Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File:                     JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier:          giWxhT4DO84tunM+c/XnIJnk2ITuSCFEHuEMbX1DP/8=
Subject key identifier:   6C:7B:33:82:BB:8C:BB:64:0A:DC:A1:84:C6:97:94:9E:4C:0C:8D:B7
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer:       /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial:       019762BA2298D7C336FDD92526D1170F8340
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number:          0388
Signing time:             Thu 12 Jun 2025 06:00:55 +0000
Manifest this update:     Thu 12 Jun 2025 06:00:55 +0000
Manifest next update:     Fri 13 Jun 2025 06:00:55 +0000
Files and hashes:         1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: x6C+qIxus1kDQl3ptjST3tY3VjjFTJJJKB1ExtxT7ns=)
                          2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:62:ba:22:98:d7:c3:36:fd:d9:25:26:d1:17:0f:83:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
        Validity
            Not Before: Jun 12 06:00:55 2025 GMT
            Not After : Jun 13 06:00:55 2025 GMT
        Subject: CN=6c7b3382bb8cbb640adca184c697949e4c0c8db7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:92:62:6a:db:5d:5d:39:f0:bf:c8:bc:38:cb:
                    65:18:96:cc:24:3a:cd:d3:34:67:95:60:07:b8:29:
                    1e:73:67:34:b7:fe:7d:44:bb:9b:53:b9:83:07:7a:
                    ac:85:ba:2f:3f:32:17:27:6a:55:da:04:a6:f7:ae:
                    1b:4e:ef:90:5a:48:f1:0b:a2:54:24:23:e7:ba:92:
                    ae:ec:8d:b1:1d:e9:0c:fc:87:d9:f3:8a:ce:95:05:
                    d2:54:a9:51:2a:68:09:27:56:29:7d:c8:90:af:91:
                    4e:a2:3e:86:23:73:1c:3d:1a:82:d8:ea:5d:b4:b3:
                    5f:5b:04:d1:e0:e2:50:90:39:bf:71:71:3e:35:aa:
                    92:7b:f3:a0:15:0d:fb:67:70:c6:e8:e4:2b:90:10:
                    7a:bc:76:99:4e:31:ef:d7:f4:cd:90:f8:51:46:d9:
                    42:ed:3d:6f:66:6e:bd:b4:8d:5b:59:1a:88:33:12:
                    68:01:ff:ef:e0:82:50:df:78:27:3e:04:c6:c0:0e:
                    7c:10:aa:49:78:a2:76:18:16:8d:ca:5f:d2:e2:40:
                    24:c4:8c:63:d9:a2:52:66:5f:e4:76:28:e0:87:b5:
                    69:24:ac:0c:ac:a9:06:cb:44:bc:2c:b3:a9:9f:1f:
                    a5:38:ee:37:44:ca:87:01:7d:c4:5e:46:e7:3f:d0:
                    45:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:7B:33:82:BB:8C:BB:64:0A:DC:A1:84:C6:97:94:9E:4C:0C:8D:B7
            X509v3 Authority Key Identifier:
                keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:32:d8:b8:55:76:de:78:8d:26:e4:e7:55:b5:e2:71:85:e6:
         e3:2d:a4:c8:f1:2d:18:d8:ca:fb:c3:61:e8:43:e7:8f:7e:59:
         7b:35:29:e4:af:92:9b:ce:44:ea:9d:2c:c4:0b:a3:27:a5:2f:
         b0:59:21:2e:47:5e:62:47:ee:11:ea:d3:d6:f4:b8:a1:65:68:
         86:6b:ef:9a:4d:ea:ae:08:02:01:b8:f6:46:fe:59:5b:b7:6b:
         ac:71:2d:da:86:b1:ce:de:9b:6e:aa:47:c6:6c:d1:d4:3b:b3:
         35:23:fc:6f:09:5b:51:53:1a:59:de:53:04:4b:d8:b6:fe:ba:
         8d:4c:49:d0:3a:73:bf:6d:7f:70:3c:86:e1:d1:fa:29:25:6b:
         61:f1:cf:04:e2:3e:bc:3b:8f:95:13:fe:32:d9:fb:82:06:fa:
         94:cf:d5:d3:ee:9d:e2:29:f0:92:d1:86:7c:bc:ed:5e:88:25:
         04:69:a5:b4:18:d2:64:f4:13:8b:34:23:d1:27:50:6c:1d:26:
         bc:cb:06:43:9a:cc:b7:1a:66:e3:25:53:24:24:ef:f5:6c:a3:
         36:cd:55:43:0a:f2:2d:90:4b:39:0a:8f:19:f4:b7:50:92:6a:
         fe:82:78:78:1b:6b:be:71:2b:33:8c:ba:7c:e3:ce:9f:5c:e3:
         25:2d:60:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 08:31:18 2025 by rpki-client