Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File:                     rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier:          c+ZXPxHmHEFuYqbufu0UK4oX+lwn93ATGAFTyuv9XDI=
Subject key identifier:   69:F7:28:A8:3B:88:46:0B:F3:1D:AF:AD:9F:1D:34:D8:5B:55:69:DC
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer:       /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial:       019768BBC68E7D23DE5B0C0B41C09D4A8C17
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number:          085A
Signing time:             Fri 13 Jun 2025 10:00:25 +0000
Manifest this update:     Fri 13 Jun 2025 10:00:25 +0000
Manifest next update:     Sat 14 Jun 2025 10:00:25 +0000
Files and hashes:         1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=)
                          2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: aYUzu3WnPX0pga/HoNutMM+3J9KyuFIpO5gQp2hf6KA=)
                          3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:bb:c6:8e:7d:23:de:5b:0c:0b:41:c0:9d:4a:8c:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
        Validity
            Not Before: Jun 13 10:00:25 2025 GMT
            Not After : Jun 14 10:00:25 2025 GMT
        Subject: CN=69f728a83b88460bf31dafad9f1d34d85b5569dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:3b:57:28:33:6f:7e:f3:ae:7d:7f:f1:7b:7d:
                    38:13:70:42:34:07:fb:e2:57:0c:3e:9c:17:30:03:
                    8d:60:c5:df:4c:f5:62:2d:cd:a7:be:fc:bd:27:e2:
                    53:a9:8d:29:62:29:e6:6e:48:6b:87:a7:e9:de:1b:
                    3c:b1:fb:da:ca:e5:cf:14:be:4c:39:df:c5:31:a7:
                    47:7d:2f:1a:4d:f0:dd:37:84:0f:ca:cb:9c:62:02:
                    ae:23:24:66:52:44:dd:11:23:0e:fe:4f:5f:ba:20:
                    aa:b4:1d:d4:8d:e2:f2:bc:69:47:1c:8d:32:1c:b7:
                    33:fd:35:25:6d:66:06:73:de:3b:34:d0:1e:02:e4:
                    e7:31:fa:f4:0b:69:65:5a:81:75:d0:bb:20:35:d3:
                    e0:4f:fa:ac:e8:82:b4:63:6e:a8:66:5e:99:73:e9:
                    e0:9b:66:f1:80:e2:ca:01:a9:51:5d:d0:c3:c8:97:
                    38:11:7d:95:c5:7e:ca:51:58:d5:94:59:68:62:cc:
                    83:7e:11:af:8b:74:2f:c9:fe:ca:ac:8a:7c:2c:1b:
                    ef:71:7f:89:0b:dd:c0:ef:b4:72:0f:d3:58:ae:9a:
                    2a:c4:a1:57:02:fe:60:fa:77:d1:65:6d:09:35:a7:
                    99:82:4d:80:8a:1f:7c:fe:7e:fc:77:ea:df:67:21:
                    4b:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:F7:28:A8:3B:88:46:0B:F3:1D:AF:AD:9F:1D:34:D8:5B:55:69:DC
            X509v3 Authority Key Identifier:
                keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:cc:db:d6:e6:b1:16:ec:ed:36:c8:1e:25:8d:58:43:f7:64:
         88:f6:60:42:ad:a8:70:5d:da:b4:51:77:ac:c9:af:78:f7:0e:
         7f:15:1d:04:32:c6:94:38:25:ef:32:5f:1a:0c:f1:96:35:0f:
         3a:e9:91:b8:56:e4:4e:08:22:f9:dd:0f:52:d1:a5:88:ac:9d:
         6b:c3:ea:3f:79:91:8c:35:74:b7:08:a8:c5:9a:a5:4b:cb:06:
         bd:ee:35:11:63:06:5d:20:d6:58:cf:2f:0d:cf:be:dc:d8:1b:
         e9:9b:8c:14:a9:08:dc:42:e1:b2:ac:f4:b7:ab:4c:e3:ef:e4:
         2c:be:16:6d:dd:49:94:95:71:5f:4c:d0:d2:6e:8f:b0:de:30:
         26:0e:0e:1b:11:75:47:47:c7:14:fb:a2:7d:0f:c0:e4:f8:e9:
         8e:37:44:74:77:6d:3b:9a:75:49:47:a4:54:34:c9:ad:a1:23:
         b9:3b:1b:99:e5:94:b7:88:34:93:3a:6e:9c:39:3b:3e:d9:9e:
         80:e8:6d:84:f7:ea:ac:23:54:9e:27:15:11:4c:01:2e:92:b7:
         80:55:4f:4d:51:86:93:4f:e1:6d:ab:2f:e4:f4:2e:ab:62:52:
         96:1a:54:18:b6:db:cc:19:6d:19:f6:3e:f0:3d:34:20:ae:ff:
         5a:0d:c3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:09:45 2025 by rpki-client