Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
File:                     ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft (raw, json)
Hash identifier:          5vVMjerNPBxjvJZJSp9LJ/uGfsq3LgvzEWMbH9vCPno=
Subject key identifier:   D6:73:52:55:BC:67:C4:D4:5B:26:59:80:8D:70:7D:EF:CB:47:3D:1A
Authority key identifier: AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32
Certificate issuer:       /CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
Certificate serial:       01975A24D17DAD282AC69EC8F335D2F96B3A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
Manifest number:          0361
Signing time:             Tue 10 Jun 2025 14:00:51 +0000
Manifest this update:     Tue 10 Jun 2025 14:00:51 +0000
Manifest next update:     Wed 11 Jun 2025 14:00:51 +0000
Files and hashes:         1: Y8bxmFfpWoR5ksX0Qq13ZOagVPo.roa (hash: C0DVCgE5f6/2s7WXTWOG0D5IiTtwmNwV6icT5/Rn4Qg=)
                          2: ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl (hash: zZDHmPDFH8Am1i54VcROB13+9yhR9UnvZthVDA1ygyI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:24:d1:7d:ad:28:2a:c6:9e:c8:f3:35:d2:f9:6b:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
        Validity
            Not Before: Jun 10 14:00:51 2025 GMT
            Not After : Jun 11 14:00:51 2025 GMT
        Subject: CN=d6735255bc67c4d45b2659808d707defcb473d1a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:d3:e5:d3:ca:89:49:37:0c:9e:97:0e:03:f6:
                    88:24:2a:07:0b:3c:cd:05:88:ff:69:2f:4f:e7:d7:
                    a4:e1:20:a4:8f:2f:5b:2f:60:b2:c3:8a:c0:40:a5:
                    25:1f:d4:eb:d0:3e:cc:00:a8:71:be:2a:53:ee:ad:
                    0a:29:2f:29:76:34:32:b7:61:ab:cb:07:72:9c:5d:
                    1c:24:cd:da:de:8e:22:15:ae:76:41:10:8b:f9:5c:
                    a7:7c:b9:a4:a8:68:b3:c4:59:21:37:0c:ce:d8:1e:
                    82:43:98:25:2c:66:85:68:f8:37:23:9e:7d:25:1f:
                    d9:9d:41:30:16:29:e3:97:6e:d9:70:90:40:d2:6b:
                    d6:66:b1:46:ea:a0:8e:75:73:af:1c:d5:7a:32:c8:
                    bc:b1:83:bb:72:3a:a7:70:97:ec:1c:a1:ce:1a:51:
                    5e:6c:86:9e:a5:7c:9e:df:03:dd:5f:7d:3b:44:ff:
                    b8:83:3b:92:9e:b9:0a:d9:39:b8:dc:16:f3:0b:2b:
                    5e:c3:08:e6:d5:85:e7:f4:e3:c3:6c:d8:ab:a1:00:
                    e4:b5:99:50:5e:33:c6:d6:ca:95:c2:e1:5e:85:66:
                    7a:3c:97:43:72:62:cb:4b:a0:8b:45:39:a1:e7:df:
                    76:66:4b:11:97:ee:0b:af:fc:53:c6:b3:a1:32:34:
                    2f:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:73:52:55:BC:67:C4:D4:5B:26:59:80:8D:70:7D:EF:CB:47:3D:1A
            X509v3 Authority Key Identifier:
                keyid:AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:63:ed:b8:19:17:7d:56:0f:ae:b2:39:62:e4:9f:d7:73:76:
         fa:ed:1b:90:ff:38:83:ac:da:65:c9:a0:28:71:b3:80:75:1f:
         f9:3c:55:b7:30:94:4c:16:1b:cb:aa:51:c2:e6:9e:30:5c:05:
         28:4c:5a:ad:b5:4e:59:7b:d4:08:67:58:27:5b:99:53:23:60:
         1e:f3:1a:ac:b6:bc:60:1e:b0:6c:19:74:81:50:78:0b:c3:71:
         ac:39:e2:4f:76:ca:db:35:cc:d0:f4:e6:1a:db:fd:2b:b7:ed:
         46:e3:4f:21:d8:97:55:22:7d:18:60:80:17:e3:d3:98:be:5b:
         8b:d4:af:61:78:f5:a7:65:43:0a:55:25:37:cc:d1:f2:97:aa:
         bc:97:13:74:52:9e:1a:f5:24:e1:f5:96:4d:33:8b:0f:63:9c:
         a7:33:0c:c4:78:94:5b:a0:dc:52:d5:c9:e7:a7:28:a8:37:01:
         dc:ab:59:1c:21:a5:06:7c:a8:80:74:0f:33:80:eb:f4:8c:8d:
         d2:49:df:e2:8b:09:e2:04:21:b8:1b:89:fa:7a:21:f3:11:f6:
         98:c7:17:06:81:df:7a:55:b9:b8:a2:5e:40:18:60:e9:da:ef:
         e2:a1:a2:1b:3e:26:5b:53:75:0a:1f:1d:b0:c9:97:3a:f5:1b:
         b5:ed:94:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdaJNF9rSgqxp7I8zXS+Ws6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZTFkM2E0MjVlZGJkOWQ4YWRhZDA0MTA2YWIxMmQ3Yzc2
YWMxMzIwHhcNMjUwNjEwMTQwMDUxWhcNMjUwNjExMTQwMDUxWjAzMTEwLwYDVQQD
EyhkNjczNTI1NWJjNjdjNGQ0NWIyNjU5ODA4ZDcwN2RlZmNiNDczZDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtPl08qJSTcMnpcOA/aIJCoHCzzN
BYj/aS9P59ek4SCkjy9bL2Cyw4rAQKUlH9Tr0D7MAKhxvipT7q0KKS8pdjQyt2Gr
ywdynF0cJM3a3o4iFa52QRCL+VynfLmkqGizxFkhNwzO2B6CQ5glLGaFaPg3I559
JR/ZnUEwFinjl27ZcJBA0mvWZrFG6qCOdXOvHNV6Msi8sYO7cjqncJfsHKHOGlFe
bIaepXye3wPdX307RP+4gzuSnrkK2Tm43BbzCytewwjm1YXn9OPDbNiroQDktZlQ
XjPG1sqVwuFehWZ6PJdDcmLLS6CLRTmh5992ZksRl+4Lr/xTxrOhMjQv3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZzUlW8Z8TUWyZZgI1wfe/LRz0aMB8GA1UdIwQY
MBaAFK7h06Ql7b2ditrQQQarEtfHasEyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hY2E0YWQtMWRmMC00Nzk3LTlhOTAt
ZmJlNWZkY2YwZWQzLzEvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi9hY2E0YWQtMWRmMC00Nzk3LTlhOTAtZmJlNWZkY2YwZWQz
LzEvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGGPtuBkX
fVYPrrI5YuSf13N2+u0bkP84g6zaZcmgKHGzgHUf+TxVtzCUTBYby6pRwuaeMFwF
KExarbVOWXvUCGdYJ1uZUyNgHvMarLa8YB6wbBl0gVB4C8NxrDniT3bK2zXM0PTm
Gtv9K7ftRuNPIdiXVSJ9GGCAF+PTmL5bi9SvYXj1p2VDClUlN8zR8peqvJcTdFKe
GvUk4fWWTTOLD2OcpzMMxHiUW6DcUtXJ56coqDcB3KtZHCGlBnyogHQPM4Dr9IyN
0knf4osJ4gQhuBuJ+noh8xH2mMcXBoHfelW5uKJeQBhg6drv4qGiGz4mW1N1Ch8d
sMmXOvUbte2UIg==
-----END CERTIFICATE-----
Generated at Tue Jun 10 23:42:24 2025 by rpki-client