Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File:                     10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier:          LL+EgO9dw3ixtizQ/WVl5doatTaSx9KnG8AJ4znF38I=
Subject key identifier:   E3:57:29:55:07:C7:69:27:9D:C0:19:C7:F5:EB:6E:4C:24:1B:61:42
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer:       /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial:       01975F142A52E39F5DD0DEFF6B0360E6012E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number:          0707
Signing time:             Wed 11 Jun 2025 13:00:46 +0000
Manifest this update:     Wed 11 Jun 2025 13:00:46 +0000
Manifest next update:     Thu 12 Jun 2025 13:00:46 +0000
Files and hashes:         1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: svqO05+q7eWeZxynm/6KT4Jp7tV6tDNGjkl9Z9k3EUw=)
                          2: Jj1HHZ3M2IWqEVr2BMPp4ypDwcI.roa (hash: cgzJBvOGYHM0ug0D/FFBZa1jcNvWqnCErJy8L2Lko1U=)
                          3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 13:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:14:2a:52:e3:9f:5d:d0:de:ff:6b:03:60:e6:01:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d7401e0249418b357547268824f6244925d8db39
        Validity
            Not Before: Jun 11 13:00:46 2025 GMT
            Not After : Jun 12 13:00:46 2025 GMT
        Subject: CN=e357295507c769279dc019c7f5eb6e4c241b6142
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:28:29:c3:4e:22:fd:75:d6:3d:ff:d7:c7:7e:
                    fe:e1:38:44:56:56:09:15:9f:df:63:11:69:e4:f8:
                    26:8f:d1:86:53:09:13:c9:aa:dd:01:fb:6c:53:40:
                    2f:5f:67:d6:e3:b1:6c:91:0c:40:f1:38:66:be:60:
                    0f:27:9d:24:a8:ee:73:fa:7d:da:2e:d4:32:cc:b3:
                    8b:84:19:cd:0d:8a:30:73:72:af:44:c7:1b:d8:ef:
                    c0:ee:ce:7e:27:cd:6e:9a:ca:da:80:12:30:9c:1e:
                    f3:a5:70:06:3a:dd:90:40:80:db:ec:1f:af:b1:69:
                    88:34:d3:73:92:60:13:b6:f8:d0:8d:94:db:f3:43:
                    11:65:0c:6e:d1:1e:99:3c:81:b6:03:53:ff:42:3a:
                    fe:9f:82:65:a0:21:50:81:e4:4d:35:66:50:10:e6:
                    19:30:38:db:b6:81:0a:8d:e9:90:14:9b:46:f0:73:
                    f2:e7:a6:be:fc:f3:cf:a6:d3:dd:6d:4e:b4:3b:cf:
                    28:65:44:7f:40:86:c2:50:5c:35:96:bb:0e:06:64:
                    eb:67:63:d2:3b:7f:a5:64:e6:2d:8c:04:00:bb:30:
                    ae:48:d8:6d:08:d8:20:f0:a3:30:e4:1b:9c:23:a7:
                    5c:75:e5:05:eb:6b:a9:79:2b:bd:0d:20:5f:4a:14:
                    20:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:57:29:55:07:C7:69:27:9D:C0:19:C7:F5:EB:6E:4C:24:1B:61:42
            X509v3 Authority Key Identifier:
                keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:5b:3c:41:6e:0d:d8:e4:ef:9a:35:89:85:d1:c9:20:8b:f0:
         c3:81:f5:f0:5f:43:d2:cc:9f:9c:31:d6:f0:58:07:25:0f:19:
         75:19:6e:f1:1a:e7:04:97:f9:21:0e:cc:4a:bf:65:c1:f7:eb:
         1d:6b:55:c2:83:ec:bc:6b:df:15:3f:20:78:ea:22:15:9d:de:
         9c:51:32:fa:9f:13:53:3e:8a:14:32:9e:2a:82:98:f4:32:2f:
         5c:c4:8f:77:d3:4d:a9:03:4c:2e:b7:0e:79:b3:36:14:20:29:
         8e:5a:50:93:c2:f0:43:35:ad:ed:85:9e:02:c2:16:b2:1f:b3:
         a7:87:92:4b:70:a0:85:ed:07:3a:b4:4c:a7:43:be:3f:25:58:
         f8:8c:ce:d5:ae:3a:95:80:fe:09:e5:3e:58:2a:05:b8:87:e0:
         c3:e8:67:37:ab:9c:0e:80:c9:7b:e4:0f:80:da:04:7d:08:e7:
         55:81:67:ee:5c:21:00:47:ec:4f:a2:90:54:7e:55:0c:62:bc:
         bb:14:01:3e:92:e3:a7:a3:8b:46:7c:72:f1:37:25:16:ee:0d:
         36:09:4c:7c:03:8e:f7:7d:d4:87:21:ab:ed:09:bf:75:df:39:
         2b:24:ba:c7:01:af:14:a6:7a:8f:39:bf:6b:62:f0:2f:2c:5f:
         80:aa:47:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdfFCpS459d0N7/awNg5gEuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDAxZTAyNDk0MThiMzU3NTQ3MjY4ODI0ZjYyNDQ5MjVk
OGRiMzkwHhcNMjUwNjExMTMwMDQ2WhcNMjUwNjEyMTMwMDQ2WjAzMTEwLwYDVQQD
EyhlMzU3Mjk1NTA3Yzc2OTI3OWRjMDE5YzdmNWViNmU0YzI0MWI2MTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSgpw04i/XXWPf/Xx37+4ThEVlYJ
FZ/fYxFp5Pgmj9GGUwkTyardAftsU0AvX2fW47FskQxA8ThmvmAPJ50kqO5z+n3a
LtQyzLOLhBnNDYowc3KvRMcb2O/A7s5+J81umsragBIwnB7zpXAGOt2QQIDb7B+v
sWmINNNzkmATtvjQjZTb80MRZQxu0R6ZPIG2A1P/Qjr+n4JloCFQgeRNNWZQEOYZ
MDjbtoEKjemQFJtG8HPy56a+/PPPptPdbU60O88oZUR/QIbCUFw1lrsOBmTrZ2PS
O3+lZOYtjAQAuzCuSNhtCNgg8KMw5BucI6dcdeUF62upeSu9DSBfShQgpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONXKVUHx2knncAZx/XrbkwkG2FCMB8GA1UdIwQY
MBaAFNdAHgJJQYs1dUcmiCT2JEkl2Ns5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjIt
NTA3ODkxMzk1NDE3LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjItNTA3ODkxMzk1NDE3
LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMFs8QW4N
2OTvmjWJhdHJIIvww4H18F9D0syfnDHW8FgHJQ8ZdRlu8RrnBJf5IQ7MSr9lwffr
HWtVwoPsvGvfFT8geOoiFZ3enFEy+p8TUz6KFDKeKoKY9DIvXMSPd9NNqQNMLrcO
ebM2FCApjlpQk8LwQzWt7YWeAsIWsh+zp4eSS3Cghe0HOrRMp0O+PyVY+IzO1a46
lYD+CeU+WCoFuIfgw+hnN6ucDoDJe+QPgNoEfQjnVYFn7lwhAEfsT6KQVH5VDGK8
uxQBPpLjp6OLRnxy8TclFu4NNglMfAOO933UhyGr7Qm/dd85KyS6xwGvFKZ6jzm/
a2LwLyxfgKpHCA==
-----END CERTIFICATE-----
Generated at Wed Jun 11 20:41:21 2025 by rpki-client