Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
File:                     o05gF-H-A5MnjChZ9DBDsx7myJo.mft (raw, json)
Hash identifier:          t83iGg72HFJWnsYx72GCQN+ffenfSZlpc+b+x0sTG9w=
Subject key identifier:   6F:8F:F6:08:BE:B5:FB:46:63:90:EC:57:16:0E:38:E3:05:9A:B0:59
Authority key identifier: A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A
Certificate issuer:       /CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
Certificate serial:       01976929BFC90D6C3FB3EC6AF1DA64DB1C80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
Manifest number:          0251
Signing time:             Fri 13 Jun 2025 12:00:33 +0000
Manifest this update:     Fri 13 Jun 2025 12:00:33 +0000
Manifest next update:     Sat 14 Jun 2025 12:00:33 +0000
Files and hashes:         1: IThQt7fbZjTxBPjVToQUiBMJLfw.roa (hash: oQVD23q0+FFPZozW7epeAMXOc9QR32sT9Z0RYH7NZss=)
                          2: o05gF-H-A5MnjChZ9DBDsx7myJo.crl (hash: RiuN9E9YvqPY7fr07otjZGUtJEAmWBWInWIHW3CqmFI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:29:bf:c9:0d:6c:3f:b3:ec:6a:f1:da:64:db:1c:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a34e6017e1fe0393278c2859f43043b31ee6c89a
        Validity
            Not Before: Jun 13 12:00:33 2025 GMT
            Not After : Jun 14 12:00:33 2025 GMT
        Subject: CN=6f8ff608beb5fb466390ec57160e38e3059ab059
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:be:70:1b:4d:4d:26:de:3a:55:8c:f8:be:81:
                    9e:6c:0e:9c:d7:8d:7d:e1:fe:0a:2c:cd:80:91:ec:
                    56:24:24:e8:75:44:ec:54:3b:12:e3:74:6e:ff:60:
                    e4:39:98:fc:8b:a8:52:b2:8e:90:4b:99:a3:6f:7f:
                    b3:be:95:a2:aa:1f:1f:78:d4:df:1e:8b:cb:20:a2:
                    50:b1:bd:b8:5e:e6:b2:5d:29:d6:47:4c:90:fa:23:
                    d4:35:4b:18:d6:e2:5d:af:2f:28:46:0b:5f:bb:65:
                    37:78:29:4d:6e:29:4a:f2:a7:7d:e6:03:75:ad:4a:
                    9c:23:80:83:b5:e0:07:53:ba:9d:21:10:2c:00:48:
                    23:1b:af:f4:71:99:44:9d:68:6f:82:2a:bf:1f:27:
                    93:09:0b:68:5f:02:d0:af:5f:15:d0:5e:18:0c:f3:
                    dc:ac:bf:75:b0:d2:b6:e8:e0:8e:34:12:54:4d:78:
                    01:4d:66:b8:5d:d1:d8:e2:2c:63:98:73:19:41:ea:
                    76:8e:ba:6b:98:59:a0:96:29:8c:6a:45:69:2f:7c:
                    ad:67:73:b5:a6:56:41:68:09:3a:9e:2c:39:a2:e9:
                    01:57:42:68:0e:3b:3a:ba:68:e6:a4:b2:b5:4c:74:
                    d8:b3:54:d2:c7:93:5e:c7:ca:80:b0:f9:86:46:99:
                    de:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:8F:F6:08:BE:B5:FB:46:63:90:EC:57:16:0E:38:E3:05:9A:B0:59
            X509v3 Authority Key Identifier:
                keyid:A3:4E:60:17:E1:FE:03:93:27:8C:28:59:F4:30:43:B3:1E:E6:C8:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o05gF-H-A5MnjChZ9DBDsx7myJo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6d625c-7e60-4523-9491-d112299ff695/1/o05gF-H-A5MnjChZ9DBDsx7myJo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:ac:d6:d1:b6:44:90:a0:5c:cb:9e:5e:67:a2:d8:2c:7f:ed:
         0b:28:25:f8:02:b9:c4:95:58:7b:b0:69:b2:48:fa:21:e0:e1:
         5e:f2:ca:73:b0:5b:f2:7e:3d:b3:aa:f8:ac:77:e3:c9:e5:7f:
         af:b4:a0:36:07:9d:59:a5:03:11:d3:27:56:4f:12:1c:3e:6a:
         f4:ea:9a:08:93:be:61:cc:9a:ea:88:c6:c5:d3:3e:d0:ff:60:
         b0:62:a5:f4:94:ea:77:c5:ce:d2:74:ff:92:3b:02:3b:c8:a1:
         90:e9:ad:88:3b:2e:58:fd:2e:ba:5e:33:cf:26:c1:5b:d0:66:
         a9:4d:7b:31:b1:9e:4e:c0:8f:b2:e9:0f:31:04:16:d9:74:bf:
         48:23:a5:de:45:1b:67:4a:b9:77:3a:22:e4:89:8a:49:24:64:
         f5:8d:e3:5e:ad:34:00:cf:11:24:68:3d:bb:09:43:bf:e9:7b:
         20:4c:33:77:d3:8f:97:01:c8:f8:93:08:44:94:7e:b8:dc:2f:
         a8:29:ad:54:d6:a7:4a:bc:c8:2c:f1:a1:10:8f:20:70:fb:1a:
         dc:33:56:85:c8:57:bc:d2:68:d6:15:3b:8a:bb:6d:3f:90:f7:
         dc:5a:9f:9e:42:37:55:b3:e1:1e:0e:91:c4:49:0c:20:c5:34:
         11:d7:6b:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpKb/JDWw/s+xq8dpk2xyAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNGU2MDE3ZTFmZTAzOTMyNzhjMjg1OWY0MzA0M2IzMWVl
NmM4OWEwHhcNMjUwNjEzMTIwMDMzWhcNMjUwNjE0MTIwMDMzWjAzMTEwLwYDVQQD
Eyg2ZjhmZjYwOGJlYjVmYjQ2NjM5MGVjNTcxNjBlMzhlMzA1OWFiMDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub5wG01NJt46VYz4voGebA6c1419
4f4KLM2AkexWJCTodUTsVDsS43Ru/2DkOZj8i6hSso6QS5mjb3+zvpWiqh8feNTf
HovLIKJQsb24XuayXSnWR0yQ+iPUNUsY1uJdry8oRgtfu2U3eClNbilK8qd95gN1
rUqcI4CDteAHU7qdIRAsAEgjG6/0cZlEnWhvgiq/HyeTCQtoXwLQr18V0F4YDPPc
rL91sNK26OCONBJUTXgBTWa4XdHY4ixjmHMZQep2jrprmFmglimMakVpL3ytZ3O1
plZBaAk6niw5oukBV0JoDjs6umjmpLK1THTYs1TSx5Nex8qAsPmGRpneWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG+P9gi+tftGY5DsVxYOOOMFmrBZMB8GA1UdIwQY
MBaAFKNOYBfh/gOTJ4woWfQwQ7Me5siaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEt
ZDExMjI5OWZmNjk1LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC82ZDYyNWMtN2U2MC00NTIzLTk0OTEtZDExMjI5OWZmNjk1
LzEvbzA1Z0YtSC1BNU1uakNoWjlEQkRzeDdteUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP6zW0bZE
kKBcy55eZ6LYLH/tCygl+AK5xJVYe7Bpskj6IeDhXvLKc7Bb8n49s6r4rHfjyeV/
r7SgNgedWaUDEdMnVk8SHD5q9OqaCJO+Ycya6ojGxdM+0P9gsGKl9JTqd8XO0nT/
kjsCO8ihkOmtiDsuWP0uul4zzybBW9BmqU17MbGeTsCPsukPMQQW2XS/SCOl3kUb
Z0q5dzoi5ImKSSRk9Y3jXq00AM8RJGg9uwlDv+l7IEwzd9OPlwHI+JMIRJR+uNwv
qCmtVNanSrzILPGhEI8gcPsa3DNWhchXvNJo1hU7irttP5D33FqfnkI3VbPhHg6R
xEkMIMU0EddrMQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 18:07:46 2025 by rpki-client