Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File:                     hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier:          NARO5XzOulLE4PNswmqyq3sTZPgDGDHGmzE94Xk+OXc=
Subject key identifier:   B3:A0:89:96:D5:A2:8C:0C:F6:D0:72:C4:A8:A1:57:25:00:A6:40:DC
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer:       /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial:       0197654D3D3622E1B1ABE673D41E26C43B91
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number:          1093
Signing time:             Thu 12 Jun 2025 18:00:50 +0000
Manifest this update:     Thu 12 Jun 2025 18:00:50 +0000
Manifest next update:     Fri 13 Jun 2025 18:00:50 +0000
Files and hashes:         1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
                          2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
                          3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: xBQmI0w/ni9odIi4wLUB5MyfFfFqq1SqEoxYHzz0OBY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:4d:3d:36:22:e1:b1:ab:e6:73:d4:1e:26:c4:3b:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
        Validity
            Not Before: Jun 12 18:00:50 2025 GMT
            Not After : Jun 13 18:00:50 2025 GMT
        Subject: CN=b3a08996d5a28c0cf6d072c4a8a1572500a640dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:46:64:4a:3b:e5:ed:78:28:84:85:f1:58:e6:
                    17:9c:c0:a8:72:a6:bd:89:04:9f:d7:6a:34:db:54:
                    03:14:3f:13:da:db:df:4b:d1:07:53:93:9e:b9:0e:
                    5e:d9:eb:90:1d:a3:b9:27:b8:cb:33:a6:12:11:25:
                    71:82:da:71:89:e9:2a:9c:f6:eb:51:94:c2:26:2b:
                    eb:57:bc:04:34:69:f8:c2:aa:8c:f6:ee:b7:b6:99:
                    ac:17:fb:14:a6:5f:1f:40:dc:fd:90:9d:54:e6:43:
                    01:48:2e:fc:7d:85:73:1e:f1:0a:81:96:b3:16:21:
                    f2:10:f3:2c:8e:1b:b6:fe:0c:7b:ee:10:6f:ef:2c:
                    bd:dc:14:28:8f:99:18:2f:a4:20:86:a7:f2:17:f6:
                    b7:c6:c4:c3:c3:33:42:26:ad:11:34:9b:16:d1:b1:
                    a3:92:82:8a:51:27:f3:77:78:4a:63:68:44:9b:15:
                    84:89:94:72:83:90:6f:fa:47:b2:b5:b8:ec:da:de:
                    a8:8a:9a:dd:b1:91:46:e0:5e:32:f0:ab:06:fd:c5:
                    e2:ff:f0:80:48:03:4a:83:c8:4e:06:e4:22:29:05:
                    91:99:78:f0:11:97:56:ad:94:35:d9:b4:b2:50:2e:
                    64:77:f0:4e:4d:f8:a6:ed:c7:ad:11:4e:8d:e0:d2:
                    ae:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:A0:89:96:D5:A2:8C:0C:F6:D0:72:C4:A8:A1:57:25:00:A6:40:DC
            X509v3 Authority Key Identifier:
                keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:4c:a1:8b:cb:91:3e:f3:7f:e9:75:39:c2:91:df:2b:92:1e:
         38:5f:50:0b:43:79:e2:28:dd:3d:56:81:50:34:47:8c:7d:98:
         3e:b9:32:2c:13:90:5f:9e:58:a4:30:0f:b8:53:bd:35:7c:53:
         ee:f6:08:32:df:fc:d6:c8:20:ef:95:06:7b:19:84:f6:f2:a7:
         f0:cb:03:8d:cf:b2:76:67:5c:e1:37:e7:cf:89:36:f6:1c:9c:
         0e:c7:8f:22:be:2b:36:ca:ac:75:d8:ff:7a:73:38:34:fe:85:
         c2:dc:a8:97:28:4d:80:32:22:a4:9f:35:e1:80:60:af:08:07:
         33:1b:20:eb:c8:7b:a2:de:ba:7c:13:92:ff:ad:6b:f1:25:42:
         d2:8d:dd:91:f0:62:0e:63:87:d7:17:00:9b:41:88:3f:7d:50:
         8e:45:c4:9b:9e:be:f6:c0:74:39:93:16:ea:24:5a:d3:2d:57:
         b1:c0:c1:ed:86:09:78:7f:e5:25:1e:7d:c2:f2:46:60:c8:55:
         04:ab:6d:4f:17:77:a0:ed:aa:36:1b:56:9f:7b:32:5a:1e:8e:
         58:d2:4c:23:78:de:a7:72:25:ce:74:24:78:73:50:ba:1b:23:
         f0:ab:2e:7c:68:8c:fc:e4:57:6d:9f:00:46:ca:00:57:9d:d2:
         77:e1:bb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 00:03:29 2025 by rpki-client