Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
File:                     IodymNrl1aO-q8oW6S0aFB6Uhic.mft (raw, json)
Hash identifier:          eTVkCdOwhhne2lZ4aZZexse3OOz4YXprSx5J3+h+JtM=
Subject key identifier:   26:E8:75:A3:39:AD:9A:F8:C9:97:D3:EC:CD:D5:23:4B:02:FC:A3:51
Authority key identifier: 22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
Certificate issuer:       /CN=22877298dae5d5a3beabca16e92d1a141e948627
Certificate serial:       01975346CEB2763148EEED27F9A25DD6FF97
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
Manifest number:          03AA
Signing time:             Mon 09 Jun 2025 06:00:38 +0000
Manifest this update:     Mon 09 Jun 2025 06:00:38 +0000
Manifest next update:     Tue 10 Jun 2025 06:00:38 +0000
Files and hashes:         1: 4qvZpbHlQrEVGaculmgT9y6fbp0.roa (hash: tCJqK90XfNlOzC+CJIY2YiVu1YRsdGe0qc+sYvxZZ4k=)
                          2: GCeJWQXp53i0_T9Els2HFdD580c.roa (hash: F4jM2A6o7cg7dalyRSsXPRHMxAUn8dJXwNlkzBZKjRk=)
                          3: Gx7WZJ-NdyF04pUk4gdMYoHuQzk.roa (hash: t6M0KFjILBRmG74F5TahE0UmVDYYLhcbj+iOGjxmViM=)
                          4: IodymNrl1aO-q8oW6S0aFB6Uhic.crl (hash: hchDzsprrHAlaOTmLY1tf6Lrs2CGrmLVnu0UiwGif9s=)
                          5: P8uTVptxd-UGzkymXhOkvbitcEU.roa (hash: 61AnrtiCoFhbr8PK6p0Fhr8c0CNn0nd06ZAGuQwz1l8=)
                          6: PuJtE5_KWvLzwKg-Mgv8nDiZBNg.roa (hash: 8P5RiewFjkqd/eRXG3pkKovd5qsr2E75hTvmlDKbDK4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:46:ce:b2:76:31:48:ee:ed:27:f9:a2:5d:d6:ff:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22877298dae5d5a3beabca16e92d1a141e948627
        Validity
            Not Before: Jun  9 06:00:38 2025 GMT
            Not After : Jun 10 06:00:38 2025 GMT
        Subject: CN=26e875a339ad9af8c997d3eccdd5234b02fca351
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:ec:c7:65:8a:dc:22:5d:76:31:f1:bc:aa:be:
                    aa:5e:26:d1:b2:41:e4:54:8c:dc:80:87:db:0e:5a:
                    7d:07:f1:04:8a:8c:33:bb:2f:f7:7a:27:0b:c8:24:
                    4b:e1:e9:73:61:d4:47:c8:2c:3b:68:c0:f8:6a:af:
                    e7:17:cd:ab:27:1c:0b:0e:3e:ca:cb:77:49:86:da:
                    eb:57:16:c5:4b:0b:99:b3:8a:15:9e:7e:d1:9d:5a:
                    33:53:c0:12:4b:e6:80:51:03:0e:fc:45:d3:43:fa:
                    20:6a:9d:d4:be:6e:22:11:52:5a:74:92:79:de:4a:
                    25:2d:32:9e:85:2f:a3:4e:84:83:ce:a9:9f:8c:e7:
                    72:49:62:dd:eb:7e:3b:30:18:06:ba:ac:1d:5b:32:
                    81:30:bf:c3:39:c5:68:29:1d:fd:07:c0:4f:6e:86:
                    85:96:b8:80:2a:68:42:8b:ec:61:5b:cc:15:22:c2:
                    27:49:56:48:c1:f1:db:da:6c:fc:79:7c:0d:5b:f1:
                    1c:99:a0:7a:3f:a8:6e:bb:9b:7d:8e:20:48:fa:09:
                    fc:08:0e:49:90:74:be:a9:a3:38:9f:d5:de:00:83:
                    72:6f:b8:8b:01:44:ca:54:22:4b:ff:cf:4a:15:ca:
                    2b:ab:63:17:0c:c7:ec:78:95:e9:86:74:53:b2:52:
                    48:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:E8:75:A3:39:AD:9A:F8:C9:97:D3:EC:CD:D5:23:4B:02:FC:A3:51
            X509v3 Authority Key Identifier:
                keyid:22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:66:6b:cd:11:fb:ef:61:6a:3b:f0:69:0d:24:64:8d:56:69:
         06:bd:e1:c7:45:28:6e:fa:17:f4:4e:c4:fd:58:4e:ed:67:ad:
         db:be:27:9e:99:8c:c1:2f:26:bb:44:38:20:a9:d7:9b:79:9a:
         6f:72:3e:31:ae:91:86:5f:19:f4:70:3c:57:2d:e9:6f:0a:76:
         85:f7:ed:66:2a:04:8f:2b:c4:43:df:aa:67:52:9c:b6:38:d0:
         13:b7:fe:30:10:1d:2b:41:e8:fd:61:1f:fd:f5:3a:b5:38:2c:
         3c:8e:40:01:82:75:fe:78:53:1c:d8:17:1d:8f:b3:60:09:0c:
         ea:8a:32:c4:69:d7:87:bf:9c:f6:3d:c9:d6:ae:6d:c3:74:03:
         86:99:7b:3c:3f:8c:c6:6d:b1:84:61:b2:ed:28:0f:e3:5a:67:
         1f:3f:64:34:19:56:84:60:eb:a8:99:c8:b3:08:ca:2a:4b:00:
         a4:b7:d8:5b:50:17:66:ed:09:8f:1e:8e:a6:49:b1:86:74:d9:
         d7:64:99:2b:8a:f5:5a:e2:71:52:15:e3:75:90:e4:3b:a4:4e:
         e6:d8:de:55:5c:55:43:f2:f2:54:61:24:fe:c8:c2:d3:39:3d:
         53:08:a8:53:c2:fa:af:09:d8:3c:8a:ea:2a:d7:9b:1f:22:2a:
         41:88:90:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:55:16 2025 by rpki-client