Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File:                     fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier:          FNeJJLzgOhwAtMuUlEiF46r6+pAo+9wx0qmJh1LAlHo=
Subject key identifier:   B0:CE:76:19:84:3D:8A:BF:54:14:A8:51:84:5D:FF:91:E8:A2:AE:F6
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer:       /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial:       0197586CF6F52F1F9615386597EABCB255D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number:          115F
Signing time:             Tue 10 Jun 2025 06:00:25 +0000
Manifest this update:     Tue 10 Jun 2025 06:00:25 +0000
Manifest next update:     Wed 11 Jun 2025 06:00:25 +0000
Files and hashes:         1: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (hash: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=)
                          2: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: srd3grzosMX43NkryROufDPRkmEfxpFutFX20uPf0W4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 06:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:6c:f6:f5:2f:1f:96:15:38:65:97:ea:bc:b2:55:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
        Validity
            Not Before: Jun 10 06:00:25 2025 GMT
            Not After : Jun 11 06:00:25 2025 GMT
        Subject: CN=b0ce7619843d8abf5414a851845dff91e8a2aef6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:63:3c:9c:0f:af:a4:05:c8:43:2f:fb:e4:02:
                    96:7c:eb:d1:a0:c8:53:b4:57:cb:fe:74:43:2f:44:
                    17:e2:ee:96:e2:8c:e2:3f:6b:d4:66:5a:93:f6:12:
                    66:e4:79:31:27:f6:fb:0e:f1:99:d8:ff:88:98:ec:
                    21:ba:85:91:d7:76:09:d1:aa:4d:78:2b:67:18:91:
                    a4:d7:fb:a3:7b:c0:d6:58:3d:46:a4:34:30:9b:c8:
                    d7:1e:8a:19:7c:43:ea:79:44:f1:29:67:a5:66:a4:
                    53:57:29:3b:d6:c3:c6:bf:24:55:30:9e:34:1f:02:
                    cb:22:4b:31:bd:1d:6c:58:7e:1a:67:02:e9:a4:f6:
                    2a:f4:6d:7f:56:b5:a7:f5:6e:b6:03:a4:f1:f0:84:
                    f1:f5:90:9c:85:af:ac:82:14:aa:70:32:c3:d1:dd:
                    e8:37:ee:4a:e2:39:73:8b:48:ea:fd:13:08:6c:26:
                    6f:ec:2d:3e:40:e7:c8:07:8b:8a:74:d2:9d:20:7a:
                    09:cf:5c:6d:86:84:41:b9:23:9a:d4:8e:0d:38:da:
                    11:f1:f8:95:f3:c4:84:19:94:b2:9d:c2:31:5d:ee:
                    58:05:ec:f1:15:15:e0:49:7c:1b:e5:08:ea:0d:59:
                    6b:ee:8a:1c:2e:8d:58:0f:54:cb:02:6f:48:03:a8:
                    97:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:CE:76:19:84:3D:8A:BF:54:14:A8:51:84:5D:FF:91:E8:A2:AE:F6
            X509v3 Authority Key Identifier:
                keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:a4:02:87:1d:a9:65:10:15:78:51:46:f8:e8:06:a0:6f:08:
         28:e0:a0:ba:02:62:de:4c:43:e4:9b:56:73:27:2f:ef:0b:c8:
         c9:0d:43:92:89:2d:1d:ac:42:39:07:da:b9:67:da:ab:b1:ec:
         c3:62:55:e5:68:14:12:d2:6b:b0:ed:99:7c:0c:52:8f:83:47:
         87:f2:7b:47:c1:48:71:be:9c:a1:22:cb:8a:be:81:e6:92:73:
         84:bd:90:73:8d:d7:78:9f:90:b0:58:a4:64:18:0a:85:7e:8c:
         8a:51:7f:fc:3e:57:45:90:f5:5a:72:c1:be:0d:c5:ea:35:a0:
         ab:bb:22:b3:52:e0:51:b6:06:87:87:74:31:84:df:75:fa:ea:
         0d:15:98:04:27:cf:a4:91:56:2d:78:32:3b:f8:1b:cb:25:2d:
         8f:cb:24:01:2f:4d:ee:0e:df:f5:3f:79:0c:fd:e5:09:6e:f8:
         ba:98:f3:61:5d:f0:5b:4b:5f:05:2e:e8:50:5a:7f:5e:1b:65:
         99:a1:e9:ee:98:80:50:03:43:eb:f7:32:e8:7c:34:fd:25:be:
         de:2a:04:37:24:c7:5c:c6:71:36:7f:33:f5:2c:2b:ab:57:17:
         87:de:7a:e8:f3:f1:de:ec:fc:69:45:75:6a:fd:d4:6d:bf:1f:
         21:37:be:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:48:50 2025 by rpki-client