Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
File:                     ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft (raw, json)
Hash identifier:          oLlHkboYvJnFCwNPRKbgAQAlk3+LZHdXQGyT3PFkiQE=
Subject key identifier:   6A:D6:83:46:D8:D1:0B:4F:C8:1E:5C:7E:D0:F4:01:26:09:8A:AA:09
Authority key identifier: AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32
Certificate issuer:       /CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
Certificate serial:       019767A9811AC493170BB6747114322AFDB6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
Manifest number:          0368
Signing time:             Fri 13 Jun 2025 05:00:51 +0000
Manifest this update:     Fri 13 Jun 2025 05:00:51 +0000
Manifest next update:     Sat 14 Jun 2025 05:00:51 +0000
Files and hashes:         1: Y8bxmFfpWoR5ksX0Qq13ZOagVPo.roa (hash: C0DVCgE5f6/2s7WXTWOG0D5IiTtwmNwV6icT5/Rn4Qg=)
                          2: ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl (hash: OWiliMK4w7HwqdLWY0S4KH7sf5oBbI3EFnyp07+5LMY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 05:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:a9:81:1a:c4:93:17:0b:b6:74:71:14:32:2a:fd:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
        Validity
            Not Before: Jun 13 05:00:51 2025 GMT
            Not After : Jun 14 05:00:51 2025 GMT
        Subject: CN=6ad68346d8d10b4fc81e5c7ed0f40126098aaa09
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f8:65:f9:49:65:6e:6a:40:ad:0b:34:6d:e3:
                    52:c4:e4:6c:be:a1:dc:44:7e:3c:0e:32:09:e0:32:
                    3d:d3:dc:d4:fb:bf:fc:05:5d:49:d2:b7:4f:cf:4c:
                    70:b5:9e:e7:89:c7:8b:d9:ad:8f:c8:01:61:b9:04:
                    7d:51:ae:f7:ae:1b:fd:11:dc:45:e5:b5:2d:6b:9a:
                    05:19:c2:1e:32:ae:b0:b9:b5:8a:68:73:eb:fa:d6:
                    c4:9f:4e:63:17:55:7c:75:17:e4:67:40:ad:80:45:
                    55:1f:85:a6:25:f2:de:0e:d2:d7:d8:83:8d:d9:5a:
                    44:07:20:12:fe:08:6d:0c:74:ad:a3:29:ad:ce:75:
                    96:12:02:d4:2c:68:8d:0a:86:7c:09:8c:d0:19:1b:
                    19:ae:d3:01:e6:3a:89:f0:fd:97:0f:8e:9c:30:f9:
                    1b:f5:b5:2f:c1:d2:c1:34:04:f5:54:96:0d:56:e9:
                    83:05:a6:c1:19:b3:45:43:fa:b9:35:8a:63:ff:0c:
                    06:6a:37:67:dc:2d:f3:f6:ec:f7:46:e8:ec:79:57:
                    b3:54:fc:17:3e:80:16:63:09:15:53:3a:9e:a5:6c:
                    2d:76:6e:cd:7c:03:dc:cf:ed:0d:cb:45:70:c0:e2:
                    d9:21:d6:74:af:11:84:8a:d1:ac:84:5c:77:0b:3b:
                    53:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:D6:83:46:D8:D1:0B:4F:C8:1E:5C:7E:D0:F4:01:26:09:8A:AA:09
            X509v3 Authority Key Identifier:
                keyid:AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:b8:e2:97:30:fd:f8:af:3a:f7:34:87:6b:9e:c0:f6:77:ec:
         32:bc:77:19:0a:6b:34:cc:48:09:5c:44:af:b8:1e:24:41:ff:
         69:ed:05:9e:06:66:f3:21:3b:34:5e:94:1d:88:49:93:16:75:
         7c:01:2e:ce:ee:29:da:5b:b0:0b:34:30:58:2c:d8:26:c5:2e:
         d8:e0:4d:e7:38:ee:ac:fc:09:0c:4c:bc:7c:f1:c1:75:4c:72:
         bc:f1:b3:be:b1:e1:28:34:aa:b6:16:55:2a:9d:46:e9:fe:87:
         65:4e:ae:cc:7f:10:cd:b5:0b:4b:92:27:36:fc:bf:81:a3:01:
         47:f5:8e:fa:6c:17:74:a5:63:bb:b1:06:17:18:af:f5:d4:5f:
         dd:3a:4e:a5:78:21:02:f6:92:d0:d2:c1:8f:10:44:38:5e:d4:
         78:ac:a7:01:6c:d0:ce:c6:70:be:20:17:0f:89:c0:a9:45:44:
         a0:c8:df:b2:2f:ed:21:d5:40:6b:4f:1f:e2:f8:95:8e:c8:fc:
         f2:2f:76:f5:91:7f:a5:52:13:a5:aa:47:c7:81:71:39:18:13:
         dd:de:b0:67:e2:9b:b9:08:c6:1c:c2:eb:bb:06:63:31:79:13:
         7d:da:7c:be:d9:90:d2:42:29:e3:68:eb:c6:28:b4:57:6b:51:
         f9:5b:e8:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:24:09 2025 by rpki-client