Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File:                     VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier:          0FrlCgGXG5YPb13kvjHkdy19e3B0NK19L2XhOtmYumA=
Subject key identifier:   4A:D3:2C:6C:4F:BC:0D:E4:90:C3:2A:CA:03:7A:26:C6:78:49:1B:23
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer:       /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial:       01975A922AC5E5D744DC8AD5DEC9C7DABBCB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number:          08A7
Signing time:             Tue 10 Jun 2025 16:00:17 +0000
Manifest this update:     Tue 10 Jun 2025 16:00:17 +0000
Manifest next update:     Wed 11 Jun 2025 16:00:17 +0000
Files and hashes:         1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: 0r3pOybbSWYCCrGP8pr63t8e+nqiq9mtcc1CGHcx5Do=)
                          2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:92:2a:c5:e5:d7:44:dc:8a:d5:de:c9:c7:da:bb:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
        Validity
            Not Before: Jun 10 16:00:17 2025 GMT
            Not After : Jun 11 16:00:17 2025 GMT
        Subject: CN=4ad32c6c4fbc0de490c32aca037a26c678491b23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:5c:d2:07:c3:b2:e3:a5:93:89:f5:c2:23:b9:
                    5d:d8:a9:66:ee:d4:b4:ea:07:28:17:da:df:39:47:
                    67:77:ac:88:3b:da:63:a5:df:96:8a:4c:5e:ab:9a:
                    74:e6:c9:de:1b:12:e9:2b:5d:f4:09:1e:25:2d:9b:
                    00:af:0e:26:c7:75:81:cf:b4:6b:42:4f:79:ad:87:
                    6a:41:86:de:2c:61:fb:3d:60:38:16:92:9a:49:38:
                    45:81:07:fc:d7:94:cc:36:49:73:f4:e2:99:cb:01:
                    26:90:36:07:2f:ed:1e:d8:7b:fb:5f:35:b9:4b:0e:
                    21:37:73:56:41:66:72:43:f8:a5:50:06:80:7c:00:
                    40:b2:bc:f7:b1:59:d1:71:45:26:b7:b0:f5:78:8a:
                    52:04:2e:40:56:a1:01:96:52:26:4d:3e:d3:0e:78:
                    67:7d:62:76:8b:33:5b:1d:3e:70:df:ee:2d:21:51:
                    73:a7:c0:09:3e:40:2e:3a:60:d6:ce:13:01:2f:40:
                    82:72:6b:ad:1e:50:c6:4b:02:12:3f:df:9b:87:0e:
                    a1:62:d8:3f:fb:27:a2:0d:eb:04:c8:ba:3c:1b:09:
                    68:79:70:70:b7:77:ae:d0:52:0a:db:31:13:e2:f4:
                    99:9c:4b:14:61:5f:cf:b1:36:72:30:2b:7b:fc:93:
                    96:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:D3:2C:6C:4F:BC:0D:E4:90:C3:2A:CA:03:7A:26:C6:78:49:1B:23
            X509v3 Authority Key Identifier:
                keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:2f:cf:4e:3c:11:1e:df:5d:5b:42:07:e7:e0:39:88:f2:ac:
         4a:80:47:d6:0b:6a:3d:e4:ef:0b:42:98:fa:e9:b2:04:95:38:
         6b:a3:8c:a3:e8:90:54:86:b1:42:d1:95:4f:1a:83:99:62:28:
         d7:21:14:f4:d0:f2:58:83:4e:c7:14:7d:04:c0:20:ea:33:2d:
         0f:67:67:d0:1b:6f:41:19:0f:51:9a:31:cc:fb:70:f5:f0:ec:
         00:e9:bd:d6:36:50:ed:2c:df:07:51:7b:93:4f:eb:c0:1b:7b:
         5c:55:87:1f:b1:f6:63:36:8b:49:24:ac:a4:40:f6:89:67:cd:
         26:64:9b:9f:53:68:d1:88:53:6b:57:e4:0e:33:b6:ee:1d:e1:
         fd:2f:3d:ef:1c:6f:bb:3e:1b:3a:b8:89:04:e0:b6:a3:1f:8f:
         ef:e8:6b:aa:b8:cd:2f:41:1b:94:f5:f6:e7:0f:57:a2:d0:b2:
         33:7e:ae:23:a4:77:bb:ea:23:ee:7d:ba:83:b7:de:33:98:af:
         4f:cb:3c:a3:a4:ff:c4:ae:60:45:eb:b5:88:5c:21:37:a7:28:
         a4:c1:7a:48:89:64:94:31:9a:b7:93:ff:84:a4:38:bd:c9:b0:
         d1:af:26:57:7b:f1:93:14:1d:59:d3:0a:fc:7c:76:16:91:ef:
         09:fc:58:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:47:51 2025 by rpki-client