Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
File:                     vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json)
Hash identifier:          7EUf8SledDcZEwY0jYoOY6pynaPtDrZqcbxRSrPyqW0=
Subject key identifier:   5A:85:82:10:53:AD:B9:C3:D2:A2:5C:5D:34:94:80:80:8F:70:A6:4F
Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
Certificate issuer:       /CN=be370733b8db614daa760a002c24048028300e2d
Certificate serial:       01976C61F3B3440034F583D367DBC512E37F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
Manifest number:          158E
Signing time:             Sat 14 Jun 2025 03:00:48 +0000
Manifest this update:     Sat 14 Jun 2025 03:00:48 +0000
Manifest next update:     Sun 15 Jun 2025 03:00:48 +0000
Files and hashes:         1: paMGJN73rjp1fa_w9RA1xrwwx18.roa (hash: Z6fxiaAqnra9zk/dGdgt7claLY2U/7DrFceSHabOI5E=)
                          2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: sNQUmuYhzPsgqeTOUPKQ+N3pKuO8AO8XUrTZAra7zrw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:61:f3:b3:44:00:34:f5:83:d3:67:db:c5:12:e3:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be370733b8db614daa760a002c24048028300e2d
        Validity
            Not Before: Jun 14 03:00:48 2025 GMT
            Not After : Jun 15 03:00:48 2025 GMT
        Subject: CN=5a85821053adb9c3d2a25c5d349480808f70a64f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:e6:09:00:8d:2c:1b:fd:18:f3:48:eb:d3:fa:
                    be:04:6f:6c:21:20:9d:be:78:c4:b0:f3:a1:e6:40:
                    b1:03:21:d6:6c:1d:17:94:45:ba:93:1c:0b:2f:00:
                    d2:1b:d3:e1:c5:1c:70:7a:2a:58:f7:7c:af:77:71:
                    ea:a2:2f:a9:0e:c1:87:46:09:fe:3b:ee:65:9d:de:
                    9b:61:fc:94:fb:83:f5:af:05:2a:fc:cc:7b:72:42:
                    57:a9:0a:c9:9b:1c:96:9f:86:ff:4a:e4:2c:b8:1b:
                    67:23:7c:b9:d6:5f:09:90:7a:db:e7:0b:ce:5a:c8:
                    af:01:fa:9f:39:19:0c:f9:a3:ce:68:59:96:f7:21:
                    87:c8:9a:e7:3a:e7:ed:76:40:a4:a5:f8:8c:39:0e:
                    8e:9b:9d:d1:b7:a5:5e:e0:a0:40:21:b3:59:0c:47:
                    3f:30:84:89:35:d0:b4:f7:2e:65:13:19:e5:0a:ba:
                    5b:93:f8:42:26:84:47:21:d1:67:1e:27:76:98:ea:
                    73:8b:1d:db:d7:ee:cc:0e:fe:ba:fa:fb:66:c9:90:
                    90:82:89:56:3f:e0:a8:a0:a3:41:b6:04:a6:5f:fb:
                    59:31:20:47:5d:7d:0a:6f:30:9c:b4:73:89:b7:c6:
                    49:18:03:99:aa:0a:1b:46:ca:15:5f:d0:ed:2e:a2:
                    39:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:85:82:10:53:AD:B9:C3:D2:A2:5C:5D:34:94:80:80:8F:70:A6:4F
            X509v3 Authority Key Identifier:
                keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:27:cb:c1:09:14:30:46:a2:8d:2e:73:11:bf:00:8f:b6:3f:
         72:9f:96:a9:ff:3f:61:e3:ab:9a:40:91:56:48:c6:5a:bf:cc:
         04:cd:b8:a8:65:b0:bf:42:56:97:22:a4:7d:52:1f:05:58:9e:
         f7:1f:61:f2:af:76:ea:1b:50:18:4a:5f:63:00:6e:6d:6f:75:
         6b:cd:29:f8:5a:87:e8:26:f2:c6:69:ba:a2:0d:39:0f:6b:fc:
         1b:6a:87:26:7c:a8:df:7f:b0:ad:18:e5:f2:5a:27:0e:35:fd:
         1b:30:bd:74:bd:15:09:11:d5:bc:af:1e:7c:42:cf:c8:00:ef:
         8d:65:a0:e1:48:cf:f8:2c:cb:73:2e:4e:c8:e1:45:18:ac:1d:
         7d:34:b8:58:ac:4d:4e:60:0d:66:0c:d8:b8:01:b7:02:21:20:
         c9:44:f0:8d:36:fd:19:dc:43:e9:98:9b:d9:89:53:eb:57:44:
         8c:71:7b:e6:75:26:46:09:35:92:8d:0b:c6:52:44:e8:44:40:
         3f:05:f7:d2:9f:90:e1:1a:76:d7:94:f0:e2:65:08:fd:04:6e:
         7a:f2:52:c8:02:0c:57:f5:5c:86:27:30:2a:ab:26:0c:87:02:
         5f:d2:99:14:ed:31:e8:ab:72:0e:22:24:f6:92:99:ad:4a:cf:
         c4:64:90:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:11:26 2025 by rpki-client