Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File:                     rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier:          y/k+fgQuHushMUVgL/rLfLKDAbDRw7bnl6hUp9q9eh4=
Subject key identifier:   B6:5E:C3:AB:65:B8:09:E7:0F:67:19:83:1E:11:CB:B8:AD:6F:5A:2A
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer:       /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial:       019762F097A2CF8FC1089DA88E7CCD222745
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number:          0857
Signing time:             Thu 12 Jun 2025 07:00:24 +0000
Manifest this update:     Thu 12 Jun 2025 07:00:24 +0000
Manifest next update:     Fri 13 Jun 2025 07:00:24 +0000
Files and hashes:         1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=)
                          2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: M5xBhbYrTz1VR0eMh8GTRjAQCZXMqsJzQ0YQzo0TdzA=)
                          3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 07:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:f0:97:a2:cf:8f:c1:08:9d:a8:8e:7c:cd:22:27:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
        Validity
            Not Before: Jun 12 07:00:24 2025 GMT
            Not After : Jun 13 07:00:24 2025 GMT
        Subject: CN=b65ec3ab65b809e70f6719831e11cbb8ad6f5a2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:8e:3d:dc:81:a8:1b:cd:0c:9b:12:14:a1:e9:
                    b3:cc:4e:95:4b:1a:5b:32:49:72:bc:7d:ba:57:66:
                    3c:5d:9e:9d:82:b4:33:af:91:39:8e:d4:f0:7b:25:
                    49:f0:0b:52:b4:e6:47:d9:d4:61:17:a7:c6:ad:90:
                    2a:b1:82:86:ce:48:20:ff:49:ea:72:a4:13:b0:d4:
                    9d:1d:e8:49:54:0e:8c:51:6e:ae:fa:cd:28:44:8f:
                    0f:b6:a8:e3:3c:9e:8a:16:0c:9d:1d:e2:4b:b3:73:
                    0c:12:2e:71:f2:e1:53:e0:a0:8c:b6:d7:ce:ec:2f:
                    8c:7e:7d:5e:61:99:40:8b:8f:83:4c:65:f0:78:e6:
                    48:fc:b5:16:58:89:c6:6e:99:8b:0a:ea:fd:8f:e5:
                    a7:3a:d4:8f:fc:01:30:d8:7f:7a:99:6b:fc:b2:2d:
                    8e:b0:07:72:ba:9b:06:cc:df:51:5f:f4:b7:2b:51:
                    e7:18:9b:3c:49:e5:0a:63:77:3b:b5:f3:3c:2f:b6:
                    35:48:b8:1e:7a:71:26:6d:0c:73:12:c2:f3:34:eb:
                    e5:a7:c5:df:32:62:35:ab:44:5d:76:33:17:25:ec:
                    8f:09:91:39:1b:f9:78:06:b7:02:10:b0:67:61:21:
                    61:82:00:2f:e6:ec:e3:f2:9f:bc:fb:6f:d7:4d:72:
                    17:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:5E:C3:AB:65:B8:09:E7:0F:67:19:83:1E:11:CB:B8:AD:6F:5A:2A
            X509v3 Authority Key Identifier:
                keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:aa:d2:a5:20:0b:e2:74:f0:36:d5:35:78:91:11:f9:d0:f4:
         c0:3d:08:1c:61:02:f6:f0:28:0f:65:71:6e:24:6f:a8:54:d5:
         74:e5:45:9f:4f:36:5b:10:b8:90:1f:4d:7f:e5:e6:4d:81:af:
         e2:75:3a:46:5e:ff:66:da:c1:56:fc:70:2f:7e:5c:47:04:67:
         3c:e0:9c:1d:a9:48:da:32:e4:2c:0b:77:79:d5:6f:58:6a:4b:
         7a:d6:96:0d:73:a0:dd:ca:29:38:50:0c:a9:e7:87:01:f2:02:
         a7:c0:29:4b:38:3d:26:d4:5e:d2:6c:6e:4b:d4:a7:84:d2:3b:
         aa:a7:54:0e:40:54:47:e3:80:e9:6a:c7:f9:a7:a6:44:ac:cc:
         fc:cb:ef:ad:6b:87:2d:04:19:48:84:5d:25:2f:69:0f:62:03:
         d8:cc:a6:a3:47:fb:4c:9c:8c:57:84:a4:7f:c5:47:e8:ea:a9:
         d2:03:63:ef:2d:04:64:a5:cc:bd:64:1b:a0:ea:e5:f1:69:0a:
         fc:01:81:e1:b9:db:dc:a6:62:6c:ad:6e:ad:8f:44:ce:38:94:
         e8:59:c8:5d:e9:d6:8a:88:bf:8e:60:ac:34:de:94:1c:1f:82:
         97:ee:f6:b5:8e:c4:55:9a:92:aa:dd:c5:0c:38:77:43:73:c6:
         77:bb:ae:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdi8Jeiz4/BCJ2ojnzNIidFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMmQzOGUyMGYyNGQwZTMwYjg2Y2NkODI2MWFjMDAxN2Yx
N2E1YTQwHhcNMjUwNjEyMDcwMDI0WhcNMjUwNjEzMDcwMDI0WjAzMTEwLwYDVQQD
EyhiNjVlYzNhYjY1YjgwOWU3MGY2NzE5ODMxZTExY2JiOGFkNmY1YTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzI493IGoG80MmxIUoemzzE6VSxpb
MklyvH26V2Y8XZ6dgrQzr5E5jtTweyVJ8AtStOZH2dRhF6fGrZAqsYKGzkgg/0nq
cqQTsNSdHehJVA6MUW6u+s0oRI8PtqjjPJ6KFgydHeJLs3MMEi5x8uFT4KCMttfO
7C+Mfn1eYZlAi4+DTGXweOZI/LUWWInGbpmLCur9j+WnOtSP/AEw2H96mWv8si2O
sAdyupsGzN9RX/S3K1HnGJs8SeUKY3c7tfM8L7Y1SLgeenEmbQxzEsLzNOvlp8Xf
MmI1q0RddjMXJeyPCZE5G/l4BrcCELBnYSFhggAv5uzj8p+8+2/XTXIXiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLZew6tluAnnD2cZgx4Ry7itb1oqMB8GA1UdIwQY
MBaAFK0tOOIPJNDjC4bM2CYawAF/F6WkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEt
NDI5OTUzMjNjMDNkLzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yZDg3NjEtMjI5Zi00YTM3LTg3YjEtNDI5OTUzMjNjMDNk
LzEvclMwNDRnOGswT01MaHN6WUpockFBWDhYcGFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOqrSpSAL
4nTwNtU1eJER+dD0wD0IHGEC9vAoD2VxbiRvqFTVdOVFn082WxC4kB9Nf+XmTYGv
4nU6Rl7/ZtrBVvxwL35cRwRnPOCcHalI2jLkLAt3edVvWGpLetaWDXOg3copOFAM
qeeHAfICp8ApSzg9JtRe0mxuS9SnhNI7qqdUDkBUR+OA6WrH+aemRKzM/MvvrWuH
LQQZSIRdJS9pD2ID2Mymo0f7TJyMV4Skf8VH6Oqp0gNj7y0EZKXMvWQboOrl8WkK
/AGB4bnb3KZibK1urY9EzjiU6FnIXenWioi/jmCsNN6UHB+Cl+72tY7EVZqSqt3F
DDh3Q3PGd7uuyg==
-----END CERTIFICATE-----
Generated at Thu Jun 12 16:03:19 2025 by rpki-client