Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File:                     JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier:          2Ae0cHlm4dS7UB8AMCn4RV63Hf/G2+GhL+oF+PokdHk=
Subject key identifier:   00:CC:2B:2D:66:8B:1B:9A:92:D6:4B:93:BF:CC:2B:F3:4F:CB:66:7D
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer:       /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial:       019759123880C5CEFCFEDE3A780F3A2F7777
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number:          0383
Signing time:             Tue 10 Jun 2025 09:00:55 +0000
Manifest this update:     Tue 10 Jun 2025 09:00:55 +0000
Manifest next update:     Wed 11 Jun 2025 09:00:55 +0000
Files and hashes:         1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: HbaZzGvavBacYR3/THPFk3D8CtxLKPWNUG1LzizagZQ=)
                          2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:38:80:c5:ce:fc:fe:de:3a:78:0f:3a:2f:77:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
        Validity
            Not Before: Jun 10 09:00:55 2025 GMT
            Not After : Jun 11 09:00:55 2025 GMT
        Subject: CN=00cc2b2d668b1b9a92d64b93bfcc2bf34fcb667d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:cd:83:12:65:d5:c1:15:f7:12:67:75:2b:ae:
                    2b:b6:43:0f:ed:14:02:07:9c:7a:43:7f:38:96:59:
                    86:d0:26:bd:52:cd:a4:9b:16:cd:5d:9f:42:ca:89:
                    90:df:6f:51:a3:c4:0c:63:e4:8d:c8:a2:11:2c:09:
                    a4:a8:71:76:67:20:9f:09:42:90:7c:f0:7a:b6:d3:
                    b9:a3:1e:91:a7:43:c8:77:b9:a0:83:a3:c9:84:36:
                    c4:ea:a9:dc:ee:c8:53:b3:0c:f5:e5:06:e2:19:f3:
                    5d:b2:7b:d7:84:6d:cb:98:b8:a6:3e:db:88:89:70:
                    d7:87:28:fc:55:8d:e9:70:82:0c:a5:11:f7:31:80:
                    b6:44:9d:c3:d1:e1:60:ab:00:ae:4d:b0:a4:5f:3a:
                    be:2a:bf:b8:ec:3a:74:1f:7c:c8:90:3e:97:0c:cb:
                    95:9d:b4:cf:a7:cc:33:27:a4:bc:f7:b8:cb:92:17:
                    6a:ea:ab:03:63:ac:34:ea:5e:0b:02:a2:44:a3:66:
                    30:bb:0b:e2:3f:26:19:45:26:38:51:5c:9a:c1:34:
                    2c:95:23:4c:92:df:e9:18:71:b8:28:b1:b0:6e:c4:
                    27:d1:d1:20:39:e5:90:1c:a3:9e:0f:f7:cb:a4:1e:
                    36:d9:a2:2b:fb:72:c9:da:f1:d3:bc:e2:d8:8e:45:
                    91:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:CC:2B:2D:66:8B:1B:9A:92:D6:4B:93:BF:CC:2B:F3:4F:CB:66:7D
            X509v3 Authority Key Identifier:
                keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:86:19:b3:6f:a0:57:e1:36:bb:67:a9:2e:94:8d:f8:6f:1b:
         20:b7:8b:22:c4:76:91:a0:92:2d:f9:42:78:16:69:8f:4b:7d:
         0e:8f:a6:05:b3:c8:78:44:b3:0e:69:e7:b8:e7:de:4a:44:e7:
         23:db:2c:10:2b:0b:12:bf:88:eb:82:31:6d:c3:4a:c3:68:b6:
         31:92:46:9d:44:e0:f1:50:74:56:11:09:52:b8:31:cc:d2:95:
         9d:01:eb:77:33:d5:fe:a6:5f:76:e5:ea:14:d6:1f:66:b2:ec:
         15:40:a5:92:d4:a2:9b:3b:c0:05:5e:91:74:79:72:71:3f:81:
         97:b7:37:ec:45:cd:89:b2:80:56:2d:86:2e:6a:5b:4d:74:0a:
         14:26:39:93:ba:1f:dd:f1:ad:34:55:a5:50:d8:2a:9d:2c:a4:
         50:3a:7e:03:58:2c:39:2a:86:e0:9a:3c:63:94:86:f5:4a:ad:
         09:eb:0e:81:61:2d:dc:b8:e4:8f:e9:4a:b6:ca:ca:0b:84:f1:
         3e:c7:21:9f:24:54:89:89:83:c7:cf:43:21:75:df:ac:a5:64:
         1c:0a:66:e1:15:c4:72:34:a4:1e:1a:20:af:e5:a8:ec:e5:9c:
         1b:47:c3:06:fe:11:8b:3e:77:f7:d0:89:8f:ee:3c:97:0a:c0:
         94:d7:23:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:15:33 2025 by rpki-client