Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File:                     bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier:          UnnXliYuivpO+HgTXQ75Go43Ywihn3pw4qOQA5zQLfM=
Subject key identifier:   FD:CC:CE:FA:59:7E:34:5A:D3:C1:C0:A6:AA:02:86:95:CB:A3:A1:7E
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer:       /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial:       01976AE1491A96DCEFE189DAA5D1B15433AF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number:          0E9D
Signing time:             Fri 13 Jun 2025 20:00:38 +0000
Manifest this update:     Fri 13 Jun 2025 20:00:38 +0000
Manifest next update:     Sat 14 Jun 2025 20:00:38 +0000
Files and hashes:         1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
                          2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: t9kJ1sXqWMxcFkoTRevcBXV+czhpQ8Plz2sEmy1Liyo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 18:59:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:e1:49:1a:96:dc:ef:e1:89:da:a5:d1:b1:54:33:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
        Validity
            Not Before: Jun 13 20:00:38 2025 GMT
            Not After : Jun 14 20:00:38 2025 GMT
        Subject: CN=fdcccefa597e345ad3c1c0a6aa028695cba3a17e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:8c:7b:b7:4a:5c:89:52:26:69:88:82:d1:f7:
                    15:b9:f2:53:9d:7d:d3:4d:08:22:e0:bc:54:88:da:
                    e8:3c:e8:13:ed:ac:64:98:b9:60:6e:4c:11:8b:0b:
                    5e:aa:f5:8d:ec:26:cc:65:a8:28:d1:e7:04:1e:10:
                    b8:7c:c8:1f:48:4f:f8:3b:f4:f3:2f:7e:20:0f:a8:
                    e8:b7:fc:bf:b2:02:e1:a6:4e:c0:4b:14:78:a7:90:
                    55:1a:66:eb:44:b9:16:04:d9:83:b8:ed:9e:b9:4f:
                    d8:35:6b:bf:ab:89:ce:b8:cd:7c:bd:ac:26:64:fb:
                    ee:10:04:6f:7e:f2:4c:8a:be:64:4d:4c:a3:ab:6f:
                    7e:7c:83:3c:a5:17:79:19:90:a5:29:41:4f:45:c0:
                    61:af:75:8c:58:54:13:58:24:de:d4:cb:db:e2:16:
                    9d:9a:07:37:8e:1c:d8:85:32:f2:11:6f:0e:be:03:
                    3e:74:f8:0e:1b:26:8b:45:a6:c9:29:46:55:4c:a9:
                    ab:71:12:46:05:65:8e:97:22:09:ca:51:b6:7d:81:
                    48:20:99:3a:56:ca:ed:75:d9:1a:f6:c9:bb:80:0f:
                    b9:12:ac:6a:16:19:4d:ba:39:5f:12:f7:ce:51:94:
                    08:68:5e:c4:0e:73:54:0e:c1:d7:0f:16:3f:17:1b:
                    ab:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:CC:CE:FA:59:7E:34:5A:D3:C1:C0:A6:AA:02:86:95:CB:A3:A1:7E
            X509v3 Authority Key Identifier:
                keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:d5:04:2d:41:cb:25:15:50:1b:14:20:c8:f5:de:0d:20:6b:
         1b:ae:dd:7b:ce:da:9a:61:84:10:70:4e:27:c0:ec:25:38:d7:
         4f:6e:ac:2c:f1:38:ed:62:f2:07:38:1f:f1:2b:c8:5b:a9:7a:
         df:a4:20:f1:a3:bb:bb:44:81:c1:7e:1f:90:ed:de:21:50:fa:
         55:14:52:ad:78:ad:e1:20:67:ea:9a:87:e9:ab:89:43:55:5e:
         fe:c9:d1:a3:52:c1:0e:84:27:80:70:6a:98:e8:b7:8d:cd:a5:
         9b:df:05:a1:40:41:60:9b:42:5a:e3:ee:32:f4:42:82:ae:bd:
         09:f3:08:12:4e:ab:32:ce:fc:ab:65:23:6b:5e:ce:8c:ee:d1:
         8c:dc:7a:ca:98:c7:8b:63:8a:a7:fb:ae:f3:fb:8b:08:10:f8:
         47:92:34:3a:a9:a7:9d:12:d7:5b:bb:64:2e:99:46:11:54:31:
         02:31:f6:f5:0c:55:b7:7e:82:af:ef:d2:98:cf:b4:3b:83:31:
         8d:79:e1:6a:14:9f:a8:b3:48:5b:d0:b2:b5:33:1b:e5:85:d7:
         87:4e:51:32:a7:f8:3f:06:1b:57:31:75:ff:e9:27:69:17:e2:
         d2:d8:1d:36:b9:21:60:a9:c3:9f:f3:db:15:97:ab:47:a7:57:
         bc:fc:9a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 03:32:41 2025 by rpki-client