Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File:                     rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier:          VZmYohm6KsEA2UGDk4Bfe73xKw+LEfRuNEdhILCtAOA=
Subject key identifier:   3C:DD:64:D3:61:23:33:24:8F:11:7A:CB:AA:47:23:7A:F7:54:B2:6B
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer:       /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial:       01976C99059ADFFBD159376824CDF319474B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number:          085C
Signing time:             Sat 14 Jun 2025 04:00:57 +0000
Manifest this update:     Sat 14 Jun 2025 04:00:57 +0000
Manifest next update:     Sun 15 Jun 2025 04:00:57 +0000
Files and hashes:         1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=)
                          2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: +9PyZm99JBAxo+rTHhITuSoINPA/jR7EnwRg796TAnM=)
                          3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:99:05:9a:df:fb:d1:59:37:68:24:cd:f3:19:47:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
        Validity
            Not Before: Jun 14 04:00:57 2025 GMT
            Not After : Jun 15 04:00:57 2025 GMT
        Subject: CN=3cdd64d3612333248f117acbaa47237af754b26b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:95:f1:b1:1c:02:97:11:f5:44:72:4b:a2:47:
                    11:cf:03:c2:81:62:ea:d7:2c:4e:c7:36:04:0e:e0:
                    ff:e4:a0:fb:f8:2d:b3:e9:c7:5d:32:fe:7e:5f:7c:
                    e8:57:3a:d6:90:4c:8c:44:a9:d6:9a:d3:ed:37:69:
                    e6:eb:96:95:91:ed:00:51:82:bc:d5:c0:eb:a6:9e:
                    47:76:f9:88:e0:dd:2f:44:64:86:44:6b:14:ce:f9:
                    e8:51:5e:2a:6c:82:7f:f7:46:7a:39:0d:a6:52:8a:
                    20:d5:77:58:20:8b:44:4e:f4:d5:64:e9:92:7a:65:
                    39:b0:57:02:aa:91:14:68:d6:b0:0a:77:60:df:a1:
                    f7:31:1d:d0:d2:93:dd:e3:95:24:35:ae:ef:36:95:
                    57:aa:12:c5:93:03:ce:1a:d0:69:e2:63:ec:32:8d:
                    28:07:4f:3a:f1:38:44:47:a2:d4:9f:82:85:74:11:
                    9a:24:92:af:08:39:5e:65:a5:58:74:e9:15:bc:3a:
                    ef:13:dd:76:27:80:1f:5c:ea:ec:fd:41:0c:1e:23:
                    02:6e:bd:68:ec:df:b9:76:c1:c0:63:65:d1:80:2f:
                    89:92:3f:2d:30:da:41:ea:29:60:04:58:2c:f4:f8:
                    5c:6f:2e:d2:cf:48:7e:34:6f:81:1c:f1:99:be:33:
                    0c:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:DD:64:D3:61:23:33:24:8F:11:7A:CB:AA:47:23:7A:F7:54:B2:6B
            X509v3 Authority Key Identifier:
                keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:9c:b0:4a:28:12:72:1a:92:08:7d:02:6f:b4:23:e6:9d:4d:
         25:35:31:2f:09:36:63:f7:aa:14:d1:b5:ba:4a:03:56:64:97:
         84:4f:c2:33:d7:57:f0:41:c5:d0:45:88:9a:12:7c:7f:92:d8:
         ce:55:5f:6e:5e:2c:b8:83:2b:74:a8:15:2d:fd:bc:c8:64:1e:
         95:02:58:26:15:47:16:51:81:1d:51:03:b7:45:10:6e:6a:d0:
         46:0a:71:94:a2:4f:2e:ab:2e:c9:8e:f9:36:3d:b1:66:69:f4:
         dc:11:ed:9d:0a:ba:19:d9:49:6e:bb:21:1b:5f:cd:8f:c0:13:
         75:69:c5:0d:b7:6c:5b:cb:ec:62:3f:cd:d4:25:ef:bc:10:fe:
         a0:b3:d5:f5:bc:d5:f0:0b:46:13:f2:88:ee:8e:53:a4:93:27:
         75:3c:13:1c:10:5f:18:15:83:b7:6f:44:ea:63:e2:ec:13:5a:
         c7:56:fd:9a:84:ee:02:d7:af:72:34:81:a7:ac:80:db:5a:34:
         f2:28:0e:43:2d:33:21:27:f3:c5:2c:4f:d8:b7:1a:d0:5f:43:
         61:1b:d4:c3:0a:ef:fe:9a:a0:04:ea:fa:55:55:5b:0e:2a:86:
         09:e0:08:38:e1:2c:90:13:ba:4e:ea:91:3c:27:2a:04:d4:0d:
         51:b9:8f:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsmQWa3/vRWTdoJM3zGUdLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMmQzOGUyMGYyNGQwZTMwYjg2Y2NkODI2MWFjMDAxN2Yx
N2E1YTQwHhcNMjUwNjE0MDQwMDU3WhcNMjUwNjE1MDQwMDU3WjAzMTEwLwYDVQQD
EygzY2RkNjRkMzYxMjMzMzI0OGYxMTdhY2JhYTQ3MjM3YWY3NTRiMjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5XxsRwClxH1RHJLokcRzwPCgWLq
1yxOxzYEDuD/5KD7+C2z6cddMv5+X3zoVzrWkEyMRKnWmtPtN2nm65aVke0AUYK8
1cDrpp5HdvmI4N0vRGSGRGsUzvnoUV4qbIJ/90Z6OQ2mUoog1XdYIItETvTVZOmS
emU5sFcCqpEUaNawCndg36H3MR3Q0pPd45UkNa7vNpVXqhLFkwPOGtBp4mPsMo0o
B0868ThER6LUn4KFdBGaJJKvCDleZaVYdOkVvDrvE912J4AfXOrs/UEMHiMCbr1o
7N+5dsHAY2XRgC+Jkj8tMNpB6ilgBFgs9Phcby7Sz0h+NG+BHPGZvjMMQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDzdZNNhIzMkjxF6y6pHI3r3VLJrMB8GA1UdIwQY
MBaAFK0tOOIPJNDjC4bM2CYawAF/F6WkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEt
NDI5OTUzMjNjMDNkLzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEtNDI5OTUzMjNjMDNk
LzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIpywSigS
chqSCH0Cb7Qj5p1NJTUxLwk2Y/eqFNG1ukoDVmSXhE/CM9dX8EHF0EWImhJ8f5LY
zlVfbl4suIMrdKgVLf28yGQelQJYJhVHFlGBHVEDt0UQbmrQRgpxlKJPLqsuyY75
Nj2xZmn03BHtnQq6GdlJbrshG1/Nj8ATdWnFDbdsW8vsYj/N1CXvvBD+oLPV9bzV
8AtGE/KI7o5TpJMndTwTHBBfGBWDt29E6mPi7BNax1b9moTuAtevcjSBp6yA21o0
8igOQy0zISfzxSxP2Lca0F9DYRvUwwrv/pqgBOr6VVVbDiqGCeAIOOEskBO6TuqR
PCcqBNQNUbmPVQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:07:53 2025 by rpki-client