Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
File:                     o05gF-H-A5MnjChZ9DBDsx7myJo.mft (raw, json)
Hash identifier:          5ojtH9EoIvCKaGHHy6WJVg2I/HkFBvbhQdMlqa4hSdw=
Subject key identifier:   6C:C1:5E:19:52:03:A8:0F:16:C7:97:D1:D6:BD:71:E0:05:16:42:5E
Authority key identifier: A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
Certificate issuer:       /CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Certificate serial:       019759B6F4041D231A2AE57CB23C570742A4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
Manifest number:          0249
Signing time:             Tue 10 Jun 2025 12:00:51 +0000
Manifest this update:     Tue 10 Jun 2025 12:00:51 +0000
Manifest next update:     Wed 11 Jun 2025 12:00:51 +0000
Files and hashes:         1: IThQt7fbZjTxBPjVToQUiBMJLfw.roa (hash: oQVD23q0+FFPZozW7epeAMXOc9QR32sT9Z0RYH7NZss=)
                          2: o05gF-H-A5MnjChZ9DBDsx7myJo.crl (hash: BCmV5cMnkmqVREo6ZJ/5xx9JmFTOe+tjn6LouCxRrTg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 12:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:b6:f4:04:1d:23:1a:2a:e5:7c:b2:3c:57:07:42:a4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
        Validity
            Not Before: Jun 10 12:00:51 2025 GMT
            Not After : Jun 11 12:00:51 2025 GMT
        Subject: CN=6cc15e195203a80f16c797d1d6bd71e00516425e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:d8:91:b1:a9:0d:46:08:55:c3:10:ac:24:62:
                    09:3f:21:e7:35:97:ec:8a:58:75:87:d4:7c:56:c1:
                    e9:26:7f:48:7c:cf:59:4e:0f:4b:69:e9:a9:1c:32:
                    35:87:f2:28:e3:a5:6b:58:bd:b9:37:da:28:1a:30:
                    be:7b:61:f1:a4:4a:03:59:3d:1e:7c:5b:78:5e:7b:
                    43:71:13:05:91:75:68:fd:0d:33:07:ea:6d:a5:39:
                    11:6b:0e:6c:ec:7d:a1:0e:2d:43:fc:03:52:32:72:
                    46:b3:20:5a:e1:fa:c1:fa:22:3f:aa:bb:cc:24:04:
                    4d:a1:7b:d8:df:1f:9a:08:ea:a5:9b:51:fd:18:e7:
                    00:d4:4e:39:77:08:0d:fc:8a:66:6e:55:4d:48:65:
                    cc:b7:89:3f:9d:24:3d:f5:af:af:df:60:d3:ff:5a:
                    7a:0b:90:15:bc:d7:69:34:a5:cb:a6:7a:ee:08:e4:
                    08:82:c7:31:2d:43:4c:c7:63:2c:fb:58:e3:3a:96:
                    a1:60:d6:19:8a:17:86:0d:7a:77:1f:48:40:b4:5e:
                    d7:3e:89:11:b7:b6:be:63:63:59:9e:b6:d2:3f:ae:
                    ff:b8:12:02:8d:14:b6:7f:f8:d1:27:45:01:10:db:
                    70:58:3b:39:4f:7e:72:fa:d0:59:56:f8:c8:c3:9a:
                    56:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:C1:5E:19:52:03:A8:0F:16:C7:97:D1:D6:BD:71:E0:05:16:42:5E
            X509v3 Authority Key Identifier:
                keyid:A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:93:85:77:a7:f0:be:b0:07:66:01:af:eb:82:7c:97:8f:30:
         bb:b2:2c:f6:f6:31:4e:42:fd:a0:49:ed:d4:7b:73:74:38:bb:
         bf:f8:74:44:b4:32:e2:9b:22:a2:7a:46:dc:8e:83:22:4a:d6:
         bd:84:47:42:8c:45:1a:1b:77:4f:fb:82:07:19:9a:de:7b:31:
         dc:02:2b:47:11:3f:e6:02:8f:14:4f:45:31:f7:3d:fa:86:40:
         c4:97:e8:28:c8:3a:53:94:e0:38:83:8b:0f:5e:f6:7e:db:fa:
         39:79:88:d1:d8:cf:7e:fa:a0:0b:ca:74:c8:92:77:09:d9:f1:
         af:33:19:a9:40:68:1c:ce:97:2b:41:0e:b4:3f:4e:de:21:84:
         f1:55:c1:eb:1c:6c:e9:11:a2:96:dc:7a:0a:1a:af:05:7c:8f:
         39:be:08:60:33:38:f6:16:84:bc:f5:33:19:6d:35:7f:00:98:
         06:28:03:02:14:d0:0b:6c:a5:78:95:e8:e4:35:8f:16:e1:99:
         8e:13:30:72:98:09:4d:2e:68:41:31:e5:b2:db:cd:67:20:aa:
         32:8c:6b:65:a3:73:f4:5b:ef:69:d9:2a:aa:85:53:02:a0:2a:
         bf:b1:b3:44:f4:39:08:1a:b6:76:8c:7e:6a:39:34:fe:3b:4b:
         85:64:1b:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZtvQEHSMaKuV8sjxXB0KkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNGU2MDE3ZTFmZTAzOTMyNzhjMjg1OWY0MzA0M2IzMWVl
NmM4OWEwHhcNMjUwNjEwMTIwMDUxWhcNMjUwNjExMTIwMDUxWjAzMTEwLwYDVQQD
Eyg2Y2MxNWUxOTUyMDNhODBmMTZjNzk3ZDFkNmJkNzFlMDA1MTY0MjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9iRsakNRghVwxCsJGIJPyHnNZfs
ilh1h9R8VsHpJn9IfM9ZTg9LaempHDI1h/Io46VrWL25N9ooGjC+e2HxpEoDWT0e
fFt4XntDcRMFkXVo/Q0zB+ptpTkRaw5s7H2hDi1D/ANSMnJGsyBa4frB+iI/qrvM
JARNoXvY3x+aCOqlm1H9GOcA1E45dwgN/IpmblVNSGXMt4k/nSQ99a+v32DT/1p6
C5AVvNdpNKXLpnruCOQIgscxLUNMx2Ms+1jjOpahYNYZiheGDXp3H0hAtF7XPokR
t7a+Y2NZnrbSP67/uBICjRS2f/jRJ0UBENtwWDs5T35y+tBZVvjIw5pWWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzBXhlSA6gPFseX0da9ceAFFkJeMB8GA1UdIwQY
MBaAFKNOYBfh/gOTJ4woWfQwQ7Me5siaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEt
ZDExMjI5OWZmNjk1LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEtZDExMjI5OWZmNjk1
LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH5OFd6fw
vrAHZgGv64J8l48wu7Is9vYxTkL9oEnt1HtzdDi7v/h0RLQy4psionpG3I6DIkrW
vYRHQoxFGht3T/uCBxma3nsx3AIrRxE/5gKPFE9FMfc9+oZAxJfoKMg6U5TgOIOL
D172ftv6OXmI0djPfvqgC8p0yJJ3CdnxrzMZqUBoHM6XK0EOtD9O3iGE8VXB6xxs
6RGiltx6ChqvBXyPOb4IYDM49haEvPUzGW01fwCYBigDAhTQC2yleJXo5DWPFuGZ
jhMwcpgJTS5oQTHlstvNZyCqMoxrZaNz9FvvadkqqoVTAqAqv7GzRPQ5CBq2dox+
ajk0/jtLhWQbVQ==
-----END CERTIFICATE-----
Generated at Tue Jun 10 20:06:27 2025 by rpki-client