Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File:                     hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier:          9grZCM9sirpUk2iBKvX05s8XQIv13QxJu2X5WH8H+vA=
Subject key identifier:   CB:E7:AA:27:04:64:11:24:A1:80:46:9D:D1:F0:70:97:E3:CB:C1:C4
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer:       /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial:       019759B6E8D06E7F3088F1052ACB3E8CAAB9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number:          108D
Signing time:             Tue 10 Jun 2025 12:00:48 +0000
Manifest this update:     Tue 10 Jun 2025 12:00:48 +0000
Manifest next update:     Wed 11 Jun 2025 12:00:48 +0000
Files and hashes:         1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
                          2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
                          3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: PPsA4NdGjnZBFIhmbGuO9df8VTjzk+6r6/40eYxpyOM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 12:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:b6:e8:d0:6e:7f:30:88:f1:05:2a:cb:3e:8c:aa:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
        Validity
            Not Before: Jun 10 12:00:48 2025 GMT
            Not After : Jun 11 12:00:48 2025 GMT
        Subject: CN=cbe7aa2704641124a180469dd1f07097e3cbc1c4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:88:48:42:f7:9a:4e:37:a9:17:33:69:9a:a8:
                    75:bc:4a:48:e5:47:ad:2b:ff:0c:6f:34:90:57:3a:
                    eb:34:1f:38:03:1d:7b:c7:fd:9a:c7:24:a6:b1:81:
                    68:d4:56:75:19:c5:03:68:95:0c:87:b2:54:b3:7b:
                    20:39:a5:d3:bd:79:10:1f:27:f8:ca:78:2b:ec:41:
                    d4:a2:ff:2f:3b:1b:d1:91:d5:f0:ed:d6:0d:22:98:
                    29:23:fb:6e:63:48:1b:48:e2:92:36:bf:c8:34:c8:
                    a2:76:89:50:16:0c:53:01:ed:8b:f3:ad:38:c6:8e:
                    c9:42:b0:8f:97:94:51:92:ba:41:7f:1a:80:c6:09:
                    95:19:ed:21:60:98:7c:52:cf:18:79:9e:d7:ef:39:
                    7b:66:d8:6a:c1:cb:7a:d7:33:60:35:2b:18:53:61:
                    ec:5c:f1:4b:7e:c5:c2:c7:38:b8:db:78:59:b1:96:
                    b8:17:76:5f:bc:9c:af:96:a4:dc:22:1d:86:f3:5b:
                    d8:b5:87:1e:72:f4:3e:95:69:42:db:94:fc:ce:6c:
                    8e:94:78:a2:a3:fa:88:53:43:0a:8b:49:04:6c:72:
                    1d:e5:fc:10:0a:dc:13:2f:31:96:ac:11:40:65:82:
                    9e:f6:a5:9e:97:d4:ce:7c:9b:12:69:c8:93:f1:6e:
                    22:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:E7:AA:27:04:64:11:24:A1:80:46:9D:D1:F0:70:97:E3:CB:C1:C4
            X509v3 Authority Key Identifier:
                keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:1a:3f:21:8b:bb:cc:05:e4:38:c8:0e:58:97:bc:dd:27:71:
         27:bb:0c:c1:9b:9d:8a:15:ea:57:ee:38:4c:5c:0d:7e:9f:7a:
         12:31:1c:8c:f9:48:65:79:27:f8:5a:04:74:9e:8e:85:fe:15:
         4e:c4:b4:a6:46:dc:b2:1d:0b:33:62:fc:63:6c:54:05:fc:7e:
         b9:2b:66:ff:46:29:b4:8c:e9:7c:d6:95:c3:b8:66:af:ed:09:
         8b:5c:cf:b6:0b:53:67:5a:f8:9f:45:61:1c:e4:9b:ee:25:90:
         e2:76:31:7d:f6:fd:4d:6b:3b:24:a7:0d:09:40:f1:72:11:c7:
         bc:b8:bf:01:dd:d2:de:a6:6a:bc:fd:ca:4e:57:cf:2e:62:80:
         83:82:a1:e4:77:4e:cf:4e:ac:6c:69:0a:e2:96:1d:5b:d0:a0:
         89:50:dd:ef:4c:44:ff:ef:de:e4:19:b5:4b:31:00:02:87:23:
         60:08:9b:4f:f5:a6:8f:26:da:4e:6f:e1:60:b6:01:e3:49:13:
         f6:f7:85:02:79:a5:09:6b:e6:d9:93:00:9a:9f:a6:49:e4:33:
         a9:f2:f3:fc:db:bb:4d:b9:2c:6d:6f:52:f3:60:e0:36:1c:b3:
         ee:a2:ae:49:0b:40:3f:70:73:b9:b9:ef:07:48:ff:4d:09:9c:
         33:ec:8a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 18:40:49 2025 by rpki-client