Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File:                     A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier:          eQsqVl+pKddDlC0Oc/H3ufUckVrF3xx6zqr64ECxV0I=
Subject key identifier:   D2:56:A6:4E:77:54:2D:02:CA:41:21:25:72:F4:F9:E3:D7:A2:A8:EF
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer:       /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial:       01976C61DEFC3FB6D38657AFF1F4DD0C3A75
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number:          0700
Signing time:             Sat 14 Jun 2025 03:00:42 +0000
Manifest this update:     Sat 14 Jun 2025 03:00:42 +0000
Manifest next update:     Sun 15 Jun 2025 03:00:42 +0000
Files and hashes:         1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
                          2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: 6qcpRa6XJ2jcwFI6NYnY2DJcugx8dbHV3IeuwyOAyTs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:61:de:fc:3f:b6:d3:86:57:af:f1:f4:dd:0c:3a:75
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
        Validity
            Not Before: Jun 14 03:00:42 2025 GMT
            Not After : Jun 15 03:00:42 2025 GMT
        Subject: CN=d256a64e77542d02ca41212572f4f9e3d7a2a8ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:74:9b:c6:a7:a9:90:bb:1e:ae:86:be:57:cf:
                    19:92:33:cb:92:27:ce:40:3f:c8:07:c0:9f:f5:fe:
                    97:cf:69:65:cf:c6:da:26:e3:f5:94:78:51:4a:08:
                    1b:97:38:77:ef:84:2e:02:93:fd:5c:3c:b8:e5:64:
                    fc:dd:f4:eb:5a:47:3e:2c:1c:95:c8:ae:16:fb:12:
                    8c:a0:5b:05:e3:35:69:35:ec:5a:84:74:f8:6d:f6:
                    b1:73:df:4b:c9:cf:c1:f3:2c:d1:cf:07:ce:c9:9a:
                    d3:75:e6:ca:8c:ae:5b:fa:43:0a:14:a5:a5:cf:2f:
                    b8:8c:df:84:42:26:a3:77:20:27:14:e8:e5:65:e4:
                    3c:55:c2:fe:38:96:dd:a0:e2:d7:95:09:19:6b:b1:
                    d3:49:6e:d6:4f:3e:ec:51:a5:a2:63:f0:b0:90:81:
                    50:ae:a5:c3:82:cc:b0:51:bf:47:5d:77:8b:f0:c6:
                    25:34:a6:41:11:c3:f5:d6:53:53:2e:c5:5e:2d:99:
                    a4:21:b7:d8:49:45:c5:b4:1b:36:f5:4c:0b:f9:d4:
                    b8:7e:33:a6:26:7a:cb:21:cd:ae:e1:f0:d3:83:f2:
                    12:7a:32:32:48:ff:72:75:0a:00:4a:b0:3f:64:73:
                    d4:64:25:5e:e5:0a:fc:26:c2:1f:77:f0:f4:4c:d0:
                    0f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:56:A6:4E:77:54:2D:02:CA:41:21:25:72:F4:F9:E3:D7:A2:A8:EF
            X509v3 Authority Key Identifier:
                keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:a1:f9:cf:aa:9a:e7:6d:0b:38:8b:d4:6c:16:e1:0a:74:9b:
         dd:4b:13:72:ac:44:b4:f9:c4:b4:8e:b5:3e:1f:a5:a8:6d:ef:
         79:7b:94:a1:91:3c:35:ad:8c:16:f2:68:4f:e7:9d:23:fc:69:
         82:aa:60:c1:c3:2b:49:fb:0b:86:70:d8:61:04:c8:28:f1:fb:
         41:1a:e1:4e:92:9a:45:f4:9f:9c:85:b1:6d:dc:6e:8f:ec:1b:
         ed:89:15:4a:7a:ac:92:cd:c0:57:47:ce:9c:dc:8c:43:b3:8b:
         bc:e1:72:57:4e:ac:34:00:6d:bd:4b:86:9d:31:66:a7:0c:f9:
         80:07:cd:9e:76:ed:22:a8:bf:6e:d9:cf:a2:2f:1f:31:4d:df:
         fd:71:2e:11:b0:8d:c2:80:52:2c:e4:1a:f7:10:fb:d8:8d:5a:
         6a:f1:e5:a6:21:5f:c3:1b:15:70:75:d8:33:e4:b6:f7:8a:e9:
         70:4e:c3:85:32:91:90:00:e4:8d:99:d5:61:dd:be:4e:60:93:
         6b:3f:f5:59:85:81:86:d8:2a:70:74:b7:d1:5f:58:b9:73:6e:
         7e:6c:32:a0:83:b1:17:c5:af:b5:be:8a:49:5e:a4:20:ba:70:
         a7:3a:28:72:d0:57:e8:66:7f:ea:3f:46:ee:ff:5c:da:4e:ac:
         b4:54:68:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:40:27 2025 by rpki-client