Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File:                     0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier:          oUJ3/IDvvFq/H1m5G2K8xPbciutrHDjxH2A4nvIWv6s=
Subject key identifier:   64:79:18:35:42:33:10:17:5D:F4:8E:F1:1C:9D:53:5A:88:06:8C:06
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer:       /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial:       01976C2AC60D969DE7812DF79F22134B0B87
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number:          0993
Signing time:             Sat 14 Jun 2025 02:00:31 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:31 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:31 +0000
Files and hashes:         1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: eR7d2t0cp34tY5WANjvU0Cc9tDaFicMAasxxYnJIxkw=)
                          2: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2a:c6:0d:96:9d:e7:81:2d:f7:9f:22:13:4b:0b:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
        Validity
            Not Before: Jun 14 02:00:31 2025 GMT
            Not After : Jun 15 02:00:31 2025 GMT
        Subject: CN=64791835423310175df48ef11c9d535a88068c06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:46:31:a9:a3:f9:19:9c:b0:23:35:cd:65:e5:
                    0d:f7:b0:e6:73:ca:0c:a0:1b:9a:79:11:3a:bb:35:
                    3d:8e:97:f9:ea:3f:78:66:19:41:40:6a:4c:b9:41:
                    4e:b1:79:b0:c9:bb:02:2e:6e:95:4e:15:5e:2f:5a:
                    09:eb:48:8c:0b:c7:20:c6:a4:08:ef:f1:cf:9d:ca:
                    78:0e:40:2a:d7:b4:79:55:47:0d:15:0c:0e:57:14:
                    c2:ab:e3:5f:c6:63:6c:63:03:9c:a2:8b:4a:72:d8:
                    75:6a:d1:0c:d0:9c:3d:01:1a:6d:a5:d2:5b:85:36:
                    69:6d:0f:17:72:fa:02:6e:41:fe:55:78:bf:e5:46:
                    e0:11:fa:9f:c1:96:df:33:5f:df:3d:ef:19:dd:9e:
                    bf:69:04:97:89:be:cd:17:88:19:47:74:de:aa:5b:
                    9d:9d:27:3c:f6:02:d9:1a:51:ab:73:a4:04:38:32:
                    1c:ba:fc:48:e8:ba:20:9e:f9:99:d7:e0:80:9d:71:
                    4d:e2:55:74:3c:f1:1c:65:09:4b:46:46:b5:95:57:
                    7c:77:6d:8f:47:ce:5c:8b:53:0a:60:e4:2b:d7:2b:
                    84:6d:f0:54:4a:61:d9:a1:80:25:5b:4d:f1:29:f3:
                    85:be:46:59:59:d1:3e:fc:f9:59:95:d1:4a:67:d1:
                    f7:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:79:18:35:42:33:10:17:5D:F4:8E:F1:1C:9D:53:5A:88:06:8C:06
            X509v3 Authority Key Identifier:
                keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:b2:91:12:86:2e:82:7a:49:43:76:be:16:d0:93:6f:1f:45:
         21:26:c1:1a:36:fa:b1:ad:e7:bd:27:5e:52:88:98:c2:d1:e9:
         9c:15:35:eb:9c:e4:6f:e9:a2:82:f2:a8:34:a6:ad:a1:89:0e:
         cc:20:e4:49:c5:bb:cd:d2:dd:a8:7c:0f:a7:5e:3b:92:0b:6e:
         c1:68:b9:17:2b:b8:d8:d5:61:f5:cc:5f:a8:20:61:8b:06:bd:
         77:f4:e5:e4:89:12:a3:89:a9:c2:f3:ab:00:29:04:51:09:6a:
         9c:25:92:f2:c3:a9:cb:b1:b4:63:37:2a:8d:85:62:b0:d8:93:
         b6:52:6f:23:1b:85:6b:5a:a1:75:c1:86:4c:de:27:14:4d:22:
         36:c7:8a:7d:9a:c2:e6:c6:ce:74:d7:08:e3:b7:ed:11:a1:8e:
         4e:05:06:6a:86:89:63:bb:f9:d0:72:51:26:ae:8e:87:5f:1d:
         2e:e4:03:13:bf:89:27:fd:42:5f:b5:b3:82:87:71:d9:80:63:
         22:2e:05:7a:43:45:a8:97:f4:6e:52:f1:08:aa:49:6a:48:d9:
         0a:b4:0e:42:21:a7:6a:2d:d6:2b:c1:8d:d3:18:64:f2:36:9a:
         74:24:3a:49:1b:6f:b6:94:2e:bd:7e:b1:53:fd:e5:de:2d:23:
         64:55:45:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:14 2025 by rpki-client