Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File:                     evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier:          AJpwX8mtxMe2uui8QO2XJVFmTAfWlPY06GjpLI8GgAI=
Subject key identifier:   30:70:1E:86:38:93:27:3E:45:B2:43:A6:24:2A:2B:BA:CC:9C:7C:E3
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer:       /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial:       019753EBABBEE3C5A31A19D434F1D77BF4B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number:          02BD
Signing time:             Mon 09 Jun 2025 09:00:43 +0000
Manifest this update:     Mon 09 Jun 2025 09:00:43 +0000
Manifest next update:     Tue 10 Jun 2025 09:00:43 +0000
Files and hashes:         1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
                          2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: lThxYAH66cOi8yValFvAXexP5Z/a/gKSCulXzdYF5qk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:eb:ab:be:e3:c5:a3:1a:19:d4:34:f1:d7:7b:f4:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
        Validity
            Not Before: Jun  9 09:00:43 2025 GMT
            Not After : Jun 10 09:00:43 2025 GMT
        Subject: CN=30701e863893273e45b243a6242a2bbacc9c7ce3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:87:0c:5f:4b:f2:b2:66:e1:1f:56:09:33:bc:
                    5e:61:4a:ac:1e:08:4a:39:02:7d:ff:dd:12:83:c9:
                    0b:4f:89:9f:14:91:d6:fa:dc:5c:32:67:47:d3:ed:
                    ea:e4:31:df:fb:c2:8f:56:c9:f0:da:ec:21:dd:f4:
                    a9:91:c0:fd:c4:40:98:e0:75:a7:c3:6d:77:35:a7:
                    cd:7e:00:08:73:09:9a:c4:97:58:a0:0a:0f:17:84:
                    6f:1c:e1:ae:c1:b9:13:60:30:23:9f:46:4d:c6:5f:
                    e8:32:a2:43:ec:c5:94:9a:24:c0:71:c5:5f:33:7b:
                    19:28:b2:50:b5:de:40:9b:37:80:6e:35:a2:46:5e:
                    1d:c7:9a:c7:4e:fe:c9:7b:7a:96:b1:88:1f:34:08:
                    6c:32:a1:78:5e:29:80:40:c6:6e:7b:64:2f:38:10:
                    28:df:6f:36:41:f9:c6:0b:02:e5:14:de:50:e5:ac:
                    10:ed:3e:c0:36:24:ff:b9:5f:da:0b:4e:56:39:15:
                    47:dc:fa:87:d5:d8:a8:b1:9b:7f:72:f9:51:5b:35:
                    88:39:d1:d7:28:37:c3:56:0b:c5:22:85:3c:76:79:
                    60:b8:47:d7:b9:a8:58:1f:55:1d:5e:3c:10:91:16:
                    3f:d6:5a:22:c2:4c:68:d5:29:e9:45:e9:99:38:83:
                    29:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:70:1E:86:38:93:27:3E:45:B2:43:A6:24:2A:2B:BA:CC:9C:7C:E3
            X509v3 Authority Key Identifier:
                keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:56:22:fe:d8:81:4c:cb:bd:c5:4e:c4:79:f9:82:9b:50:c3:
         35:db:44:80:18:49:d7:dd:4f:fc:92:72:11:bf:66:92:1b:a2:
         2f:cb:75:a7:c9:8c:7b:2a:f4:86:d1:a7:87:70:6b:76:44:d3:
         5f:09:a3:e5:31:12:dc:90:a4:ec:52:66:91:00:97:9b:10:c3:
         61:c7:ad:4f:93:85:24:c1:90:2a:a1:27:17:85:f2:c6:ff:0f:
         de:5c:49:b7:0f:d3:4e:94:6b:67:ee:df:df:2f:c1:07:ee:93:
         55:25:96:ae:64:8a:9b:e6:96:72:55:eb:47:68:72:c2:d6:23:
         ca:75:a5:21:d6:a7:e7:95:3b:61:b8:44:05:b5:58:d7:f3:0c:
         1b:34:4d:dc:63:52:dd:19:b8:67:b8:4d:2f:4a:a5:7e:67:52:
         6a:d5:aa:70:c0:bf:88:ae:fa:3d:a8:4b:f1:f7:dc:f2:26:1a:
         40:d6:4d:78:f2:1e:16:e5:be:ea:bc:2b:49:04:30:77:6a:02:
         89:0c:90:d9:e0:ad:28:5b:00:a7:55:7b:a1:e5:3b:59:a9:0a:
         08:f1:58:98:57:3b:c9:00:40:a7:9e:3c:4e:01:54:44:82:eb:
         92:e1:25:fd:77:78:f0:b2:e0:50:8a:d2:26:4f:3c:6e:97:fe:
         8b:17:b3:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:39:51 2025 by rpki-client