Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File:                     Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier:          Tf+Dp48wmzLSBOMW+9TjPrm4qVYh1R87zkVpsnzkVYg=
Subject key identifier:   6C:7E:3C:F4:3E:B0:DC:80:47:B1:FC:0E:86:EF:85:0E:41:05:B1:BD
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer:       /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial:       0197E18B6B413399CDAE52D38D8DA3675AB8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number:          0E0D
Signing time:             Sun 06 Jul 2025 21:01:39 +0000
Manifest this update:     Sun 06 Jul 2025 21:01:39 +0000
Manifest next update:     Mon 07 Jul 2025 21:01:39 +0000
Files and hashes:         1: 1333qp73ruq7A2nSo9kOVQ7ZzE0.roa (hash: JX94IngnG5jgwt/Et193zGmN4IyvZ77gInsz4D23C18=)
                          2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=)
                          3: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=)
                          4: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=)
                          5: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=)
                          6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: WcwGs3fxIg3ci65wFPfjtjF2BalKBQQvbu7nnuxKR5A=)
                          7: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=)
                          8: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=)
                          9: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=)
                          10: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 07 Jul 2025 14:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:e1:8b:6b:41:33:99:cd:ae:52:d3:8d:8d:a3:67:5a:b8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
        Validity
            Not Before: Jul  6 21:01:39 2025 GMT
            Not After : Jul  7 21:01:39 2025 GMT
        Subject: CN=6c7e3cf43eb0dc8047b1fc0e86ef850e4105b1bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:ee:ef:96:17:c3:f6:42:79:c7:2b:a2:29:93:
                    ee:e7:ee:d5:23:d6:33:de:7a:c7:dd:49:33:fa:74:
                    aa:bf:f1:21:e8:79:ad:ef:72:8c:b6:83:fe:02:01:
                    64:61:b4:fc:61:0d:90:7c:35:6f:0d:0b:8b:2f:ed:
                    5e:ef:a0:4b:92:de:59:8a:14:56:96:85:59:0d:5b:
                    f4:87:2b:70:3f:96:bb:91:76:35:fb:cf:2e:41:4d:
                    dc:07:87:2e:a8:f6:2d:3d:d6:e5:44:c1:43:61:84:
                    07:35:bd:de:71:b3:ed:84:19:35:c0:21:47:b9:84:
                    94:e4:a3:93:96:28:ea:46:b2:c8:fe:19:af:6e:6e:
                    a5:79:d8:c5:1a:df:32:ab:91:9b:8f:9d:26:0f:bc:
                    68:88:02:83:56:55:a7:78:eb:2a:40:79:7f:f1:02:
                    03:df:77:9e:fb:b3:5c:bf:c3:1a:47:1f:82:38:67:
                    2f:84:c4:64:2d:80:41:a1:72:58:21:21:f0:63:b2:
                    2a:8b:c4:2a:1f:64:bf:8c:a7:9b:b0:87:21:78:66:
                    e5:0d:3e:42:e9:45:ba:24:3e:62:32:e5:d5:f0:34:
                    7a:66:99:de:a9:7b:c1:9e:26:66:f9:27:99:eb:d2:
                    74:57:34:ff:b8:d0:06:73:b0:77:72:1c:8b:a3:09:
                    14:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:7E:3C:F4:3E:B0:DC:80:47:B1:FC:0E:86:EF:85:0E:41:05:B1:BD
            X509v3 Authority Key Identifier:
                keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:92:71:3e:7a:ba:fa:9a:b7:38:83:4e:ac:2a:74:62:97:7c:
         38:21:c7:7a:04:cc:8c:f8:95:f6:e4:80:49:70:46:af:1c:45:
         7d:96:06:16:b6:f0:17:01:3a:a1:a9:74:7e:ab:16:11:6b:5a:
         0f:bf:0a:fa:d5:32:5a:3b:ee:25:a1:46:b0:92:dc:a0:70:ad:
         91:d0:7a:df:7e:27:cb:a4:87:9c:d2:ab:68:98:75:af:1e:c5:
         52:62:3b:34:4d:99:53:ea:ea:5f:13:52:df:8b:1c:27:74:77:
         8a:08:e8:52:d1:40:c0:25:db:b6:4d:4f:8e:b3:f0:9e:79:8d:
         17:15:a0:f7:e9:6f:72:f2:da:35:0f:64:42:3a:85:b7:1a:99:
         d7:b3:9c:c9:08:ae:ee:1a:f9:39:54:97:6a:c3:e6:53:7e:87:
         9c:76:ed:2f:f2:13:d1:a6:eb:08:60:a5:a9:38:10:24:28:f0:
         10:b0:0b:e3:d6:88:ca:a5:d9:20:c0:55:e0:85:75:5b:01:23:
         e5:8b:95:70:e3:20:64:64:54:56:b2:0f:f6:eb:96:93:fe:41:
         28:e6:cc:91:9d:ce:16:35:e3:d7:a9:b6:73:96:64:96:50:fc:
         96:e9:1c:17:cb:a9:76:82:c6:46:04:a4:a1:ee:01:27:4e:b5:
         28:eb:7a:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfhi2tBM5nNrlLTjY2jZ1q4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2
OTczY2YwHhcNMjUwNzA2MjEwMTM5WhcNMjUwNzA3MjEwMTM5WjAzMTEwLwYDVQQD
Eyg2YzdlM2NmNDNlYjBkYzgwNDdiMWZjMGU4NmVmODUwZTQxMDViMWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1O7vlhfD9kJ5xyuiKZPu5+7VI9Yz
3nrH3Ukz+nSqv/Eh6Hmt73KMtoP+AgFkYbT8YQ2QfDVvDQuLL+1e76BLkt5ZihRW
loVZDVv0hytwP5a7kXY1+88uQU3cB4cuqPYtPdblRMFDYYQHNb3ecbPthBk1wCFH
uYSU5KOTlijqRrLI/hmvbm6ledjFGt8yq5Gbj50mD7xoiAKDVlWneOsqQHl/8QID
33ee+7Ncv8MaRx+COGcvhMRkLYBBoXJYISHwY7Iqi8QqH2S/jKebsIcheGblDT5C
6UW6JD5iMuXV8DR6ZpneqXvBniZm+SeZ69J0VzT/uNAGc7B3chyLowkUbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGx+PPQ+sNyAR7H8DobvhQ5BBbG9MB8GA1UdIwQY
MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It
MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh
LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASpJxPnq6
+pq3OINOrCp0Ypd8OCHHegTMjPiV9uSASXBGrxxFfZYGFrbwFwE6oal0fqsWEWta
D78K+tUyWjvuJaFGsJLcoHCtkdB6334ny6SHnNKraJh1rx7FUmI7NE2ZU+rqXxNS
34scJ3R3igjoUtFAwCXbtk1PjrPwnnmNFxWg9+lvcvLaNQ9kQjqFtxqZ17OcyQiu
7hr5OVSXasPmU36HnHbtL/IT0abrCGClqTgQJCjwELAL49aIyqXZIMBV4IV1WwEj
5YuVcOMgZGRUVrIP9uuWk/5BKObMkZ3OFjXj16m2c5ZkllD8lukcF8updoLGRgSk
oe4BJ061KOt68A==
-----END CERTIFICATE-----
Generated at Sun Jul 6 22:31:24 2025 by rpki-client