Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File:                     oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier:          ZKvS+lmPhRgFlLiXG3IyzK5gv1PS1XY0VZOBP+lS//0=
Subject key identifier:   CB:33:3F:4C:7A:0E:61:99:39:6D:7D:3D:FB:D6:A8:E1:CD:EE:4F:A7
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer:       /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial:       019758DB388CE6BBDC68AFE9A4C8DA374486
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number:          03C9
Signing time:             Tue 10 Jun 2025 08:00:51 +0000
Manifest this update:     Tue 10 Jun 2025 08:00:51 +0000
Manifest next update:     Wed 11 Jun 2025 08:00:51 +0000
Files and hashes:         1: WacUruZTE83WEEePnyB3KKF0YFU.roa (hash: IGW0uLOK6yIPDXD8+jDEju++6EJZMklynz//i9x70Jo=)
                          2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: rp1ao+ANIBRqmJYH5qksQJJvRavLpDaUMQ0os4fgGPY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 08:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:db:38:8c:e6:bb:dc:68:af:e9:a4:c8:da:37:44:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
        Validity
            Not Before: Jun 10 08:00:51 2025 GMT
            Not After : Jun 11 08:00:51 2025 GMT
        Subject: CN=cb333f4c7a0e6199396d7d3dfbd6a8e1cdee4fa7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:09:09:2b:65:78:58:5c:a8:a3:2d:80:a1:ab:
                    e4:34:48:1a:bc:ae:70:46:76:7e:69:0b:55:ce:e4:
                    87:51:4a:71:8b:82:8f:16:0d:b6:89:ed:4d:a3:90:
                    57:48:0f:a4:c0:64:d5:42:6b:8c:64:c7:3d:81:32:
                    d6:bf:18:73:86:14:a3:17:35:cb:ef:5b:74:8a:34:
                    a2:11:03:3a:93:94:f3:fd:02:07:b7:3b:91:df:c7:
                    39:c3:db:00:35:1a:e2:56:98:a2:07:95:21:a2:41:
                    bd:53:b4:22:16:70:c3:39:b2:ff:d1:f5:d7:e4:89:
                    da:be:b9:83:93:8b:f5:ea:ab:24:e3:04:7b:72:df:
                    39:98:22:3c:b1:bc:38:2a:4d:63:3a:79:98:2d:7c:
                    a5:7d:0d:7d:c6:6b:81:94:87:92:af:85:df:74:d6:
                    6e:1a:d3:56:9a:66:a1:9f:50:cd:63:96:da:dd:e2:
                    1f:a9:3b:8d:7a:44:aa:b8:8e:43:67:91:af:41:90:
                    3e:31:61:f1:09:4a:18:9b:b4:dc:17:7e:c7:54:77:
                    b0:a4:cd:72:c7:a4:34:e1:5d:e0:df:b0:39:d6:19:
                    5d:0a:52:44:aa:93:b6:06:5a:0c:2e:d7:7a:c5:8c:
                    c0:d7:84:b7:bc:e4:98:38:f5:af:0e:ef:35:7f:65:
                    c5:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:33:3F:4C:7A:0E:61:99:39:6D:7D:3D:FB:D6:A8:E1:CD:EE:4F:A7
            X509v3 Authority Key Identifier:
                keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:47:eb:80:f7:30:44:6d:81:e9:a4:36:5c:31:a9:ad:1b:da:
         e6:07:21:67:35:8f:18:6a:3a:2a:35:12:1c:e4:80:df:67:73:
         4c:54:28:e7:85:9a:7c:18:11:ac:6f:8f:b6:31:65:e8:20:de:
         b6:6b:e7:b0:7f:50:44:84:f8:6e:91:8a:4d:f8:13:55:e0:7a:
         4c:a5:99:0a:fd:7d:ce:43:7e:0f:f2:eb:ba:12:40:58:c0:26:
         e9:d2:7a:78:bb:cf:31:35:b7:ed:4d:db:bb:66:94:9f:98:bf:
         fc:9f:71:4f:bb:1b:1c:37:c7:75:f2:4d:18:c2:62:70:fa:8a:
         fd:9d:07:42:38:5a:0d:18:b7:a8:df:3b:32:1f:df:13:3e:4a:
         89:59:f0:e7:9d:a6:1b:4b:d0:f9:2d:1b:1d:4d:b7:44:49:82:
         51:0a:34:ab:8e:0e:ff:ef:96:6b:da:5a:ea:05:e5:23:5d:57:
         98:7e:18:54:d9:19:65:08:21:47:5d:3f:22:56:a5:1f:72:ce:
         69:31:ca:a0:38:9a:18:67:7a:3c:4f:3d:a6:73:44:39:28:93:
         ba:42:c8:65:e7:99:56:3d:5a:51:f7:bb:f3:3f:bc:f6:c0:e5:
         50:b1:31:b9:1f:10:0f:17:00:9b:f0:be:cf:34:f5:b7:ad:c3:
         47:25:30:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:04:06 2025 by rpki-client