a:4b:c4:2d:
         2f:33:77:a5:a6:c3:42:bc:dc:9f:27:3c:da:ac:90:cb:66:2c:
         a0:89:12:0f:e7:0a:0b:cb:83:5f:1b:0e:3b:f2:eb:89:4f:8c:
         50:e7:b0:30:e8:e3:8e:fd:93:71:29:8f:9e:f9:50:2a:d8:bb:
         33:ad:da:4b:f8:92:2f:46:58:7e:fe:16:2d:c4:46:7f:11:d8:
         06:37:e5:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:09:19 2025 by rpki-client