Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
File:                     ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft (raw, json)
Hash identifier:          kOiBcFw+Xfyz7+gY3LRC2OvcqWd7k77BfJzlSOOPYSo=
Subject key identifier:   07:10:3F:9D:61:C4:73:4B:9F:15:74:6A:DA:6F:09:0B:23:47:7C:28
Authority key identifier: AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32
Certificate issuer:       /CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
Certificate serial:       019758367C38E3B85769296B193FD3D14A8E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
Manifest number:          0360
Signing time:             Tue 10 Jun 2025 05:00:55 +0000
Manifest this update:     Tue 10 Jun 2025 05:00:55 +0000
Manifest next update:     Wed 11 Jun 2025 05:00:55 +0000
Files and hashes:         1: Y8bxmFfpWoR5ksX0Qq13ZOagVPo.roa (hash: C0DVCgE5f6/2s7WXTWOG0D5IiTtwmNwV6icT5/Rn4Qg=)
                          2: ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl (hash: okHtAHgoT8t7jqdL8n9zxznDXrPILrFV5sWw8sBiBNI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 05:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:36:7c:38:e3:b8:57:69:29:6b:19:3f:d3:d1:4a:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
        Validity
            Not Before: Jun 10 05:00:55 2025 GMT
            Not After : Jun 11 05:00:55 2025 GMT
        Subject: CN=07103f9d61c4734b9f15746ada6f090b23477c28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:19:15:ca:36:4b:f5:53:b8:16:e6:ba:48:2c:
                    66:c5:ad:7f:13:3d:1f:fd:e0:7b:de:4a:c2:67:14:
                    fd:d3:b7:06:3d:9f:38:44:91:30:ef:ed:93:63:33:
                    1e:42:c4:12:d6:4f:61:79:11:c2:6a:d8:37:a1:dc:
                    ba:a8:f1:0f:b7:95:2b:0d:f4:91:c8:b8:f9:06:aa:
                    37:71:9f:14:23:87:95:35:95:23:79:a2:7d:da:25:
                    c0:a7:f8:cd:20:a8:2f:27:20:38:32:e2:06:54:a4:
                    df:41:3e:1a:bc:bf:11:73:cb:2d:c4:54:ce:47:f2:
                    46:ff:ea:bc:69:00:bb:bc:52:fb:34:b1:5b:0f:ae:
                    8b:2e:09:0a:df:c8:17:2b:fa:e5:20:85:40:7e:f4:
                    22:ff:3f:d9:7a:79:21:94:1f:80:5e:e0:e7:d6:16:
                    ef:93:85:59:2b:61:89:98:8e:f0:1f:6c:32:ea:58:
                    71:72:fc:9f:be:a1:8d:52:1a:6f:51:55:9c:a2:34:
                    46:9d:51:3d:06:e7:df:f9:d0:01:f8:68:6f:b2:02:
                    31:00:3a:98:b1:cd:37:ce:69:f4:31:07:48:c1:b5:
                    53:9c:21:29:42:2c:6b:05:c1:50:0e:b3:3f:79:29:
                    99:0c:e5:1e:06:88:cd:ab:32:1f:d2:30:e4:2f:ce:
                    fc:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:10:3F:9D:61:C4:73:4B:9F:15:74:6A:DA:6F:09:0B:23:47:7C:28
            X509v3 Authority Key Identifier:
                keyid:AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:5c:31:57:16:83:8d:58:9c:11:88:06:0f:d9:54:d8:df:4e:
         91:04:86:26:56:48:89:23:35:08:97:89:12:a8:68:23:23:0c:
         f8:84:7c:b9:a8:bd:3c:e9:97:1f:ea:c0:ba:d8:b9:3c:b9:15:
         8f:3a:fc:34:e0:89:24:21:f9:01:52:df:4a:f3:ce:81:b3:5e:
         90:5b:b1:a3:d2:6f:87:9b:5f:25:d1:c7:2a:ad:f0:5b:a1:3e:
         60:e9:83:1b:99:ad:4c:d6:ba:04:96:a7:69:12:9a:71:1d:24:
         d8:0e:ab:bd:ed:31:e1:b3:4a:52:97:bc:c8:1f:c4:1d:44:ee:
         87:1f:e4:17:35:05:47:ae:1a:0c:4b:28:e5:ad:63:58:3a:cb:
         99:ef:e5:a3:65:f4:fe:5d:04:9e:4c:46:c6:85:a2:e6:de:d6:
         45:5b:ff:b8:72:fd:7a:bf:85:2e:06:95:b9:13:ee:3d:f5:9e:
         21:90:95:ab:72:cc:69:9e:81:09:ce:8c:2e:bd:52:04:6e:71:
         d8:eb:1b:45:58:cb:ed:d9:94:e9:3d:7a:cd:cb:5f:e9:a3:6b:
         3b:f0:e1:e7:ec:15:25:2c:6b:c5:f2:a8:2b:bc:4b:00:45:6a:
         90:bb:a7:10:6d:3b:fb:7d:71:c1:a6:d7:f3:57:9b:64:ba:dd:
         f9:fc:f9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:05:59 2025 by rpki-client