Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File:                     paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier:          j7Gm91KrfU0zP0/dbmLXryaKrxk6ghecJLRaXUB/ELI=
Subject key identifier:   DE:B1:EA:5B:6A:97:C1:FA:9B:E0:0B:01:3B:DF:27:48:B8:BC:48:D4
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer:       /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial:       01975B6E6BEE8848C9C6838135A08FEDD51C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number:          066E
Signing time:             Tue 10 Jun 2025 20:00:52 +0000
Manifest this update:     Tue 10 Jun 2025 20:00:52 +0000
Manifest next update:     Wed 11 Jun 2025 20:00:52 +0000
Files and hashes:         1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
                          2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: jrP9ipfcuT/a+NPayyjvHBnLA79C5wR233pgKJGhOFg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:6e:6b:ee:88:48:c9:c6:83:81:35:a0:8f:ed:d5:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
        Validity
            Not Before: Jun 10 20:00:52 2025 GMT
            Not After : Jun 11 20:00:52 2025 GMT
        Subject: CN=deb1ea5b6a97c1fa9be00b013bdf2748b8bc48d4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:83:1f:4f:e0:e3:7a:7d:38:cf:ff:d2:14:94:
                    e5:f0:a2:d7:91:7a:cc:d4:1f:b8:1c:06:3e:db:62:
                    8a:2b:ed:da:f6:be:db:99:6e:ee:fc:32:95:27:c9:
                    7f:21:4e:d0:56:9f:a8:7d:58:59:93:0e:01:e1:d2:
                    96:20:ba:34:23:5a:1a:0d:8d:0a:ae:f8:6f:e3:da:
                    35:57:3b:32:18:c8:ae:e3:19:1d:31:f9:c2:2b:fd:
                    97:d5:87:a1:c5:d4:64:96:44:54:97:02:c2:0b:9d:
                    97:6e:5d:a7:fa:5a:86:84:9e:9c:a1:ee:fa:40:18:
                    7f:ee:e5:8c:70:0f:a3:d2:d5:3d:eb:a8:c5:b0:c9:
                    f7:25:5e:6a:0c:a2:5d:fa:1d:06:68:25:fe:d7:f5:
                    df:b2:06:52:e5:b6:14:d9:40:f9:bc:94:64:59:be:
                    f2:dd:d2:81:7b:5b:36:51:98:4f:fa:da:7e:14:0d:
                    3e:d5:4c:32:22:13:d4:e8:69:39:f7:d3:f9:b3:69:
                    6d:6e:0f:05:68:f3:d0:9d:45:24:d5:5a:95:d5:73:
                    25:29:04:fb:af:7b:34:d1:b8:8d:99:6e:46:1c:e2:
                    6f:c4:cf:73:d0:2a:46:41:06:89:c1:1f:ba:6d:0e:
                    10:c6:e7:86:6b:bc:bc:25:6a:5e:5c:70:3e:88:5b:
                    52:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:B1:EA:5B:6A:97:C1:FA:9B:E0:0B:01:3B:DF:27:48:B8:BC:48:D4
            X509v3 Authority Key Identifier:
                keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:ac:3c:6d:8b:c1:e1:fb:26:f9:3b:53:72:0b:ec:91:3c:8a:
         ee:4a:15:22:23:68:7e:d0:85:d0:0f:5e:12:60:be:0a:a8:40:
         cf:95:bb:5b:50:5c:1b:3d:37:e1:bd:94:a7:d5:d9:35:3a:94:
         a4:d2:82:b7:1c:b0:71:86:07:42:50:29:7b:88:28:72:1d:e2:
         c5:a4:10:70:4a:5e:30:9d:53:f8:26:0e:66:1a:14:44:48:3f:
         77:83:82:8f:35:56:6c:67:7d:57:ec:19:36:33:86:34:de:b5:
         4c:3f:35:8c:be:02:43:88:66:fb:29:bf:21:37:15:a1:ee:d9:
         89:d4:b2:b9:0f:02:80:a7:f1:ad:dc:71:52:f8:c5:96:ee:42:
         3b:80:3e:51:77:6a:7f:e4:2d:de:19:80:e0:e9:f4:67:31:6a:
         70:66:80:10:9f:29:1f:57:df:e1:31:8b:56:a1:1b:f0:4e:48:
         dd:fe:85:c5:6e:1a:eb:ba:e5:67:74:aa:37:6e:a8:ec:e7:30:
         88:e7:99:c3:33:f2:97:21:9e:1e:da:45:f0:46:37:36:27:f5:
         fe:61:4d:7d:8d:da:62:0d:1f:ab:a4:7b:8e:a1:af:82:21:17:
         a3:dc:c2:56:2e:08:4e:10:9c:68:0a:ed:3f:ab:3b:50:22:cd:
         e6:6c:d5:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 02:42:09 2025 by rpki-client