Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
File:                     j32Qq83eC8bwvKryHOw6TyrPrk8.mft (raw, json)
Hash identifier:          LTfiuLU0ir4vgTpf4GqXxGMiESWuygpEv1HeG4G+y0c=
Subject key identifier:   6F:B4:29:08:16:8D:F4:3C:C3:3E:D0:EF:BF:F3:52:3A:60:4F:F4:4C
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Certificate issuer:       /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial:       01975C813476F2ECA54C7A915D8177BD296D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
Manifest number:          158E
Signing time:             Wed 11 Jun 2025 01:01:00 +0000
Manifest this update:     Wed 11 Jun 2025 01:01:00 +0000
Manifest next update:     Thu 12 Jun 2025 01:01:00 +0000
Files and hashes:         1: Ha4iqiemRVs4K0apcX26aGgxEQM.roa (hash: Y9w0WT6CR9hlG1wNToGxOj1Wt0I5gYiZH++6mqrNiy0=)
                          2: j32Qq83eC8bwvKryHOw6TyrPrk8.crl (hash: AKweBwRa9q4Khn+9VssLT8RGcDPuFaPJNSR2SHD4RPc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 01:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:81:34:76:f2:ec:a5:4c:7a:91:5d:81:77:bd:29:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
        Validity
            Not Before: Jun 11 01:01:00 2025 GMT
            Not After : Jun 12 01:01:00 2025 GMT
        Subject: CN=6fb42908168df43cc33ed0efbff3523a604ff44c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:82:d3:d9:9b:1a:8c:72:e8:93:7b:23:82:6e:
                    77:f0:39:47:36:0c:65:4a:95:d1:19:bd:d8:c7:56:
                    35:66:a8:5c:18:c1:5c:40:f8:8d:6b:ef:b7:51:15:
                    5b:b4:31:8f:38:61:61:84:96:40:31:19:81:d0:bd:
                    f0:e1:8b:f9:bd:a8:09:95:00:4d:e2:04:e6:28:81:
                    45:b6:30:75:26:e9:6f:51:19:a6:86:fe:d6:72:92:
                    20:52:c2:1f:69:f0:fc:fd:95:1c:53:b5:42:ae:2b:
                    34:9f:3b:b9:51:f2:cf:26:39:65:07:7f:a7:16:9f:
                    6c:a9:bf:26:7f:e6:6a:f5:ec:99:c9:2b:aa:d8:10:
                    70:49:f8:15:1b:b3:81:7e:16:32:d2:b3:c8:af:5d:
                    1e:cd:d2:33:05:4e:10:dc:3f:16:94:23:12:b2:65:
                    2b:22:96:3f:51:a9:a8:63:fa:58:2c:34:fa:fd:53:
                    18:17:33:b8:a2:39:a5:b7:ab:6b:07:f7:55:06:8b:
                    0b:8e:53:a4:4b:df:63:82:0d:a5:87:89:80:4d:71:
                    d4:77:dd:04:d8:58:dc:93:8a:2c:84:83:78:4e:60:
                    91:95:1b:87:1d:13:1b:39:38:f6:80:40:ce:57:bf:
                    b6:30:f9:65:bc:98:5f:2c:60:40:2f:31:01:31:22:
                    6e:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:B4:29:08:16:8D:F4:3C:C3:3E:D0:EF:BF:F3:52:3A:60:4F:F4:4C
            X509v3 Authority Key Identifier:
                keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:92:6f:69:0d:b8:72:02:9e:e2:25:fc:1d:b5:06:68:1c:34:
         91:58:8f:55:17:88:76:b3:df:d8:cb:0d:d1:5e:a0:e3:44:03:
         46:22:b9:16:93:e9:a4:dd:89:db:59:f1:b0:a6:bd:7c:69:ca:
         28:2b:b6:ad:3d:86:8a:ee:f1:b6:3b:10:3f:a7:c6:68:ea:75:
         05:70:3a:74:bf:cb:e2:3f:39:94:1f:7c:0e:ee:af:b6:7a:f9:
         80:48:70:c8:d0:7d:05:26:ab:e1:ee:06:2b:da:d1:98:d5:6b:
         2c:61:61:76:97:56:64:94:fa:02:17:61:ff:dd:41:da:e9:41:
         1d:e0:11:59:9c:7e:8f:39:17:0c:66:57:b2:65:dd:f1:02:19:
         c6:0c:72:56:74:f8:d7:cf:c5:7e:a9:70:16:84:39:b4:71:8e:
         4b:83:07:ab:34:03:e3:d5:e6:d2:81:ab:05:2a:f3:7b:80:fa:
         eb:b3:80:91:7a:4e:b1:53:1c:cd:22:32:3d:5b:96:e8:69:3c:
         b8:38:6c:e1:c2:18:85:ff:78:dc:eb:6e:9b:89:61:ff:4f:24:
         13:77:fa:b5:04:ac:c8:dc:f3:96:4e:37:35:b9:ba:97:73:0a:
         ea:c9:8e:49:42:1d:86:19:e5:59:72:76:e6:d5:3a:df:7d:1f:
         ac:57:95:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:05:40 2025 by rpki-client