Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File:                     WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier:          Brlj7AVLoa1NM9K7HebEAnYH9zkB6bQYq4iQqa2Ryuw=
Subject key identifier:   50:94:D8:33:27:9C:18:89:FD:4D:35:44:A3:BB:AD:D9:65:A6:C2:FD
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer:       /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial:       01976327CE6D6F48043BE76FB7B5544C1C53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number:          0AD8
Signing time:             Thu 12 Jun 2025 08:00:42 +0000
Manifest this update:     Thu 12 Jun 2025 08:00:42 +0000
Manifest next update:     Fri 13 Jun 2025 08:00:42 +0000
Files and hashes:         1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: 7G9y3HGHfgQ0nKHNUayyxJ01bOXTXlXNYgAKirL5Yms=)
                          2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 08:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:27:ce:6d:6f:48:04:3b:e7:6f:b7:b5:54:4c:1c:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
        Validity
            Not Before: Jun 12 08:00:42 2025 GMT
            Not After : Jun 13 08:00:42 2025 GMT
        Subject: CN=5094d833279c1889fd4d3544a3bbadd965a6c2fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:35:f9:89:ce:39:7f:71:25:61:f2:d8:fb:ee:
                    c8:39:f0:0c:f5:a7:4c:70:2f:90:c5:ac:50:6e:17:
                    02:aa:05:e2:07:be:82:e6:96:34:96:d3:05:ce:01:
                    1b:83:ee:f1:d0:4a:db:5f:44:fb:0b:fc:20:2e:92:
                    b0:89:f4:5d:8d:c0:76:34:6c:73:39:d0:9a:3c:a0:
                    10:95:71:6a:df:cf:5d:f3:a3:85:1d:60:ab:c9:e5:
                    d5:66:ce:8e:82:a8:1b:f7:d7:b1:35:fc:09:86:55:
                    36:39:a0:c4:90:13:1c:e6:39:2d:a2:5b:49:be:f6:
                    3e:1e:d6:37:68:a0:69:34:cc:b3:ea:5a:40:81:71:
                    c8:f9:fb:7e:6b:39:45:8c:1b:a3:97:93:fe:1d:b1:
                    a9:cc:fc:e5:b1:95:e6:c1:e9:b6:69:1d:5f:03:32:
                    db:00:b0:81:c2:4c:4d:7f:eb:6f:3e:c1:6f:79:15:
                    fa:5c:8a:be:55:54:93:08:a8:a2:be:7c:75:ae:e2:
                    63:cf:e0:ad:0a:46:fc:fb:f2:6b:0a:e8:9b:52:b3:
                    26:05:cd:00:90:cc:03:00:87:8b:c4:99:30:9d:b2:
                    ba:b0:db:75:d5:0a:58:6a:51:e5:00:c8:b6:c4:eb:
                    21:d0:b7:d0:53:af:8e:d6:40:e2:0c:aa:cb:8c:62:
                    89:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:94:D8:33:27:9C:18:89:FD:4D:35:44:A3:BB:AD:D9:65:A6:C2:FD
            X509v3 Authority Key Identifier:
                keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:1b:a1:c4:db:e3:6f:f7:5f:87:63:93:94:a6:aa:db:45:0f:
         29:b1:69:23:bc:bb:dc:60:11:11:5f:67:85:94:78:81:28:79:
         8c:01:ab:97:c4:59:28:0d:37:5d:4d:b5:50:e3:fa:43:b0:9f:
         79:34:a7:27:21:04:9e:22:a7:4e:20:a1:f6:e2:07:9f:ff:5b:
         9c:f9:41:66:51:b9:fb:09:63:8d:29:33:78:b9:ad:7e:e7:f6:
         4d:52:d0:93:93:1a:05:bb:3e:ca:8d:a4:bb:90:54:92:dd:70:
         fe:57:41:00:35:3d:25:51:8d:15:47:7f:ad:a8:ee:67:c0:33:
         8d:87:df:67:a4:5c:0a:07:20:3e:2d:b4:7b:c7:d2:6a:fd:39:
         c4:13:83:99:b1:7b:c0:99:90:ad:53:15:37:3e:c9:19:1c:ba:
         e8:34:4b:16:eb:75:68:f7:ed:a0:47:66:9c:ae:0e:10:03:57:
         cc:22:62:8c:f0:78:13:b1:12:2b:75:d0:a9:3b:ac:0d:3e:06:
         44:e8:1c:35:da:c9:ee:9c:e3:46:7c:1c:33:f1:f3:b7:db:e6:
         ba:db:6a:b6:d0:fa:16:cf:cd:b1:2b:94:0d:3c:a7:8d:5b:7d:
         05:82:34:57:e9:66:6d:0d:f4:62:94:37:e8:f2:dd:0f:37:0b:
         4f:6d:8b:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdjJ85tb0gEO+dvt7VUTBxTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YTc2M2YwYzQ2N2FiYWE3MDFkOTY4YzM3NDljNmRhZDAz
NDg5YjAwHhcNMjUwNjEyMDgwMDQyWhcNMjUwNjEzMDgwMDQyWjAzMTEwLwYDVQQD
Eyg1MDk0ZDgzMzI3OWMxODg5ZmQ0ZDM1NDRhM2JiYWRkOTY1YTZjMmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjX5ic45f3ElYfLY++7IOfAM9adM
cC+QxaxQbhcCqgXiB76C5pY0ltMFzgEbg+7x0ErbX0T7C/wgLpKwifRdjcB2NGxz
OdCaPKAQlXFq389d86OFHWCryeXVZs6Ogqgb99exNfwJhlU2OaDEkBMc5jktoltJ
vvY+HtY3aKBpNMyz6lpAgXHI+ft+azlFjBujl5P+HbGpzPzlsZXmwem2aR1fAzLb
ALCBwkxNf+tvPsFveRX6XIq+VVSTCKiivnx1ruJjz+CtCkb8+/JrCuibUrMmBc0A
kMwDAIeLxJkwnbK6sNt11QpYalHlAMi2xOsh0LfQU6+O1kDiDKrLjGKJIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFCU2DMnnBiJ/U01RKO7rdllpsL9MB8GA1UdIwQY
MBaAFFinY/DEZ6uqcB2WjDdJxtrQNImwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81ZDY0OTEtMDhmZi00OTRkLTg0MzMt
MDk4ZjdjNWZkOTc1LzEvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC81ZDY0OTEtMDhmZi00OTRkLTg0MzMtMDk4ZjdjNWZkOTc1
LzEvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbRuhxNvj
b/dfh2OTlKaq20UPKbFpI7y73GAREV9nhZR4gSh5jAGrl8RZKA03XU21UOP6Q7Cf
eTSnJyEEniKnTiCh9uIHn/9bnPlBZlG5+wljjSkzeLmtfuf2TVLQk5MaBbs+yo2k
u5BUkt1w/ldBADU9JVGNFUd/rajuZ8AzjYffZ6RcCgcgPi20e8fSav05xBODmbF7
wJmQrVMVNz7JGRy66DRLFut1aPftoEdmnK4OEANXzCJijPB4E7ESK3XQqTusDT4G
ROgcNdrJ7pzjRnwcM/Hzt9vmuttqttD6Fs/NsSuUDTynjVt9BYI0V+lmbQ30YpQ3
6PLdDzcLT22LrA==
-----END CERTIFICATE-----
Generated at Thu Jun 12 11:42:09 2025 by rpki-client