Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File:                     JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier:          mak0L+DOfO5sr/kbHfFc5oLNfdubk0JCafbyN5jfXy4=
Subject key identifier:   41:99:5A:04:FC:C6:7D:ED:69:AA:6E:87:97:2D:7A:6F:5E:56:AC:2F
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer:       /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial:       01975EDD0E7F60CDEED349EFACE966A4ECD4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number:          0386
Signing time:             Wed 11 Jun 2025 12:00:34 +0000
Manifest this update:     Wed 11 Jun 2025 12:00:34 +0000
Manifest next update:     Thu 12 Jun 2025 12:00:34 +0000
Files and hashes:         1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: /NlgTJ5zRQVGpNHcwfBwxbvs2Q7BkWDORbVyITS2m9g=)
                          2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 12:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5e:dd:0e:7f:60:cd:ee:d3:49:ef:ac:e9:66:a4:ec:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
        Validity
            Not Before: Jun 11 12:00:34 2025 GMT
            Not After : Jun 12 12:00:34 2025 GMT
        Subject: CN=41995a04fcc67ded69aa6e87972d7a6f5e56ac2f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:bf:42:f6:ad:69:bd:e3:16:e9:c0:33:a7:d4:
                    19:4f:f3:b6:22:35:76:c1:75:b2:94:4f:a7:bc:e3:
                    3e:8a:8b:9c:20:3b:49:54:b4:fe:bd:e0:bf:51:de:
                    7e:f5:87:62:29:40:70:d8:65:82:25:c5:9c:0e:e9:
                    98:85:b4:fe:85:91:09:ef:43:52:ac:53:94:a8:5b:
                    9d:ff:a6:5e:f7:ee:ef:9c:c7:7d:bd:ea:16:c9:ee:
                    6e:1d:98:00:5c:53:3c:b3:0c:e8:fb:12:c6:6a:47:
                    54:8d:e8:9d:8a:52:0d:66:78:52:d5:31:ad:09:35:
                    d0:83:f6:f7:5c:e8:32:73:84:9a:52:57:05:8c:48:
                    40:a7:da:fc:12:5d:d1:d7:0a:79:e7:a1:82:02:29:
                    72:b4:20:cc:c2:0c:06:5a:c6:38:3b:99:92:70:60:
                    b1:f1:89:ee:9a:b2:ca:7b:a7:2a:20:9c:ab:a6:3f:
                    80:6b:f8:ad:8d:a2:ef:64:27:a2:a8:a7:bb:39:40:
                    92:f6:c2:31:11:1c:11:77:c7:d5:25:7d:54:14:35:
                    b9:ff:74:6f:fd:d4:e3:18:da:03:b6:e5:88:b4:f5:
                    88:4e:32:a4:0c:49:e9:c4:82:4e:95:e8:78:1b:2f:
                    30:c6:e7:64:7c:73:90:65:d8:85:e4:56:04:23:b9:
                    36:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:99:5A:04:FC:C6:7D:ED:69:AA:6E:87:97:2D:7A:6F:5E:56:AC:2F
            X509v3 Authority Key Identifier:
                keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:17:4d:50:ea:3a:c5:08:80:17:96:72:0e:30:45:19:0f:9b:
         de:d1:d0:19:c1:11:f9:81:50:df:2f:27:da:8f:01:ea:8a:5a:
         4b:dd:49:5e:77:db:d0:04:d8:29:c6:c8:09:2a:42:6c:43:6d:
         d7:ea:2f:5b:37:fe:24:cc:0e:60:aa:e5:4d:6b:48:54:57:cd:
         a4:9c:80:4c:9c:40:e8:ac:ef:49:16:40:16:ed:ee:75:00:86:
         6d:c2:2a:c4:39:2a:b2:98:b5:3e:47:1e:c1:90:a4:67:14:90:
         ba:1e:1c:aa:e4:72:56:af:b9:f9:5b:58:1b:77:3b:57:2c:9a:
         26:87:7d:5b:cb:50:10:06:0f:19:3f:28:98:0f:bc:ec:0c:9f:
         df:9a:1d:c0:2d:3e:28:24:61:8b:27:ab:b2:45:b5:82:21:b4:
         18:66:ef:be:a6:6c:17:f2:82:12:8e:d9:8f:b5:95:c3:7a:c3:
         98:69:77:4c:34:f9:c3:00:43:3a:d4:8d:2f:52:95:f9:3d:e1:
         2e:f2:a7:74:b7:21:68:40:85:ae:1f:c2:1c:f8:93:65:8c:b3:
         db:2f:d0:19:6d:9a:f0:03:c1:b0:0b:fd:17:38:b4:45:be:fd:
         be:78:03:95:54:1d:9a:cb:32:5e:1f:36:8c:2e:a8:dd:a3:3c:
         9e:f4:bb:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 22:33:31 2025 by rpki-client