Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File:                     A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier:          yv+6Is1Lr+W7B4/JvHljAqSighN1eGY9teuBStUz0tk=
Subject key identifier:   0B:73:3E:3C:A3:5D:75:F0:4B:39:3C:8B:99:F1:F2:71:97:C2:79:1E
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer:       /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial:       0197688540B109C9C1BA4C573F8BE89C6016
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number:          06FE
Signing time:             Fri 13 Jun 2025 09:00:52 +0000
Manifest this update:     Fri 13 Jun 2025 09:00:52 +0000
Manifest next update:     Sat 14 Jun 2025 09:00:52 +0000
Files and hashes:         1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
                          2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: TvOhXf7gkEUazA0TvFnotIeSS8N2FIaSnSQtwH2C3Wo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:85:40:b1:09:c9:c1:ba:4c:57:3f:8b:e8:9c:60:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
        Validity
            Not Before: Jun 13 09:00:52 2025 GMT
            Not After : Jun 14 09:00:52 2025 GMT
        Subject: CN=0b733e3ca35d75f04b393c8b99f1f27197c2791e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:8c:bb:6e:e0:9f:0a:58:b5:d4:77:18:c1:3f:
                    61:4d:7d:64:88:f4:bb:6d:b9:31:19:f6:1a:60:47:
                    97:f0:52:5b:c6:28:51:72:73:ae:d9:67:40:b5:d5:
                    45:4d:fb:b4:ba:9c:f8:3a:27:e9:db:7c:0b:9f:fc:
                    8b:77:78:86:ad:0e:a7:80:e0:b6:4c:f6:17:ef:6f:
                    65:47:71:81:19:c8:74:60:f3:64:eb:66:1c:18:db:
                    fe:af:f4:ad:8d:00:00:05:5d:21:84:ad:b0:a8:23:
                    87:4c:45:10:e3:b7:44:92:05:79:b0:4d:f8:c7:02:
                    75:18:c5:c8:2a:f7:18:c5:63:f9:c8:40:e6:e3:58:
                    e9:3d:a4:1f:30:06:52:cd:97:ba:35:45:3f:1a:a6:
                    b4:58:05:75:1c:ea:de:ff:7d:63:11:93:2e:5f:2a:
                    23:1b:ee:92:87:10:dc:eb:1e:ef:b0:bf:5d:f4:8a:
                    2b:3b:25:c0:90:af:6e:98:84:96:2c:de:a0:b9:16:
                    04:58:fb:0d:a8:af:bc:52:cf:a0:67:ca:f7:8c:ea:
                    13:dc:a3:d0:ef:43:06:91:9e:94:74:e1:57:64:a8:
                    b0:55:3a:10:21:41:c7:7a:77:69:36:4e:5c:34:ce:
                    58:49:51:7d:4e:e5:5f:67:07:83:34:5c:38:99:4d:
                    b5:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:73:3E:3C:A3:5D:75:F0:4B:39:3C:8B:99:F1:F2:71:97:C2:79:1E
            X509v3 Authority Key Identifier:
                keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:e4:72:cd:f3:06:8d:c6:08:63:83:82:47:ba:50:68:eb:aa:
         a3:f3:8c:67:ca:ed:1a:b9:ee:66:68:fa:24:9e:4d:87:46:2d:
         54:8a:b8:64:82:93:43:15:d5:e7:6a:cc:1c:d1:89:09:c3:f5:
         be:0a:51:ee:5e:2e:2e:0c:56:6f:6b:f2:84:fb:e6:95:82:cf:
         82:57:65:b0:85:2b:f0:1e:6b:6a:fb:45:81:b4:fa:8a:07:1e:
         45:35:08:90:67:47:c7:aa:e6:ea:28:5b:da:9c:e8:ed:19:67:
         f0:e7:a6:7d:50:04:f8:a5:bd:86:8e:fe:60:5b:3f:54:dd:51:
         bb:71:38:1f:86:27:5a:c2:61:4c:e1:ab:44:95:6a:20:ee:c8:
         17:ed:cc:0a:67:e0:15:ea:f1:c6:32:29:eb:5d:b4:fe:4c:eb:
         57:7a:49:5e:b3:ad:d4:2e:d0:0b:26:22:06:e1:a9:f9:09:26:
         ee:6a:aa:52:34:a1:3d:22:c7:23:75:1c:26:7e:7b:0e:7f:d7:
         1f:02:12:b6:b9:94:39:b5:e3:e4:41:48:22:ef:cd:fc:ed:9d:
         d8:69:61:30:ea:a8:61:72:c5:ec:66:a0:2f:7e:7c:89:a1:b1:
         fe:54:03:42:97:4f:b3:0c:7c:40:72:90:9d:81:ff:cf:33:0e:
         75:b1:1f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:47:43 2025 by rpki-client