Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File:                     QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier:          msz1aOh1K/Nop6W5KU2L3TVS+Egx4pK0/zeiHh0Dlb4=
Subject key identifier:   AC:5C:84:B3:31:F7:15:F2:96:9D:FE:E4:2E:04:69:D5:EA:BC:96:D5
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer:       /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial:       01976A05F5EA190662A976BF5D5A4F904719
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number:          128C
Signing time:             Fri 13 Jun 2025 16:01:04 +0000
Manifest this update:     Fri 13 Jun 2025 16:01:04 +0000
Manifest next update:     Sat 14 Jun 2025 16:01:04 +0000
Files and hashes:         1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
                          2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: 7eGa2+sNWm9LSigkxxMKRiH9rwFAjysq53qJHJ7pJqU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:05:f5:ea:19:06:62:a9:76:bf:5d:5a:4f:90:47:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
        Validity
            Not Before: Jun 13 16:01:04 2025 GMT
            Not After : Jun 14 16:01:04 2025 GMT
        Subject: CN=ac5c84b331f715f2969dfee42e0469d5eabc96d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:0c:e0:db:71:6f:3a:7d:dd:ca:55:49:39:f7:
                    ed:1e:e7:c7:16:26:ac:ae:ba:63:ef:2a:2e:38:4f:
                    5e:cf:11:e4:24:2a:db:1a:a4:c5:54:11:11:af:ed:
                    46:57:5b:16:b2:5e:ec:3a:1a:4e:b0:69:ed:0f:38:
                    49:ac:ad:81:e2:05:50:4f:43:a7:79:ab:69:86:b6:
                    3e:35:e7:24:0f:4e:eb:1f:a7:f8:4e:6f:fd:01:a8:
                    18:85:93:aa:2f:78:08:92:01:30:df:43:e2:6f:40:
                    2f:53:f0:3d:6f:df:87:18:ef:bf:bc:97:37:e4:18:
                    a1:a5:ca:41:27:99:2c:03:29:09:82:16:56:8d:72:
                    ab:fa:27:1d:10:b2:77:05:d7:23:a7:71:9c:67:2a:
                    1e:cc:32:39:e2:97:ae:27:75:37:ea:db:ac:7a:3d:
                    3c:a3:cc:02:3a:5b:8a:ea:06:72:89:1b:ec:68:95:
                    35:fb:f4:0e:e1:7e:ec:d9:d7:e5:f3:d8:57:59:e1:
                    ee:f0:07:68:ac:f9:c3:02:1f:a9:58:7d:06:eb:f7:
                    c0:e9:e7:91:09:76:7a:84:3e:7c:67:87:44:9f:09:
                    fc:7a:25:a8:94:ea:3c:f6:ee:7a:5e:f0:27:a4:9c:
                    27:a8:75:82:e9:6d:8b:08:85:ae:37:d6:b2:1b:c8:
                    2b:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:5C:84:B3:31:F7:15:F2:96:9D:FE:E4:2E:04:69:D5:EA:BC:96:D5
            X509v3 Authority Key Identifier:
                keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:ef:ba:f2:99:39:39:9b:cb:41:93:fb:b4:e1:20:8b:e5:7a:
         2d:16:47:d0:aa:84:ea:14:4d:d5:29:c5:03:f3:7e:64:ec:72:
         cc:f6:a6:5d:fc:11:71:fb:ca:12:f0:bc:7e:15:fa:e8:2a:fe:
         15:2b:26:a6:3d:30:4c:97:6d:f0:62:98:20:3e:68:27:d3:be:
         90:6b:27:ff:60:6f:65:5e:4b:89:9e:6d:b9:1c:c8:eb:b1:2b:
         79:de:67:dc:a3:8a:63:20:73:bb:86:e0:0a:c5:b0:e9:59:55:
         e0:3c:5e:74:bb:e3:bd:5d:d9:ea:cf:c9:61:ec:c0:bb:eb:a1:
         6b:46:8e:01:82:7d:4a:2c:54:10:0a:f1:3d:f7:c0:d7:e9:8d:
         03:57:ed:48:88:2a:6e:41:c4:e9:33:3a:ce:62:98:d8:d5:53:
         a7:30:a6:19:46:74:aa:76:56:51:d2:98:b3:90:41:36:b8:a3:
         d9:17:50:ce:0b:32:4f:1d:56:11:77:06:b3:27:52:d1:17:6e:
         a8:d1:55:50:7d:b4:1a:98:08:53:e3:dc:57:33:ff:17:76:13:
         66:a9:a0:41:38:94:77:13:74:82:29:72:c4:6a:e0:9d:4d:9f:
         48:b7:91:6a:37:26:04:60:cc:7c:ee:83:4b:50:2d:e5:72:0e:
         22:58:0b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:40:23 2025 by rpki-client