Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File:                     evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier:          EWyn1ki59/FraS+CiBj0CJHzw4Xd1/+SO+cSWzf1CYk=
Subject key identifier:   39:DE:03:F5:DD:6A:8D:3F:05:5B:C9:41:7D:CE:0C:56:56:F8:7F:16
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer:       /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial:       019757C86DF1C7A7D57BE10F547B457F7E06
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number:          02BF
Signing time:             Tue 10 Jun 2025 03:00:42 +0000
Manifest this update:     Tue 10 Jun 2025 03:00:42 +0000
Manifest next update:     Wed 11 Jun 2025 03:00:42 +0000
Files and hashes:         1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
                          2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: M0/CQYzpFjifNCECfyt7mn6cxg3t/uaI1AsiFD/6/nE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 03:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:c8:6d:f1:c7:a7:d5:7b:e1:0f:54:7b:45:7f:7e:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
        Validity
            Not Before: Jun 10 03:00:42 2025 GMT
            Not After : Jun 11 03:00:42 2025 GMT
        Subject: CN=39de03f5dd6a8d3f055bc9417dce0c5656f87f16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:86:d0:2b:7b:a9:93:f7:c9:73:75:34:61:f2:
                    49:0c:5d:11:21:86:08:ca:1e:f6:f4:80:43:95:6d:
                    f8:cf:87:9e:c2:17:84:c9:84:d6:f1:7f:2b:71:0c:
                    f0:02:b1:84:e6:09:7d:3f:e2:38:28:7b:cd:cd:65:
                    b9:56:e0:0e:50:3b:e2:d0:98:97:96:74:74:3b:06:
                    d6:13:74:78:6d:a0:ae:05:4e:e8:60:3f:64:15:85:
                    69:8f:00:57:d0:d5:b1:03:4f:ff:81:ca:fc:dc:00:
                    34:82:30:72:17:c3:91:03:64:ef:be:8b:1b:8c:88:
                    40:e5:54:92:de:1d:a5:bd:b8:d0:30:56:fe:46:18:
                    e7:a1:09:ea:01:24:67:44:be:07:d3:91:4b:cc:3e:
                    91:33:35:f7:46:2c:ac:78:3c:bf:20:ea:81:4b:44:
                    40:25:55:12:1a:11:c6:e7:04:6b:30:be:7b:d2:d2:
                    f8:97:9b:d1:93:ec:60:53:4c:88:41:b0:56:84:8d:
                    1e:af:b6:d4:d6:5a:7f:31:60:38:ac:4a:51:5b:82:
                    a7:74:e2:95:5f:54:0b:7e:92:ba:12:16:f1:46:ee:
                    4a:4a:8a:a3:7e:23:f7:fb:35:c4:f5:55:f9:0b:e6:
                    f0:50:ff:98:b1:22:de:0a:5f:ae:18:88:6f:5b:e7:
                    fe:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:DE:03:F5:DD:6A:8D:3F:05:5B:C9:41:7D:CE:0C:56:56:F8:7F:16
            X509v3 Authority Key Identifier:
                keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:8b:54:59:91:43:b0:fc:2f:40:b9:03:b9:a1:f9:b2:95:52:
         3e:f7:d9:d6:81:8b:bf:6a:b4:af:3d:2c:79:8d:56:21:ff:82:
         80:8d:b5:5a:3b:59:15:6d:d6:10:49:51:2d:25:24:23:88:c8:
         9f:7b:10:91:75:84:0e:43:5e:e4:d3:d6:19:55:1f:5f:54:5e:
         fd:a6:82:3c:80:8c:9d:ab:fe:51:8c:d4:09:05:47:7d:ce:92:
         7a:ec:13:1a:0f:49:76:b9:4b:3e:f1:dd:80:f8:3a:57:96:93:
         b0:e9:74:6b:02:ab:81:54:a3:11:f3:5c:7c:e2:39:e4:73:ea:
         a1:17:17:6e:0d:91:93:df:64:e2:db:4d:e3:00:ce:c8:97:b8:
         c2:6c:46:4b:be:73:ca:44:ee:ca:03:99:34:84:f5:8c:c8:88:
         26:77:1f:c3:ae:d3:59:16:da:45:c5:78:dd:29:92:4a:e6:a9:
         54:de:2f:f9:f6:74:19:72:12:a8:f5:75:27:67:03:5d:06:61:
         95:e1:b8:12:2b:ce:6b:21:44:13:39:42:81:c2:81:46:9f:2f:
         0a:5d:37:81:14:75:10:7e:51:1d:97:d4:32:55:12:6f:fa:0f:
         49:f7:ef:c0:8d:83:a2:a1:c1:b9:0b:f8:d0:64:ed:49:cf:c2:
         1e:c4:9f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:48:40 2025 by rpki-client