Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File:                     10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier:          MvmJd64ZLPhQX023kheqZF6ooIWv9vv+xrRuxlxpBaQ=
Subject key identifier:   B6:BC:48:5B:66:69:42:05:9F:FF:26:C3:6A:4A:F4:BA:08:98:AE:8E
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer:       /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial:       019768BC1911EB3DB7AA4592B9994AA3C3D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number:          070C
Signing time:             Fri 13 Jun 2025 10:00:46 +0000
Manifest this update:     Fri 13 Jun 2025 10:00:46 +0000
Manifest next update:     Sat 14 Jun 2025 10:00:46 +0000
Files and hashes:         1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: t0MVNSJmeFUIXhzuuf/cSDyv8k1D2WQibGwWQJoEUnI=)
                          2: Jj1HHZ3M2IWqEVr2BMPp4ypDwcI.roa (hash: cgzJBvOGYHM0ug0D/FFBZa1jcNvWqnCErJy8L2Lko1U=)
                          3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:bc:19:11:eb:3d:b7:aa:45:92:b9:99:4a:a3:c3:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d7401e0249418b357547268824f6244925d8db39
        Validity
            Not Before: Jun 13 10:00:46 2025 GMT
            Not After : Jun 14 10:00:46 2025 GMT
        Subject: CN=b6bc485b666942059fff26c36a4af4ba0898ae8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:94:0f:b0:e1:f0:e6:96:6b:87:66:54:50:3a:
                    5b:20:ce:e0:c4:00:f8:1f:47:31:98:37:01:ca:d6:
                    07:ad:64:62:94:b5:be:fb:3a:9e:26:5c:ca:e2:74:
                    1c:fe:df:c6:b7:c3:9f:a3:d8:7e:4d:49:9b:21:56:
                    b6:64:53:ac:d3:ea:15:74:93:16:2d:d4:8d:0c:5a:
                    d4:45:68:3a:65:a4:10:e3:f3:12:93:0e:df:1a:ea:
                    3d:e5:e0:1b:80:53:62:69:3b:4b:12:fb:55:41:44:
                    59:1e:56:53:ea:a8:7a:22:43:a4:d6:8f:79:e8:fc:
                    c8:fa:f5:30:5b:69:a7:85:ec:d5:73:c8:b6:0d:94:
                    e3:69:cb:e5:5b:bd:80:f8:ef:4e:66:b3:cf:c9:dc:
                    1a:a0:e6:91:7b:6c:26:92:76:c6:c8:e2:d6:96:99:
                    e4:68:0e:68:3f:91:36:2a:86:9a:24:0b:54:57:77:
                    9b:bf:1c:c6:4a:b3:32:11:69:61:20:7a:87:07:da:
                    8a:cb:7c:e2:a6:f4:6c:78:91:ee:73:bb:01:85:85:
                    3f:d0:2c:f2:a1:95:d8:48:1c:24:6a:4d:8b:e9:50:
                    94:b2:19:ab:ee:b1:50:9b:9f:4a:23:48:73:30:10:
                    ca:19:41:80:04:d7:d2:49:f4:e2:58:fc:44:46:17:
                    3f:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:BC:48:5B:66:69:42:05:9F:FF:26:C3:6A:4A:F4:BA:08:98:AE:8E
            X509v3 Authority Key Identifier:
                keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:9b:e8:64:e1:da:cb:69:d1:45:b2:6b:a6:cc:ac:00:73:ae:
         51:b4:84:07:46:90:38:86:b5:77:56:de:64:45:bb:fb:82:be:
         04:30:dc:f2:b7:62:20:ad:d7:a1:70:0d:a8:48:b3:23:0e:bc:
         3f:2a:00:69:c4:de:74:7c:59:d9:ba:55:f4:5a:f3:33:49:1d:
         de:6f:54:f9:fa:42:7d:ef:d7:a3:5e:21:b4:d1:38:6f:56:2e:
         b2:e8:f1:b5:47:b5:b4:23:90:cf:ab:76:62:4a:98:3b:58:fd:
         72:86:35:b6:09:64:fa:56:84:b4:19:8a:78:70:b2:ff:d5:74:
         b0:4c:32:b8:d5:ec:dc:ef:4e:3a:b0:f0:e5:97:36:7b:3b:78:
         75:cb:b4:0f:d5:13:fc:a0:bd:93:4d:61:e2:4b:f7:40:48:bf:
         a9:95:20:3f:2a:af:2e:16:56:4f:f2:f9:5d:1c:fe:b9:2d:f3:
         eb:71:a7:31:36:83:2e:28:34:2e:e2:37:3c:b2:98:87:ae:d3:
         7c:ca:bd:9e:4d:1a:04:98:a3:3a:d7:6d:fe:4c:94:9c:c1:a8:
         6c:20:f2:3b:18:32:66:6f:4a:9d:0f:80:75:51:b1:3c:af:f1:
         9f:cc:74:35:13:96:fd:27:f2:d2:9d:45:13:d3:41:33:9f:da:
         aa:f8:0d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:53:24 2025 by rpki-client