Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File:                     FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier:          q9hWCijuiQPnrtz2l/DO60V9NXLCIRwBqCwuJLaWu8M=
Subject key identifier:   A6:2B:37:1A:F4:3D:14:55:7F:84:2F:2D:F7:B0:C5:CB:51:12:BE:54
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer:       /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial:       01975F4B1B793FF240A7A43F43BE8D7BAC44
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number:          1586
Signing time:             Wed 11 Jun 2025 14:00:47 +0000
Manifest this update:     Wed 11 Jun 2025 14:00:47 +0000
Manifest next update:     Thu 12 Jun 2025 14:00:47 +0000
Files and hashes:         1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: M3Lk2Xi1B1NToMa4T0/CgHJaApSDofHZPOfkhQkjbKw=)
                          2: c3go-15xGcBaQkyMFCkLYeR3zYQ.roa (hash: 4H2iOu8gLLffNi536xCsuCivAwnItfPi2vTZ/W207ew=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 14:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:4b:1b:79:3f:f2:40:a7:a4:3f:43:be:8d:7b:ac:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
        Validity
            Not Before: Jun 11 14:00:47 2025 GMT
            Not After : Jun 12 14:00:47 2025 GMT
        Subject: CN=a62b371af43d14557f842f2df7b0c5cb5112be54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:5f:7e:29:bb:68:31:08:d1:26:5e:ce:cc:0a:
                    d3:dc:b5:cf:56:36:0a:2e:61:de:92:55:7a:4d:a1:
                    69:b6:0b:6d:35:fd:0b:17:b9:ab:91:b7:4c:c8:e6:
                    c1:f7:81:0d:74:bf:1e:63:51:1c:5f:f5:25:60:b6:
                    18:9b:28:05:8f:f2:46:8e:f1:b2:dc:9f:79:04:b5:
                    00:f8:3b:23:10:5d:08:b3:da:02:30:5b:da:85:17:
                    ef:10:e9:65:bd:95:f7:d9:2c:12:8f:88:47:1c:5a:
                    ca:54:b5:c2:05:5d:f5:cc:2b:28:42:8a:13:0e:e5:
                    48:82:9c:e9:7d:76:1d:97:77:a7:91:88:18:62:f9:
                    c9:a5:f5:97:be:63:8d:52:2d:9c:3d:5d:36:1d:46:
                    af:a2:16:e9:8e:8e:08:00:78:be:e7:6c:dd:83:b8:
                    01:ed:c4:b0:f6:cb:22:f8:35:60:64:bf:63:81:f2:
                    30:a0:70:85:1d:6b:db:5e:d2:33:6e:f1:fe:0e:39:
                    91:31:99:aa:de:bc:57:87:f5:e5:32:e2:69:7f:54:
                    ea:79:50:1e:f6:9c:a1:3c:47:47:70:ce:ba:e0:db:
                    a8:05:43:3d:32:d7:e1:1e:29:d7:22:2b:59:80:88:
                    26:06:de:03:63:30:8c:1a:f9:71:27:98:1e:71:85:
                    48:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:2B:37:1A:F4:3D:14:55:7F:84:2F:2D:F7:B0:C5:CB:51:12:BE:54
            X509v3 Authority Key Identifier:
                keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:7e:ec:a3:d2:13:66:bd:eb:90:0e:50:28:86:1f:7c:86:3a:
         84:dc:e7:40:11:58:b5:ef:a1:e9:79:64:44:58:dd:b3:04:ec:
         b1:01:7b:23:8a:b4:30:7c:15:96:a0:52:ed:09:22:99:19:ee:
         ee:db:c9:e3:9f:5c:b2:27:32:e2:13:47:cc:88:fd:c1:88:63:
         bf:89:e0:80:b2:e0:7a:26:0d:1a:54:c9:5a:da:d9:87:f0:30:
         dd:66:55:4a:0b:10:7d:c2:12:4c:c2:ed:76:5c:03:10:65:60:
         e4:9b:bc:c2:c9:10:e4:17:31:00:5e:97:30:09:f3:32:ec:12:
         81:4f:31:b5:9d:98:0b:a1:04:2e:59:23:3a:40:95:1f:cc:b8:
         9c:54:55:a5:78:8a:95:09:21:60:48:f6:f9:f9:15:64:ec:39:
         ea:1b:65:57:ac:af:20:27:8f:3e:15:37:be:7e:a5:70:8b:29:
         37:98:5f:78:6b:27:14:e3:45:27:70:6b:23:51:69:ba:b1:3e:
         8e:6c:f7:26:50:1c:9e:46:fc:71:40:2e:31:5b:cd:8d:d4:c8:
         62:36:77:ad:38:da:3f:79:5f:4a:30:00:97:33:93:25:f8:1e:
         94:6f:6a:28:5a:2f:cb:2b:fd:f4:da:6c:ac:ff:62:0c:95:db:
         df:01:b6:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdfSxt5P/JAp6Q/Q76Ne6xEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0MDZiNGY5ZmQ1MTY4ZWI3NzgxZTgyNGIxNDUzZTk5ZjVl
NjU1M2MwHhcNMjUwNjExMTQwMDQ3WhcNMjUwNjEyMTQwMDQ3WjAzMTEwLwYDVQQD
EyhhNjJiMzcxYWY0M2QxNDU1N2Y4NDJmMmRmN2IwYzVjYjUxMTJiZTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo19+KbtoMQjRJl7OzArT3LXPVjYK
LmHeklV6TaFptgttNf0LF7mrkbdMyObB94ENdL8eY1EcX/UlYLYYmygFj/JGjvGy
3J95BLUA+DsjEF0Is9oCMFvahRfvEOllvZX32SwSj4hHHFrKVLXCBV31zCsoQooT
DuVIgpzpfXYdl3enkYgYYvnJpfWXvmONUi2cPV02HUavohbpjo4IAHi+52zdg7gB
7cSw9ssi+DVgZL9jgfIwoHCFHWvbXtIzbvH+DjmRMZmq3rxXh/XlMuJpf1TqeVAe
9pyhPEdHcM664NuoBUM9MtfhHinXIitZgIgmBt4DYzCMGvlxJ5gecYVIDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKYrNxr0PRRVf4QvLfewxctREr5UMB8GA1UdIwQY
MBaAFBQGtPn9UWjrd4HoJLFFPpn15lU8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NmQ1MTItNDk5Yi00MThlLWE0MjAt
YzE2MTI0NmM4MjVhLzEvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NmQ1MTItNDk5Yi00MThlLWE0MjAtYzE2MTI0NmM4MjVh
LzEvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACX7so9IT
Zr3rkA5QKIYffIY6hNznQBFYte+h6XlkRFjdswTssQF7I4q0MHwVlqBS7QkimRnu
7tvJ459csicy4hNHzIj9wYhjv4nggLLgeiYNGlTJWtrZh/Aw3WZVSgsQfcISTMLt
dlwDEGVg5Ju8wskQ5BcxAF6XMAnzMuwSgU8xtZ2YC6EELlkjOkCVH8y4nFRVpXiK
lQkhYEj2+fkVZOw56htlV6yvICePPhU3vn6lcIspN5hfeGsnFONFJ3BrI1FpurE+
jmz3JlAcnkb8cUAuMVvNjdTIYjZ3rTjaP3lfSjAAlzOTJfgelG9qKFovyyv99Nps
rP9iDJXb3wG21Q==
-----END CERTIFICATE-----
Generated at Wed Jun 11 22:49:53 2025 by rpki-client