Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File:                     oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier:          qr8ItxWs3Zwa1ClvAEhzttNWfIOQ2TBCPRBbhiuwpPU=
Subject key identifier:   89:C2:81:2B:36:14:EB:68:07:46:B4:2F:E2:85:90:88:9C:F4:A4:71
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer:       /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial:       01975310585717F3B064E98B32095B12BA15
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number:          03C6
Signing time:             Mon 09 Jun 2025 05:01:09 +0000
Manifest this update:     Mon 09 Jun 2025 05:01:09 +0000
Manifest next update:     Tue 10 Jun 2025 05:01:09 +0000
Files and hashes:         1: WacUruZTE83WEEePnyB3KKF0YFU.roa (hash: IGW0uLOK6yIPDXD8+jDEju++6EJZMklynz//i9x70Jo=)
                          2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: BmgylGp1m/Tw00QVC8l7cXRDEO5Jk9WHqWY1ZJ3TqBw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 05:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:10:58:57:17:f3:b0:64:e9:8b:32:09:5b:12:ba:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
        Validity
            Not Before: Jun  9 05:01:09 2025 GMT
            Not After : Jun 10 05:01:09 2025 GMT
        Subject: CN=89c2812b3614eb680746b42fe28590889cf4a471
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:cc:a6:d7:d3:4f:40:e6:c8:14:48:0e:75:bd:
                    83:9c:84:e1:36:d5:60:ff:1c:b7:7b:45:25:b6:9d:
                    5c:0f:f7:51:9d:2c:9b:23:45:9c:cc:33:e9:19:e9:
                    c3:da:0d:a0:b7:9a:90:53:6c:b4:af:f6:6a:83:6b:
                    33:63:8e:2c:ba:e5:74:a0:9e:9b:88:64:d3:80:de:
                    d7:b4:f2:2c:39:ef:73:9d:2e:d4:1b:46:8c:b5:61:
                    0c:bf:17:0c:f4:c6:26:67:c0:12:d3:66:62:44:67:
                    8e:9e:47:b0:2d:3d:c6:e5:e2:e5:a0:ac:e8:9a:ce:
                    d6:31:e0:37:3c:f1:07:20:ad:a5:38:56:10:28:fa:
                    2f:a6:3c:63:3d:9e:57:e0:f6:d2:98:74:8c:06:6a:
                    f7:5d:59:9d:fc:69:ab:d4:bd:42:70:95:4a:63:64:
                    97:42:e8:21:f2:6c:20:96:0f:e2:79:a0:41:0e:0c:
                    55:f1:dd:49:14:92:4e:03:39:fd:94:f4:70:84:70:
                    70:f7:56:a4:9a:4c:d7:eb:c7:b2:7b:97:55:ba:c8:
                    3c:fe:6e:4a:d0:8f:c6:f6:d0:e5:a1:87:72:59:f3:
                    7b:f1:ac:b2:71:9d:bf:99:74:a0:82:be:6c:39:32:
                    a5:10:84:3f:54:c3:b0:c2:bb:33:06:8b:c4:3c:cc:
                    ea:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:C2:81:2B:36:14:EB:68:07:46:B4:2F:E2:85:90:88:9C:F4:A4:71
            X509v3 Authority Key Identifier:
                keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:0b:02:40:95:6a:ec:b0:54:d8:4d:e3:32:59:be:c6:47:78:
         11:6f:46:12:02:8c:8a:36:5f:4d:aa:59:e3:7f:25:f9:c7:fe:
         9c:b7:48:b8:1a:e3:77:8a:8d:2d:3d:ac:4b:5e:4f:65:dc:c4:
         ef:68:03:47:d3:5a:fb:02:ec:8a:54:d0:a2:b2:29:95:53:65:
         5b:3c:9c:92:6a:63:13:49:32:36:9b:17:8a:dd:8b:cd:21:9d:
         de:e0:33:59:fe:ec:47:2f:df:5e:3c:2a:b4:1d:a4:fd:47:94:
         5f:74:b9:90:4d:c2:f4:24:ee:c5:25:a3:25:83:4a:49:e6:61:
         54:1c:01:0e:f6:ae:cc:b6:61:c0:b5:d9:bd:a3:f7:26:e7:db:
         1c:7a:bc:ad:1a:e9:11:99:5b:5c:31:88:03:76:6c:3b:48:c4:
         19:4e:d6:7a:83:ed:1c:88:43:2c:77:ca:ef:75:1d:08:ab:db:
         6c:c1:bd:20:d3:b3:f8:50:4f:02:b3:b5:67:d2:c4:2f:27:7f:
         21:80:a6:df:1b:76:27:d0:6e:77:47:13:98:eb:1c:00:4c:06:
         81:44:d4:57:58:12:56:bf:ae:97:dc:cf:d4:27:e5:e7:55:4c:
         81:76:ac:42:e3:6e:f9:94:58:6d:df:d5:01:ac:4d:7d:1a:31:
         37:73:9d:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdTEFhXF/OwZOmLMglbEroVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNWQ5NTk2YjdhNWVmMDg4OWE3Mzk3MTAwMGQxMjYzMGRh
Y2E5YTYwHhcNMjUwNjA5MDUwMTA5WhcNMjUwNjEwMDUwMTA5WjAzMTEwLwYDVQQD
Eyg4OWMyODEyYjM2MTRlYjY4MDc0NmI0MmZlMjg1OTA4ODljZjRhNDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2sym19NPQObIFEgOdb2DnIThNtVg
/xy3e0Ultp1cD/dRnSybI0WczDPpGenD2g2gt5qQU2y0r/Zqg2szY44suuV0oJ6b
iGTTgN7XtPIsOe9znS7UG0aMtWEMvxcM9MYmZ8AS02ZiRGeOnkewLT3G5eLloKzo
ms7WMeA3PPEHIK2lOFYQKPovpjxjPZ5X4PbSmHSMBmr3XVmd/Gmr1L1CcJVKY2SX
Qugh8mwglg/ieaBBDgxV8d1JFJJOAzn9lPRwhHBw91akmkzX68eye5dVusg8/m5K
0I/G9tDloYdyWfN78ayycZ2/mXSggr5sOTKlEIQ/VMOwwrszBovEPMzqMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFInCgSs2FOtoB0a0L+KFkIic9KRxMB8GA1UdIwQY
MBaAFKFdlZa3pe8Iiac5cQANEmMNrKmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jZjU0MGYtOTdkNi00MTQyLWI2MDMt
MzExMjQ2N2JiYzg4LzEvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jZjU0MGYtOTdkNi00MTQyLWI2MDMtMzExMjQ2N2JiYzg4
LzEvb1YyVmxyZWw3d2lKcHpseEFBMFNZdzJzcWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaQsCQJVq
7LBU2E3jMlm+xkd4EW9GEgKMijZfTapZ438l+cf+nLdIuBrjd4qNLT2sS15PZdzE
72gDR9Na+wLsilTQorIplVNlWzyckmpjE0kyNpsXit2LzSGd3uAzWf7sRy/fXjwq
tB2k/UeUX3S5kE3C9CTuxSWjJYNKSeZhVBwBDvauzLZhwLXZvaP3JufbHHq8rRrp
EZlbXDGIA3ZsO0jEGU7WeoPtHIhDLHfK73UdCKvbbMG9INOz+FBPArO1Z9LELyd/
IYCm3xt2J9Bud0cTmOscAEwGgUTUV1gSVr+ul9zP1Cfl51VMgXasQuNu+ZRYbd/V
AaxNfRoxN3OdLw==
-----END CERTIFICATE-----
Generated at Mon Jun 9 13:54:38 2025 by rpki-client