Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File:                     mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier:          znn8t3FRpJQlC8p1lxlOo4BVlSJb1awiHPIdAHg/rTI=
Subject key identifier:   F8:FE:79:1B:2D:1F:8C:EF:06:2F:E2:C4:28:01:EB:F9:43:9D:2D:49
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer:       /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial:       01976EBE3CA8DFB72F8A67A6A925285B02CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number:          12D4
Signing time:             Sat 14 Jun 2025 14:00:50 +0000
Manifest this update:     Sat 14 Jun 2025 14:00:50 +0000
Manifest next update:     Sun 15 Jun 2025 14:00:50 +0000
Files and hashes:         1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
                          2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: EVDO2CprgXL+EbfDNrUM0wEvVmCo0z+dtYpBo5BUXSQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:be:3c:a8:df:b7:2f:8a:67:a6:a9:25:28:5b:02:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
        Validity
            Not Before: Jun 14 14:00:50 2025 GMT
            Not After : Jun 15 14:00:50 2025 GMT
        Subject: CN=f8fe791b2d1f8cef062fe2c42801ebf9439d2d49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:ab:bd:a1:c0:90:2f:c6:6e:19:31:ff:b3:88:
                    17:da:9c:61:c1:6c:b4:75:44:7c:85:44:9e:0f:e3:
                    34:96:ab:6a:d8:72:8a:40:be:42:a3:12:76:11:59:
                    b0:b3:e0:dc:9d:25:7c:ea:16:12:fc:f2:09:41:ab:
                    ee:22:0f:aa:28:f5:cb:34:2a:a1:b0:67:fa:44:63:
                    e9:f8:d9:a5:8d:96:10:da:a9:fd:6c:70:33:10:2d:
                    00:7f:84:7b:70:16:4e:ba:2d:5c:61:58:05:11:b7:
                    63:33:36:fa:4f:a9:57:99:56:c9:c9:c5:9b:53:81:
                    7e:6b:c7:ef:0d:9d:ad:cd:01:e3:81:bb:5a:81:ce:
                    28:b3:a2:4c:35:74:f1:34:84:f3:e8:3f:60:8c:28:
                    8f:ae:57:20:6f:94:48:3f:7d:55:38:1f:51:e2:76:
                    06:ce:df:ce:69:07:bb:b2:f7:c1:2a:cc:df:11:9e:
                    ff:7c:6e:44:8c:6e:64:6b:ca:81:78:ed:6b:e7:dd:
                    4e:1e:f2:9a:5a:22:71:94:61:97:3e:7e:4f:d4:40:
                    2d:7a:04:79:6f:a8:f9:9e:a9:e5:a9:35:9e:7a:89:
                    11:82:17:4c:38:73:b4:5e:7f:a0:df:60:a7:5c:40:
                    ce:ba:b6:3e:07:1c:66:18:cc:04:8d:fe:56:97:bc:
                    1b:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:FE:79:1B:2D:1F:8C:EF:06:2F:E2:C4:28:01:EB:F9:43:9D:2D:49
            X509v3 Authority Key Identifier:
                keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:29:5f:a2:c5:61:19:d8:fe:66:b3:1a:33:51:a9:03:4b:cd:
         aa:29:96:69:56:57:83:c8:ed:72:b1:71:7d:50:b1:55:36:a3:
         3d:0a:a8:6f:67:cc:2f:69:91:ef:01:04:d6:54:3a:cc:31:40:
         70:69:f1:ba:94:2d:f7:8b:c1:3d:e0:ee:37:1a:43:f0:2b:be:
         ca:12:31:fe:a8:34:50:98:2a:8f:6b:40:6f:ce:b7:92:b7:0c:
         12:0e:f6:f5:87:c0:a8:73:bd:85:95:44:7d:86:8b:0e:71:d7:
         11:35:c6:01:33:b4:14:db:91:f4:fc:51:d2:b8:2c:89:ba:ba:
         d9:42:fb:fc:7c:0c:9a:45:f8:db:64:4e:c9:f0:c4:f8:8a:d4:
         8d:e5:bf:0d:13:4d:70:26:59:39:70:d4:ad:4f:55:82:3f:42:
         57:1f:db:c6:b2:a3:3f:6b:04:da:a4:4e:7c:c9:5b:74:f5:fb:
         22:00:8b:7b:6b:1c:a8:b6:6b:1b:74:5a:7a:e8:78:b4:89:20:
         0d:ff:08:98:8a:01:9b:42:3b:b8:a3:3a:fc:1b:b9:15:59:82:
         38:7f:39:60:bb:90:fe:63:62:36:c0:74:37:06:8e:87:c7:47:
         fc:22:be:80:cc:c4:78:72:05:93:3e:aa:0b:a0:ce:54:1b:e1:
         34:52:1c:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduvjyo37cvimemqSUoWwLPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhYjJmOTk3NWE5MWU3MTM3OWRhMTAwZWM4NGJkNDRhMGEy
ODBkOWIwHhcNMjUwNjE0MTQwMDUwWhcNMjUwNjE1MTQwMDUwWjAzMTEwLwYDVQQD
EyhmOGZlNzkxYjJkMWY4Y2VmMDYyZmUyYzQyODAxZWJmOTQzOWQyZDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6u9ocCQL8ZuGTH/s4gX2pxhwWy0
dUR8hUSeD+M0lqtq2HKKQL5CoxJ2EVmws+DcnSV86hYS/PIJQavuIg+qKPXLNCqh
sGf6RGPp+NmljZYQ2qn9bHAzEC0Af4R7cBZOui1cYVgFEbdjMzb6T6lXmVbJycWb
U4F+a8fvDZ2tzQHjgbtagc4os6JMNXTxNITz6D9gjCiPrlcgb5RIP31VOB9R4nYG
zt/OaQe7svfBKszfEZ7/fG5EjG5ka8qBeO1r591OHvKaWiJxlGGXPn5P1EAtegR5
b6j5nqnlqTWeeokRghdMOHO0Xn+g32CnXEDOurY+BxxmGMwEjf5Wl7wbSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPj+eRstH4zvBi/ixCgB6/lDnS1JMB8GA1UdIwQY
MBaAFJqy+ZdakecTedoQDshL1EoKKA2bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wN2E0ODctMjZjYi00YjE4LWJiMzkt
MTVmZTA2ZmZmOGJjLzEvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS8wN2E0ODctMjZjYi00YjE4LWJiMzktMTVmZTA2ZmZmOGJj
LzEvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSlfosVh
Gdj+ZrMaM1GpA0vNqimWaVZXg8jtcrFxfVCxVTajPQqob2fML2mR7wEE1lQ6zDFA
cGnxupQt94vBPeDuNxpD8Cu+yhIx/qg0UJgqj2tAb863krcMEg729YfAqHO9hZVE
fYaLDnHXETXGATO0FNuR9PxR0rgsibq62UL7/HwMmkX422ROyfDE+IrUjeW/DRNN
cCZZOXDUrU9Vgj9CVx/bxrKjP2sE2qROfMlbdPX7IgCLe2scqLZrG3Raeuh4tIkg
Df8ImIoBm0I7uKM6/Bu5FVmCOH85YLuQ/mNiNsB0NwaOh8dH/CK+gMzEeHIFkz6q
C6DOVBvhNFIc5Q==
-----END CERTIFICATE-----
Generated at Sat Jun 14 20:41:02 2025 by rpki-client