Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File:                     sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier:          R6BrBGM4iH7wnXjTDN8TfhVehYYaL99z9e/Cqd+XU9Q=
Subject key identifier:   F1:75:AD:9A:23:C6:BF:76:DF:74:54:D0:CE:02:C8:36:CC:E6:80:D5
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer:       /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial:       01976704B336A9C91F603AEE78CF9EB15E0C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number:          12DD
Signing time:             Fri 13 Jun 2025 02:00:50 +0000
Manifest this update:     Fri 13 Jun 2025 02:00:50 +0000
Manifest next update:     Sat 14 Jun 2025 02:00:50 +0000
Files and hashes:         1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
                          2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: 4HDJRRYzh8KDKZU7uwXG2vEw4flTYW6Rr6WOc2dC2CY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 02:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:04:b3:36:a9:c9:1f:60:3a:ee:78:cf:9e:b1:5e:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
        Validity
            Not Before: Jun 13 02:00:50 2025 GMT
            Not After : Jun 14 02:00:50 2025 GMT
        Subject: CN=f175ad9a23c6bf76df7454d0ce02c836cce680d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:7b:df:66:7e:c1:69:10:35:1f:6f:07:e7:f1:
                    8f:84:14:38:36:45:d1:ac:d0:64:b9:9a:02:df:a3:
                    17:21:d5:21:fc:c4:55:44:53:23:55:73:37:e3:67:
                    fe:03:6f:c0:74:6d:43:0b:d3:ec:fe:df:da:c4:bd:
                    45:7c:fe:ad:23:84:90:d5:17:1e:50:45:86:36:e9:
                    87:b9:e4:ac:2f:ad:16:ce:58:16:16:5d:11:e4:1e:
                    35:14:da:88:da:46:86:24:c2:ce:4e:1c:fe:f7:6e:
                    ba:6c:e0:b0:8f:b6:0c:ef:15:4a:32:13:c7:66:72:
                    81:ba:c5:9e:d3:aa:cc:83:31:db:f4:f0:8d:05:cd:
                    1f:b4:f0:6c:d2:a2:0a:81:c6:b6:c0:f9:c7:88:23:
                    f0:d8:8c:c5:f2:9c:ad:7c:6f:a6:bb:bc:6c:ba:b4:
                    8b:86:df:0a:2c:99:36:f4:bc:96:31:02:90:36:bf:
                    a4:33:db:97:eb:26:0b:af:85:36:d7:10:ca:34:af:
                    2e:6c:e1:82:e1:90:0a:56:20:05:d1:41:d5:d8:d4:
                    bd:91:92:9a:a7:3e:17:69:4a:c2:e3:ca:a2:b7:cb:
                    01:03:75:17:84:73:da:a1:52:48:a3:46:e7:b9:c3:
                    33:ce:e4:b8:a2:72:fd:68:2e:57:96:43:59:44:59:
                    65:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:75:AD:9A:23:C6:BF:76:DF:74:54:D0:CE:02:C8:36:CC:E6:80:D5
            X509v3 Authority Key Identifier:
                keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:e9:59:d2:8f:1e:f9:c0:3f:57:93:d5:37:26:ae:cc:16:31:
         73:98:55:cb:41:7a:44:dd:a0:27:cc:5d:8b:07:91:13:8b:7b:
         71:7c:a1:92:68:b2:e7:18:27:f5:52:86:31:d5:eb:37:b0:6e:
         b6:86:4d:2b:81:32:6f:c3:3b:9f:6e:bc:49:79:0d:52:11:32:
         1c:46:a1:b6:26:87:72:8d:bd:f7:38:7f:ff:dd:f4:6a:63:8d:
         be:77:22:50:13:e0:94:67:1c:5a:35:91:c7:e0:ff:ef:2e:85:
         d1:26:4b:57:e7:00:7a:a4:0e:26:39:7c:19:8a:18:38:b0:a1:
         92:ee:77:f9:12:75:dd:3e:a6:5b:c0:89:cb:cf:9e:04:37:d3:
         ce:23:a4:99:9e:4f:3a:13:54:28:eb:75:02:80:61:7c:e1:dc:
         56:29:c8:d8:2a:4a:a4:d1:5c:2f:0e:15:2f:9e:ee:94:3e:bd:
         3b:17:1c:05:b3:88:cd:84:36:58:38:ea:1b:9a:84:a1:4c:f9:
         c2:bc:34:a9:31:15:96:69:62:bb:ac:2f:c1:0e:58:e0:dd:3b:
         35:e2:26:b2:7f:8c:d3:e2:cd:0d:98:e3:00:75:97:bf:da:dd:
         6c:f4:7c:6c:db:b4:39:eb:3a:b7:eb:e5:36:76:a2:83:3c:00:
         16:fd:24:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnBLM2qckfYDrueM+esV4MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZDZiYWVjYjYzYWU0NmZlZWEzMGNhYjg2MjFkNDZjNTlm
NzI4MDgwHhcNMjUwNjEzMDIwMDUwWhcNMjUwNjE0MDIwMDUwWjAzMTEwLwYDVQQD
EyhmMTc1YWQ5YTIzYzZiZjc2ZGY3NDU0ZDBjZTAyYzgzNmNjZTY4MGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynvfZn7BaRA1H28H5/GPhBQ4NkXR
rNBkuZoC36MXIdUh/MRVRFMjVXM342f+A2/AdG1DC9Ps/t/axL1FfP6tI4SQ1Rce
UEWGNumHueSsL60WzlgWFl0R5B41FNqI2kaGJMLOThz+9266bOCwj7YM7xVKMhPH
ZnKBusWe06rMgzHb9PCNBc0ftPBs0qIKgca2wPnHiCPw2IzF8pytfG+mu7xsurSL
ht8KLJk29LyWMQKQNr+kM9uX6yYLr4U21xDKNK8ubOGC4ZAKViAF0UHV2NS9kZKa
pz4XaUrC48qit8sBA3UXhHPaoVJIo0bnucMzzuS4onL9aC5XlkNZRFllpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPF1rZojxr9233RU0M4CyDbM5oDVMB8GA1UdIwQY
MBaAFLHWuuy2OuRv7qMMq4Yh1GxZ9ygIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMt
N2FmNzlkYWE2OWI5LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMtN2FmNzlkYWE2OWI5
LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPOlZ0o8e
+cA/V5PVNyauzBYxc5hVy0F6RN2gJ8xdiweRE4t7cXyhkmiy5xgn9VKGMdXrN7Bu
toZNK4Eyb8M7n268SXkNUhEyHEahtiaHco299zh//930amONvnciUBPglGccWjWR
x+D/7y6F0SZLV+cAeqQOJjl8GYoYOLChku53+RJ13T6mW8CJy8+eBDfTziOkmZ5P
OhNUKOt1AoBhfOHcVinI2CpKpNFcLw4VL57ulD69OxccBbOIzYQ2WDjqG5qEoUz5
wrw0qTEVlmliu6wvwQ5Y4N07NeImsn+M0+LNDZjjAHWXv9rdbPR8bNu0Oes6t+vl
NnaigzwAFv0kdg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 12:22:45 2025 by rpki-client