Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File:                     bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier:          mH7JsAsiT7d2Ws4qvmgCA6DcbDPYY3z1a1odiWVS1F0=
Subject key identifier:   5F:46:CB:59:53:CB:3C:8F:F1:BB:C9:CA:CD:85:3F:BA:EA:68:E5:CD
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer:       /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial:       0197654D3223F37579D115D1E6C390EFA076
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number:          12F6
Signing time:             Thu 12 Jun 2025 18:00:47 +0000
Manifest this update:     Thu 12 Jun 2025 18:00:47 +0000
Manifest next update:     Fri 13 Jun 2025 18:00:47 +0000
Files and hashes:         1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
                          2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: S3+l6dcUwNN2cURw7auGul19sD/eLjZVv5/GPbskko4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 18:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:4d:32:23:f3:75:79:d1:15:d1:e6:c3:90:ef:a0:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
        Validity
            Not Before: Jun 12 18:00:47 2025 GMT
            Not After : Jun 13 18:00:47 2025 GMT
        Subject: CN=5f46cb5953cb3c8ff1bbc9cacd853fbaea68e5cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:d9:fc:6e:56:52:7a:82:64:f3:50:d5:08:cd:
                    61:7e:cf:f4:87:58:9f:2f:cb:b1:e1:49:5f:ba:d4:
                    0e:b3:cc:00:84:ab:3d:70:f3:b5:71:58:7e:85:12:
                    fd:92:cb:43:2b:5b:c6:62:1c:31:8a:4b:7b:a2:8e:
                    3b:d0:7e:d0:00:4d:a9:2c:87:7c:52:71:04:29:30:
                    72:98:36:1b:c3:87:24:e3:a7:3e:e7:e4:a9:99:d8:
                    2c:48:53:48:08:a1:2e:34:3b:ab:e5:73:27:bb:22:
                    2f:61:db:f4:7b:f4:44:fd:d7:4a:6c:d6:96:8b:98:
                    46:01:0f:db:2f:08:0e:82:83:bc:93:84:f6:e9:36:
                    34:eb:6d:2d:2c:6a:53:cc:62:16:b0:74:5c:d1:c8:
                    e1:3d:ba:d5:c2:f1:e1:5d:93:fa:05:0f:ff:c2:5b:
                    fe:94:50:16:ac:9d:36:7d:65:be:4c:04:c0:bd:48:
                    89:f5:44:99:66:f3:3f:62:ff:1e:b4:1f:9a:41:fb:
                    2b:e1:f5:ca:ee:b2:3f:eb:1e:2c:72:2f:58:56:f3:
                    41:4b:5c:a2:ed:8d:6d:73:6f:37:b1:26:41:b5:ef:
                    df:4c:28:8c:39:3c:75:8c:85:d1:33:d2:c2:0e:b1:
                    87:e4:85:5f:7d:47:c8:ea:f7:ba:da:0d:4d:6b:ed:
                    86:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:46:CB:59:53:CB:3C:8F:F1:BB:C9:CA:CD:85:3F:BA:EA:68:E5:CD
            X509v3 Authority Key Identifier:
                keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:31:87:9f:7b:67:1a:67:9e:f4:98:6b:29:dc:9e:ec:d2:c9:
         ab:cb:df:d5:03:a5:a2:87:59:73:08:be:47:7e:db:fe:7d:ae:
         c1:e3:57:0f:23:34:d6:c0:1e:d6:17:f3:a0:ae:31:68:ff:27:
         7c:f9:6d:7d:7c:48:40:ca:4a:d4:07:b2:32:8d:30:eb:88:dd:
         6a:4c:0d:a0:65:5c:23:db:85:64:49:5d:01:52:96:34:ac:66:
         05:ff:b0:c8:8b:a2:59:db:78:2f:87:83:b4:16:5c:aa:31:fe:
         67:a2:a1:f4:d7:af:b3:44:91:f9:65:73:64:fb:74:c1:2e:2a:
         88:04:52:d0:48:4e:2a:3a:c1:a0:b4:fd:e8:45:a1:03:98:2a:
         8d:9d:d8:60:01:ec:47:b2:02:ea:ab:4f:71:1e:82:82:e5:14:
         1d:3c:97:5c:3e:26:13:18:b7:7b:b3:c1:6d:c7:f5:8e:a5:aa:
         2b:9e:b9:1b:54:cf:96:62:58:55:00:a8:af:fa:aa:82:80:bd:
         83:a8:b9:30:8a:f6:a9:3b:4c:cd:85:d9:01:d3:ef:5e:00:9d:
         5c:4a:58:f6:16:c5:72:dd:43:83:ae:29:80:f4:01:94:e1:2e:
         fa:61:2f:5c:ea:bd:bb:65:41:2f:e7:07:e4:ab:20:f1:3f:32:
         b1:3b:cd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:36:31 2025 by rpki-client