Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File:                     0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier:          uGCU+dA0ebxeUMnhA8oIRL61Sq4o4pXAtKdNgPksCkw=
Subject key identifier:   DD:46:7A:2A:15:F2:4B:5E:30:55:9A:29:3F:9D:6F:0D:CF:93:72:B4
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer:       /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial:       0197700794B49CDDBB36BB59BDECFE6F59E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number:          0995
Signing time:             Sat 14 Jun 2025 20:00:34 +0000
Manifest this update:     Sat 14 Jun 2025 20:00:34 +0000
Manifest next update:     Sun 15 Jun 2025 20:00:34 +0000
Files and hashes:         1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: Xk9owBTn/hQPk2C2RFbpYFs/URkMnIbRaxb0/e2atUM=)
                          2: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:07:94:b4:9c:dd:bb:36:bb:59:bd:ec:fe:6f:59:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
        Validity
            Not Before: Jun 14 20:00:34 2025 GMT
            Not After : Jun 15 20:00:34 2025 GMT
        Subject: CN=dd467a2a15f24b5e30559a293f9d6f0dcf9372b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:dd:c6:c4:2c:f9:dd:42:05:e5:de:33:4a:e1:
                    a1:f8:3c:a6:af:b8:af:d7:3b:9f:bb:3c:41:72:52:
                    56:31:14:ac:6d:9f:98:9e:9b:30:41:2e:18:46:fb:
                    c5:b2:8c:46:2c:12:69:92:44:37:e1:2a:8e:56:01:
                    2a:d3:21:72:5d:61:9f:97:1e:3d:05:32:67:c5:88:
                    c2:d3:84:fc:aa:5f:08:6f:74:8c:f0:5e:48:f0:24:
                    5a:4c:83:fd:24:01:64:a7:c2:d9:d2:a9:23:bb:fd:
                    f4:fd:59:35:c4:07:15:6a:24:34:a8:5f:b1:cf:dd:
                    ad:fc:3d:91:e8:64:48:07:3e:60:91:39:d3:68:16:
                    ad:ce:87:a8:e5:0a:83:45:98:bd:18:3f:99:9f:c5:
                    0c:1d:30:24:01:a9:45:0b:e2:e7:05:71:9f:7c:a4:
                    67:83:3b:9d:1a:7d:c8:8a:26:20:e6:7a:82:b0:7a:
                    ce:10:70:70:cd:9d:62:17:4f:e0:65:28:90:38:4b:
                    db:0e:dc:cf:27:f8:be:72:55:a2:e3:e0:ac:46:04:
                    b8:3e:33:05:eb:3d:73:1f:87:9f:34:f0:49:cb:e2:
                    35:7c:6a:fa:e7:33:1d:93:13:5b:b2:29:ef:ba:4e:
                    71:c4:81:3a:6e:9c:82:b8:5b:c9:91:0d:f7:5c:fe:
                    b1:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:46:7A:2A:15:F2:4B:5E:30:55:9A:29:3F:9D:6F:0D:CF:93:72:B4
            X509v3 Authority Key Identifier:
                keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:f6:97:e2:9b:19:ac:4e:a2:cb:21:32:06:ac:02:7c:07:46:
         a9:17:04:cc:70:d5:db:fb:75:83:a1:21:2e:a3:61:2e:0d:bb:
         c0:58:c9:d4:91:77:4f:52:72:bd:47:b3:72:74:1b:b2:dc:f0:
         f0:cb:93:31:96:a6:a8:6d:c7:7a:6e:e6:80:8f:c6:5c:b5:40:
         7d:c1:5f:89:d2:19:41:00:11:3b:b4:3b:b8:77:1b:a0:ef:6b:
         76:3b:fb:f8:a5:68:82:3b:fa:f7:bf:4c:9a:13:1f:9a:1b:e0:
         6a:5d:67:7b:b2:e1:06:81:cd:b4:b7:c0:b0:83:84:69:ad:1c:
         61:9a:44:96:e5:90:3c:de:23:d3:1f:06:35:33:b9:25:09:cc:
         5d:79:03:7f:a7:71:35:2f:cf:be:94:67:6e:9f:34:26:85:68:
         53:99:d3:11:8c:7c:29:f3:57:52:e2:f0:52:30:af:1d:c1:90:
         72:87:b9:10:d9:37:5a:63:e3:d1:de:6a:6c:2c:e7:fe:5d:49:
         6b:9d:ac:a3:58:0c:40:07:5f:d8:31:ca:93:41:70:b8:e9:18:
         98:c7:0b:8a:bc:f5:54:5c:19:65:f6:e5:68:49:60:9a:2e:bd:
         c2:86:cc:f5:84:ee:4b:aa:0e:c8:6c:f6:22:41:93:71:72:8f:
         85:5f:4c:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwB5S0nN27NrtZvez+b1nnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyN2I4NzdmODk5MzQxMjY5YmVjNjdjNmUzYTBhODg4YmE3
YWU5OGQwHhcNMjUwNjE0MjAwMDM0WhcNMjUwNjE1MjAwMDM0WjAzMTEwLwYDVQQD
EyhkZDQ2N2EyYTE1ZjI0YjVlMzA1NTlhMjkzZjlkNmYwZGNmOTM3MmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvN3GxCz53UIF5d4zSuGh+Dymr7iv
1zufuzxBclJWMRSsbZ+YnpswQS4YRvvFsoxGLBJpkkQ34SqOVgEq0yFyXWGflx49
BTJnxYjC04T8ql8Ib3SM8F5I8CRaTIP9JAFkp8LZ0qkju/30/Vk1xAcVaiQ0qF+x
z92t/D2R6GRIBz5gkTnTaBatzoeo5QqDRZi9GD+Zn8UMHTAkAalFC+LnBXGffKRn
gzudGn3IiiYg5nqCsHrOEHBwzZ1iF0/gZSiQOEvbDtzPJ/i+clWi4+CsRgS4PjMF
6z1zH4efNPBJy+I1fGr65zMdkxNbsinvuk5xxIE6bpyCuFvJkQ33XP6x6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN1GeioV8kteMFWaKT+dbw3Pk3K0MB8GA1UdIwQY
MBaAFNJ7h3+Jk0Emm+xnxuOgqIi6eumNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMt
OTk3OWRmNTJiMDE4LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS80NDVlZDAtNDhiMy00MDhlLWExYmMtOTk3OWRmNTJiMDE4
LzEvMG51SGY0bVRRU2FiN0dmRzQ2Q29pTHA2NlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgvaX4psZ
rE6iyyEyBqwCfAdGqRcEzHDV2/t1g6EhLqNhLg27wFjJ1JF3T1JyvUezcnQbstzw
8MuTMZamqG3Hem7mgI/GXLVAfcFfidIZQQARO7Q7uHcboO9rdjv7+KVogjv6979M
mhMfmhvgal1ne7LhBoHNtLfAsIOEaa0cYZpEluWQPN4j0x8GNTO5JQnMXXkDf6dx
NS/PvpRnbp80JoVoU5nTEYx8KfNXUuLwUjCvHcGQcoe5ENk3WmPj0d5qbCzn/l1J
a52so1gMQAdf2DHKk0FwuOkYmMcLirz1VFwZZfblaElgmi69wobM9YTuS6oOyGz2
IkGTcXKPhV9MrA==
-----END CERTIFICATE-----
Generated at Sun Jun 15 02:00:27 2025 by rpki-client