Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
File:                     Lr_2z7gya0RylaEbEHhoIS5mX90.mft (raw, json)
Hash identifier:          W9i1d+7q8/GzRGihrpM7ZbZLhfICC2mXSX0Z/5LZAco=
Subject key identifier:   12:6C:2D:57:40:F3:3C:A9:68:1F:E7:DD:DE:68:09:5C:6A:EC:2C:DC
Authority key identifier: 2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD
Certificate issuer:       /CN=2ebff6cfb8326b447295a11b107868212e665fdd
Certificate serial:       01976C2ABA6659DB4A9C039939DD6FB1BB41
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
Manifest number:          066E
Signing time:             Sat 14 Jun 2025 02:00:28 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:28 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:28 +0000
Files and hashes:         1: 2EHY0ANqI6GjPJ3q8F_H43sabIk.roa (hash: 6KKbNu6n/lBjRM28xxVSQgucF7edE6uzeJUy5fL1Psg=)
                          2: Lr_2z7gya0RylaEbEHhoIS5mX90.crl (hash: Y5vcCy9PMr9BydeQscxPl5YvUu2ZtdujwypXN8kRiUY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2a:ba:66:59:db:4a:9c:03:99:39:dd:6f:b1:bb:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2ebff6cfb8326b447295a11b107868212e665fdd
        Validity
            Not Before: Jun 14 02:00:28 2025 GMT
            Not After : Jun 15 02:00:28 2025 GMT
        Subject: CN=126c2d5740f33ca9681fe7ddde68095c6aec2cdc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:ae:9b:00:82:c9:fb:1b:36:13:43:9e:d3:1c:
                    9c:ef:e7:fd:0e:31:3a:32:fd:18:cf:aa:59:6a:f4:
                    49:5e:79:65:d0:c3:65:22:5e:80:bc:9b:cd:34:30:
                    52:4e:5d:f0:f3:a2:ff:51:d1:ea:a9:f3:9b:91:54:
                    73:24:0c:c4:4e:20:90:dc:d8:16:b5:15:7c:95:73:
                    07:b3:96:56:d3:14:8c:a4:58:19:79:a5:9a:90:fe:
                    01:2a:9c:75:08:f9:bc:66:6a:ac:83:fb:5f:4d:6f:
                    37:92:a9:6f:b8:cc:d4:6a:4e:2a:d8:be:a0:12:57:
                    0f:d2:b2:c9:79:d7:5a:12:03:5f:af:38:c5:f0:34:
                    cf:b9:00:15:2b:d5:2f:22:99:5e:bc:9f:20:68:dd:
                    fe:7d:27:92:09:55:33:8c:ed:68:62:ec:65:85:52:
                    6a:e9:6f:1e:e2:c5:4e:37:92:2f:02:3e:08:82:e6:
                    f9:17:d0:58:44:03:f8:89:e1:ff:9e:f4:d1:d9:2b:
                    fb:8e:f8:ae:58:a7:1f:2f:14:ff:f5:19:3c:a3:e6:
                    4c:1a:ba:36:4a:1d:e7:63:7e:63:2b:16:8a:2d:93:
                    82:62:27:67:58:f9:8b:16:11:ee:f0:1a:bf:47:2d:
                    d0:8d:67:f2:d3:88:11:92:ce:12:3c:9a:07:5e:ff:
                    31:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:6C:2D:57:40:F3:3C:A9:68:1F:E7:DD:DE:68:09:5C:6A:EC:2C:DC
            X509v3 Authority Key Identifier:
                keyid:2E:BF:F6:CF:B8:32:6B:44:72:95:A1:1B:10:78:68:21:2E:66:5F:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lr_2z7gya0RylaEbEHhoIS5mX90.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2dafbc-52ee-4c7b-b006-a786cebe20d3/1/Lr_2z7gya0RylaEbEHhoIS5mX90.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:9f:6d:d0:69:f4:8a:1f:df:d8:ae:f5:ab:37:b4:7b:01:d9:
         32:dd:4d:66:ce:f6:e5:21:f9:00:06:a2:52:ee:ba:d6:68:6a:
         da:47:25:12:d2:64:44:0d:78:cc:9c:c2:ea:b2:c5:21:45:0f:
         96:d2:81:b2:7c:e2:50:f5:88:48:67:5d:f5:7e:34:3c:bb:64:
         63:c5:ca:c3:9a:17:d8:1f:d6:ff:25:03:bd:79:93:7e:12:6b:
         28:3c:8a:39:a8:3e:f0:35:25:0f:72:4b:53:cb:4b:f1:92:e5:
         df:70:c3:2b:4e:2a:ca:d9:ee:d9:26:ba:59:84:0e:45:e3:68:
         56:83:3f:00:43:da:47:69:14:38:a0:73:13:08:25:8f:c5:8f:
         26:c4:a7:19:e3:5e:a6:d9:26:73:aa:e8:d2:c4:d3:4c:a1:af:
         0c:bd:3e:c2:6d:5d:34:00:c7:7d:df:4e:76:78:3d:a7:75:f0:
         ed:32:cd:7d:d2:2c:a2:fc:ea:f1:ec:16:e9:b9:63:58:11:e8:
         9e:79:86:b4:b9:05:67:7f:53:de:d5:c5:19:3e:ee:b4:85:0c:
         85:e7:85:de:cf:44:2e:e7:23:1a:21:bb:cc:2e:b9:0c:af:eb:
         fa:9f:c6:7b:ac:44:1a:c0:42:9d:32:8f:ea:94:d3:e1:2f:16:
         30:ed:4d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:56:19 2025 by rpki-client