Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File:                     paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier:          Olsxw4S7j4da0sY/og7YHRwaLm4Ao0SZIBDZXBVqWBg=
Subject key identifier:   9A:B6:65:4F:92:FF:DF:08:AC:08:7E:B3:56:0C:A7:C3:B5:DD:8E:B5
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer:       /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial:       01976515ECB789376F0C5148C9EBDCC7877F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number:          0673
Signing time:             Thu 12 Jun 2025 17:00:25 +0000
Manifest this update:     Thu 12 Jun 2025 17:00:25 +0000
Manifest next update:     Fri 13 Jun 2025 17:00:25 +0000
Files and hashes:         1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
                          2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: rjwy2oc696m0xVTK2LTZYmZbR2gV8jvzzR7mNer8RKg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 15:17:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:15:ec:b7:89:37:6f:0c:51:48:c9:eb:dc:c7:87:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
        Validity
            Not Before: Jun 12 17:00:25 2025 GMT
            Not After : Jun 13 17:00:25 2025 GMT
        Subject: CN=9ab6654f92ffdf08ac087eb3560ca7c3b5dd8eb5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:96:a1:63:05:c1:b8:78:3e:d9:7b:66:36:47:
                    a0:77:8d:11:b5:f4:28:e1:b6:13:d2:3d:39:4e:24:
                    f2:80:9e:7f:e8:0f:4d:99:49:36:93:43:f5:f6:2e:
                    4c:8a:dc:e0:e2:46:b2:03:39:76:5b:80:a0:45:cc:
                    68:29:e5:7f:42:0b:a1:bf:4a:65:d8:d1:88:0b:6c:
                    7e:fc:26:ea:66:2e:ee:eb:34:fb:f5:fd:ef:b4:9b:
                    36:92:1d:7b:40:39:42:a2:1a:08:37:f2:84:43:5c:
                    54:30:68:ae:1d:33:02:16:59:a9:f4:bc:c5:a2:ce:
                    ae:8d:58:55:4e:de:0b:4f:44:52:88:89:ea:b1:b8:
                    b6:8e:71:ef:de:eb:bb:10:8c:6d:13:24:06:5c:c8:
                    ef:2a:f9:5e:2e:3e:d0:eb:3c:6c:42:1e:98:64:ec:
                    e1:f4:c6:76:61:aa:32:27:a2:89:7e:ef:9c:dc:f5:
                    4b:aa:26:b2:df:3e:bf:a6:ea:4d:30:d4:bf:c3:08:
                    a8:a8:25:5b:15:0d:33:27:20:37:26:95:6d:61:9d:
                    d7:6e:a5:76:f9:e5:9f:b1:83:53:81:d2:d0:36:2d:
                    7c:ed:ee:df:eb:e8:d0:38:bd:32:d2:e3:de:9b:33:
                    a0:44:b4:9d:ec:38:70:c0:40:65:0c:f7:be:26:b8:
                    29:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:B6:65:4F:92:FF:DF:08:AC:08:7E:B3:56:0C:A7:C3:B5:DD:8E:B5
            X509v3 Authority Key Identifier:
                keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:f3:64:08:23:86:c3:db:80:74:f6:94:e6:a2:56:c6:4b:7a:
         f9:3d:85:3b:b7:43:62:62:60:b3:89:1a:78:86:04:88:ed:73:
         a6:ac:6b:55:68:69:f8:68:6f:13:2d:ea:b5:ef:13:37:22:5b:
         4f:2c:c3:1f:23:b8:a5:df:e5:1e:38:63:83:3c:94:ca:53:42:
         10:b1:11:f9:8c:91:fb:9c:85:4e:cb:d5:ce:b4:05:e6:3c:7a:
         77:eb:77:b3:d9:36:54:d7:a8:59:96:1b:6a:f6:7c:29:b9:e1:
         a0:5a:b6:0c:46:3e:f0:98:31:6b:c2:97:fe:2f:10:c1:78:61:
         10:99:1f:82:76:ff:75:fe:1a:4b:56:a2:5a:15:36:41:90:dc:
         1e:f2:40:f9:8e:92:f4:e5:9f:e6:d2:84:3a:cd:0f:39:3f:44:
         bf:2a:ac:bd:c5:a4:46:83:8d:da:45:f7:83:12:06:14:ba:93:
         4c:12:94:c2:96:e0:45:c7:a0:76:3a:c1:3f:d6:fd:2c:6e:94:
         de:d1:5e:ef:e4:ce:72:0b:3a:b2:95:82:74:f6:81:af:ff:d8:
         32:fc:91:e2:12:39:f7:8d:97:e1:02:db:6f:e3:de:2b:58:66:
         b0:77:96:b4:a7:79:ec:42:ae:80:ab:38:e3:7c:92:48:c0:ab:
         f6:02:e9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 23:48:06 2025 by rpki-client