Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File:                     fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier:          2U0scF4Zi9Cd9LjvMiDj0E+U8fnI0wjC4yesHxXe6EA=
Subject key identifier:   2F:40:D0:08:DB:85:C2:CD:AC:3B:D1:96:27:F3:D5:12:80:E9:94:B4
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer:       /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial:       019752A1EF84385F41970CE9E2D87AC419EF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number:          115C
Signing time:             Mon 09 Jun 2025 03:00:33 +0000
Manifest this update:     Mon 09 Jun 2025 03:00:33 +0000
Manifest next update:     Tue 10 Jun 2025 03:00:33 +0000
Files and hashes:         1: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (hash: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=)
                          2: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: hXytoHz2Bokl/SDIqpjHchwXzQXml+vaCtJn4T69W+0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:a1:ef:84:38:5f:41:97:0c:e9:e2:d8:7a:c4:19:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
        Validity
            Not Before: Jun  9 03:00:33 2025 GMT
            Not After : Jun 10 03:00:33 2025 GMT
        Subject: CN=2f40d008db85c2cdac3bd19627f3d51280e994b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:8d:a7:b9:53:cd:7c:55:73:75:8a:59:75:a9:
                    d4:26:ca:9f:ee:41:04:09:4a:18:03:bc:a6:69:fa:
                    c1:51:cd:2a:6b:01:75:39:c1:c8:f3:f5:1e:bb:9b:
                    1f:13:8c:2a:cb:de:f0:3a:1f:4e:98:d6:f8:09:38:
                    d4:63:51:30:b1:f3:77:71:b0:bf:43:3d:a2:61:9a:
                    dd:62:00:e1:3c:dd:95:f5:40:96:eb:43:c0:fa:4f:
                    7a:95:6c:db:ff:4e:8a:b2:07:f7:c2:b8:bb:f9:ce:
                    2c:a0:d4:fc:3d:0c:90:d8:ed:df:a7:be:ac:5d:39:
                    cb:96:e1:dc:c7:72:a1:4e:77:bb:e2:4e:c7:fc:9e:
                    9c:c9:98:7b:59:c4:79:27:68:3c:d4:7b:24:29:84:
                    b5:64:c4:2a:72:b4:6b:5a:79:b6:fe:ac:3a:92:94:
                    76:1e:5b:1d:52:28:65:8d:3a:ef:14:6d:86:c5:bc:
                    36:2e:d4:78:fa:a9:f3:50:68:59:58:b0:39:50:05:
                    4b:9d:ad:ed:50:ce:df:24:1c:3c:2f:76:bc:66:55:
                    11:63:95:7f:b3:49:fa:e2:14:22:36:ae:ed:fa:37:
                    cc:f7:38:ea:df:7b:23:de:21:ab:71:78:2d:0b:95:
                    11:34:c1:6d:5b:a7:cb:ec:f2:05:09:f2:e9:0d:5f:
                    22:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:40:D0:08:DB:85:C2:CD:AC:3B:D1:96:27:F3:D5:12:80:E9:94:B4
            X509v3 Authority Key Identifier:
                keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:81:d5:59:72:ea:c7:65:5c:ee:38:95:26:1d:00:5e:67:6a:
         57:08:bf:77:7d:5f:ee:eb:f1:d6:5e:e6:2e:f2:15:55:73:29:
         1b:ee:e9:fb:c1:53:93:81:f0:a5:b2:66:14:3d:c2:42:cb:10:
         92:dd:5f:d0:fe:b5:96:fb:f9:3a:30:f5:5a:1c:f3:06:11:10:
         cd:a3:d8:b7:bb:1d:d7:3a:db:5c:2e:11:6b:03:3f:96:5c:c3:
         8e:02:c5:d6:63:3a:da:9d:41:16:b7:70:cb:8f:55:15:49:02:
         73:d7:81:16:81:38:90:43:68:f4:6e:6a:a7:56:b5:b6:e0:84:
         f2:d4:bc:92:7b:d8:8a:4f:ed:dc:2d:53:b1:d9:92:5e:9a:49:
         d1:4f:12:63:3c:bc:01:de:1a:66:be:f7:2c:e0:cb:78:24:5c:
         21:56:d7:e7:9f:e0:29:5e:6e:13:a5:51:c9:d5:c1:b7:b9:b8:
         4d:45:94:79:c1:26:2c:58:86:c0:8e:fc:4c:36:18:14:fd:b6:
         de:3f:12:a3:3b:46:0b:40:66:47:97:ba:25:ec:00:27:01:0b:
         06:93:71:aa:19:26:a5:50:8b:ad:1f:b2:3c:0c:01:0a:e1:70:
         b4:9e:61:5b:93:02:a1:0a:12:fb:f0:69:0f:6d:28:86:91:ef:
         49:0b:ee:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:30:48 2025 by rpki-client