Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File:                     sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier:          LX4Z2wcIw4m5p5EzGqlgoJ9YqeN96caoKEzmqUtp13g=
Subject key identifier:   BF:7A:3E:E3:03:73:06:17:88:AE:69:1C:08:68:35:62:A2:C2:FA:E7
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer:       /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial:       019768F2C0E5CE770418142ACF78CE87FAF9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number:          0FEB
Signing time:             Fri 13 Jun 2025 11:00:28 +0000
Manifest this update:     Fri 13 Jun 2025 11:00:28 +0000
Manifest next update:     Sat 14 Jun 2025 11:00:28 +0000
Files and hashes:         1: 89qbXuP3JJGKzWaNZO3dqnt1pdw.roa (hash: obr33L2CB/OVnTXprqPZCOQ9LeK6vQA821ilRu8qFT0=)
                          2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: ImyOis8dJLeof6Lkt65/ZbMjvseT0Y9651PSiXv88r8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:f2:c0:e5:ce:77:04:18:14:2a:cf:78:ce:87:fa:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
        Validity
            Not Before: Jun 13 11:00:28 2025 GMT
            Not After : Jun 14 11:00:28 2025 GMT
        Subject: CN=bf7a3ee30373061788ae691c08683562a2c2fae7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:9b:75:cd:cd:df:78:66:43:d3:23:87:9f:80:
                    f9:c7:1b:a1:d2:7d:b3:d0:e1:4c:f4:ec:15:a2:90:
                    40:a9:59:57:3a:45:5f:d3:c8:ad:2f:c5:6e:b4:37:
                    c5:35:f7:8a:46:c3:75:d6:cf:a8:21:a6:08:72:5e:
                    91:7e:32:d5:31:cb:b0:b1:80:a9:e4:6a:79:9e:81:
                    ab:30:e6:ea:9b:bd:16:06:64:fa:1e:03:34:a7:69:
                    c2:ae:46:ba:1d:b3:0e:d9:ac:02:3a:9d:4b:bc:ad:
                    1c:b8:b7:94:f8:d3:a0:ea:98:62:d8:8f:f3:b3:8d:
                    54:97:5d:f4:9d:b3:28:19:29:eb:ae:6b:82:d6:05:
                    47:47:ee:05:3b:4d:e7:c5:2d:04:27:f4:87:fb:19:
                    1e:9c:45:58:f9:d0:be:77:fd:c8:d3:d1:3c:8a:24:
                    7a:61:70:9d:23:40:a3:4d:d9:e9:cd:2e:7b:25:c3:
                    b3:9f:25:91:f9:81:aa:07:a6:39:bd:11:50:e8:23:
                    4c:e6:e3:2b:11:4c:9f:a8:b7:b7:7c:61:0b:69:52:
                    d4:ea:0f:28:76:f3:97:0f:8b:30:52:a6:85:99:d4:
                    8c:d9:a8:3f:be:0b:a9:f4:35:04:de:5b:00:63:69:
                    cd:2c:ef:88:e3:8f:8e:39:9b:05:41:d9:06:50:15:
                    ee:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:7A:3E:E3:03:73:06:17:88:AE:69:1C:08:68:35:62:A2:C2:FA:E7
            X509v3 Authority Key Identifier:
                keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:5d:45:6c:a2:15:c3:c7:e1:24:92:10:24:8b:ec:20:96:57:
         35:f9:52:8c:cf:b8:57:cd:90:7b:f2:f1:c9:c6:1c:74:8f:44:
         2e:24:17:6d:68:2a:b7:dd:47:68:74:a9:f1:8d:78:0f:0d:b7:
         1f:a5:c1:1d:18:1c:b2:22:22:1b:64:db:d9:9b:a1:30:c7:5d:
         0f:3f:93:7f:4f:40:3f:a5:4e:3e:bd:5b:dc:2a:75:43:53:87:
         2b:8b:74:04:f1:3f:fa:08:b3:22:13:c7:50:52:88:04:f6:28:
         3c:ff:58:85:25:29:2d:52:e2:e2:d5:fb:53:c7:47:51:0a:cc:
         8a:0a:75:83:74:a4:18:1b:b3:ed:a3:b7:b6:ed:ae:29:80:08:
         d1:14:04:1e:e0:ed:2f:25:0f:bf:58:26:94:bd:d4:59:96:47:
         82:82:b0:9b:6b:41:d0:f7:d9:ba:f5:63:c3:6a:8a:5e:aa:c5:
         94:86:62:b4:5a:dd:6b:73:2c:e0:8e:16:0d:c5:b5:a5:5a:99:
         97:79:13:69:f7:29:8b:01:97:08:2e:01:9b:35:84:c0:28:ee:
         6f:a1:02:58:05:98:d8:32:66:15:fe:a7:54:c2:88:ae:64:bf:
         42:d4:cb:b1:c2:22:a1:4d:26:7d:82:14:30:ac:91:bb:99:7c:
         1b:96:91:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:45:57 2025 by rpki-client