Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
File:                     o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft (raw, json)
Hash identifier:          h0c3C6biYIT5OtcHzh8t0pOP2wcBlFhXYMJHnLg0s/Y=
Subject key identifier:   13:EE:D9:3E:41:75:28:B8:27:E7:62:5C:5A:28:CA:E4:0A:65:3A:BE
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Certificate issuer:       /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial:       01976A739EB1D69ECACB2C0E4D27E2136CE6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
Manifest number:          129B
Signing time:             Fri 13 Jun 2025 18:00:51 +0000
Manifest this update:     Fri 13 Jun 2025 18:00:51 +0000
Manifest next update:     Sat 14 Jun 2025 18:00:51 +0000
Files and hashes:         1: KHmBEFAHu1D8g7BNr6DM90HcrdE.roa (hash: cHCWZbVIixRYPkJFTsJoo7AK/4mwhNH2E0rmOh1q4HI=)
                          2: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl (hash: jaaMPs6RX9JPrsMItWJJkm+BA+QCP3vcxa1tjO9MRHA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:73:9e:b1:d6:9e:ca:cb:2c:0e:4d:27:e2:13:6c:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
        Validity
            Not Before: Jun 13 18:00:51 2025 GMT
            Not After : Jun 14 18:00:51 2025 GMT
        Subject: CN=13eed93e417528b827e7625c5a28cae40a653abe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:54:f8:cf:01:58:c2:40:b6:5a:59:86:53:eb:
                    99:a6:eb:45:ee:38:8e:b4:96:21:9d:3f:65:b6:b6:
                    b4:bb:67:da:49:32:1b:45:0c:7b:e1:46:0e:1d:e9:
                    cf:83:2e:de:52:bb:2d:8d:16:65:ce:67:21:32:a0:
                    59:3d:78:8a:a2:15:06:d2:a6:3a:1f:38:61:4a:66:
                    20:d0:97:49:1b:84:ef:a8:2a:a5:68:74:2e:df:dd:
                    bf:9f:c6:a6:92:ab:19:e7:23:34:57:65:4e:0d:8f:
                    bd:bb:6b:56:b4:10:07:97:58:d3:86:e3:c4:5f:f2:
                    8f:83:5d:af:4b:a1:1e:c9:e2:57:98:e3:f9:50:6e:
                    47:6d:d4:6e:e4:0f:08:74:c9:9d:8e:56:b9:9a:fe:
                    36:0e:ee:ac:c6:2c:3e:75:bb:b6:69:72:f7:d0:83:
                    f1:22:65:7a:ce:c3:6d:0d:3e:34:1c:63:0e:46:da:
                    83:e6:cd:08:ed:60:65:a7:00:09:de:ad:21:95:aa:
                    25:bf:a7:7f:4c:b1:52:23:36:b0:d0:45:75:57:aa:
                    6b:65:36:4f:83:5c:e4:98:10:9c:07:f4:3b:9e:ec:
                    7a:cf:d3:d4:69:9b:66:c4:7b:57:f8:69:f4:5a:ee:
                    95:42:7b:97:01:0b:c7:63:b8:3f:13:84:4d:9a:0e:
                    e5:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:EE:D9:3E:41:75:28:B8:27:E7:62:5C:5A:28:CA:E4:0A:65:3A:BE
            X509v3 Authority Key Identifier:
                keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:ec:f7:a6:8c:de:4a:4c:ac:2f:89:fc:dc:60:7e:12:4c:4a:
         78:ba:c7:bc:14:55:49:da:40:25:99:81:fc:6e:94:10:aa:f6:
         78:be:50:bb:45:ce:13:f2:24:6f:ee:8a:0e:fc:12:92:51:89:
         a3:b6:f4:28:b2:df:cf:02:8b:e7:2c:58:75:8c:08:f5:aa:65:
         07:5e:3f:ed:6a:a4:e0:96:63:49:fe:f0:36:67:8b:65:e8:48:
         7d:10:7c:7e:7b:4b:cc:b6:bb:34:63:53:3f:fd:f3:25:82:1e:
         7e:3a:7c:52:4b:d2:1c:94:1a:11:39:67:2f:24:3a:77:82:af:
         0c:3e:25:1d:eb:f2:94:9e:5e:0c:32:bd:62:c5:22:e5:b6:0e:
         3d:ec:fc:fb:77:a6:60:55:39:b1:64:b8:d3:47:8c:06:30:9a:
         81:40:b8:d5:17:31:3c:27:ad:31:62:f5:7d:8f:29:96:6d:c5:
         c5:1f:aa:67:46:f1:32:a4:72:3e:ec:0d:85:96:7c:36:f3:81:
         b1:07:48:7e:a6:38:80:ab:ba:91:28:c5:01:a2:e4:51:e9:4e:
         a0:d8:35:4b:a9:87:ab:e2:66:a6:7d:26:bf:c3:77:65:ce:c3:
         76:26:67:42:7e:21:9e:e5:3d:c7:ae:4e:4c:c3:0d:84:ad:a1:
         f1:b2:d7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:34:24 2025 by rpki-client