Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
File:                     qiEQS093IiTRGFaiTt-UZqhE0mw.mft (raw, json)
Hash identifier:          HKNDw8zvnNp0qecG1jdF34C1rcctbZdDB8LQ/k/4mB0=
Subject key identifier:   4C:69:82:72:2E:F9:51:E6:F7:7B:91:40:A5:A9:36:C2:FE:16:4E:E8
Authority key identifier: AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
Certificate issuer:       /CN=aa21104b4f772224d11856a24edf9466a844d26c
Certificate serial:       019752A28526B7D9FF4B44CC8929C7999F4E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
Manifest number:          097B
Signing time:             Mon 09 Jun 2025 03:01:11 +0000
Manifest this update:     Mon 09 Jun 2025 03:01:11 +0000
Manifest next update:     Tue 10 Jun 2025 03:01:11 +0000
Files and hashes:         1: C9Uc2-MMZLc56ntn-MTlSYOC9E8.roa (hash: 7Vks3Vs+iWpgcZieiS4e05rACvsjBFcyY3uhYDWshE0=)
                          2: qiEQS093IiTRGFaiTt-UZqhE0mw.crl (hash: fEDxZCKahEEGNbymPp1PMrL7OZz/mRaiXmMouIDK0Ho=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:a2:85:26:b7:d9:ff:4b:44:cc:89:29:c7:99:9f:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa21104b4f772224d11856a24edf9466a844d26c
        Validity
            Not Before: Jun  9 03:01:11 2025 GMT
            Not After : Jun 10 03:01:11 2025 GMT
        Subject: CN=4c6982722ef951e6f77b9140a5a936c2fe164ee8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:7b:e7:13:57:04:09:b7:a9:b0:62:4c:b0:26:
                    a7:e3:43:8d:a7:87:fe:2c:84:3c:3e:2f:39:24:b2:
                    e2:d0:f6:3f:bd:96:e9:0f:3b:6d:8a:4b:95:61:18:
                    0e:66:2f:88:63:af:c4:d5:5b:1d:1f:45:c8:5f:fe:
                    f0:b3:ae:0f:d2:2e:03:98:04:4d:1c:91:36:7e:c0:
                    3a:61:fd:7e:78:ee:42:f6:07:d7:68:e0:02:2e:ac:
                    9b:57:d2:5c:25:6c:26:84:8f:7a:36:50:08:66:c2:
                    ac:e0:c7:4a:bd:0d:98:b9:09:0d:7c:1a:66:0f:ae:
                    57:66:12:c6:ff:01:13:4f:b8:6a:cc:10:3d:2c:77:
                    51:52:54:30:93:53:d5:02:dc:7e:68:4f:90:ee:14:
                    f1:a2:ae:6a:5a:9e:20:64:4e:99:30:dc:3b:92:8f:
                    01:f4:7a:79:1f:17:8b:40:46:2c:0c:b7:22:32:69:
                    39:04:06:f0:52:3e:62:c1:a1:f9:2e:cc:69:b1:2d:
                    51:86:2e:aa:0f:4c:61:a0:95:bf:6c:fd:b7:66:14:
                    f8:a4:b5:3c:7b:90:00:8c:33:b3:fd:4a:fe:d5:50:
                    b6:71:fb:83:13:24:34:2b:b2:46:88:3a:bc:26:ee:
                    65:c5:eb:2b:45:31:f1:57:70:a1:07:6f:69:e1:32:
                    0d:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:69:82:72:2E:F9:51:E6:F7:7B:91:40:A5:A9:36:C2:FE:16:4E:E8
            X509v3 Authority Key Identifier:
                keyid:AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:ff:da:5a:49:12:65:12:30:f0:95:a1:81:cc:4b:a7:b1:2e:
         ef:34:cd:8f:7f:28:be:58:98:26:c3:60:e8:1f:81:65:f1:aa:
         86:37:1b:e6:83:bf:8b:12:53:3b:63:17:b9:bb:c6:5f:08:b8:
         5d:67:ec:52:a5:eb:ac:2e:44:a1:23:f4:a5:b2:60:55:f1:bb:
         90:41:14:0e:55:3f:b0:f2:76:f3:ed:1b:68:71:cd:c3:e2:38:
         52:ff:f3:11:3b:83:46:81:48:1f:06:2a:b8:15:79:e2:2a:72:
         48:a9:54:49:fc:41:70:31:4c:e5:98:e8:34:52:72:4c:88:2a:
         03:09:ce:4a:90:83:28:a3:0f:dc:2e:0a:14:6f:c1:21:14:ac:
         08:03:ec:93:a8:64:23:b9:a7:3d:3f:ac:4d:6b:3b:ec:51:35:
         39:e3:07:43:e8:54:3e:8f:0c:27:40:1e:b5:01:91:f7:2c:63:
         58:03:46:67:07:d1:3a:a8:66:d2:14:7b:fc:39:2f:f3:dc:cf:
         4e:ae:ed:2a:11:fe:de:38:96:d9:3f:04:ea:bf:48:78:fa:e1:
         31:7a:0e:f2:4d:5f:30:7a:cd:2f:21:1c:24:af:7a:42:4f:16:
         20:1b:1a:db:91:f8:2c:f4:e6:ea:9c:68:65:c6:5a:a3:87:78:
         ae:a3:52:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:30:40 2025 by rpki-client