Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
File:                     Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json)
Hash identifier:          brK/eC6AjVnruFssSwtlZYzRQxUTt38Xxyu9xp1lHCw=
Subject key identifier:   1C:EF:54:E8:4C:B6:F1:39:B3:21:31:68:40:BF:54:B3:E3:74:9B:C0
Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
Certificate issuer:       /CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Certificate serial:       019883573D6EA155B7541D928D16106AABDD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
Manifest number:          0297
Signing time:             Thu 07 Aug 2025 07:03:09 +0000
Manifest this update:     Thu 07 Aug 2025 07:03:09 +0000
Manifest next update:     Fri 08 Aug 2025 07:03:09 +0000
Files and hashes:         1: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: AZL0ziNGre23UudlcttH8gso49fuOE4ygtnp+uvYiMw=)
                          2: PinfW_YHyw5uymC7Qg5_e_ihs1A.roa (hash: pxez1kR2olajgq0bPf5GWwA/2mx0CN85t2SDcizNJFk=)
                          3: q6pqSEbcTlqmRayyanV7tPyo7fs.roa (hash: EC2KtAOMCahopm9kPSQwxVqEk8+Lm5s50v5gQFz0rN8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 07:03:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:83:57:3d:6e:a1:55:b7:54:1d:92:8d:16:10:6a:ab:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90
        Validity
            Not Before: Aug  7 07:03:09 2025 GMT
            Not After : Aug  8 07:03:09 2025 GMT
        Subject: CN=1cef54e84cb6f139b321316840bf54b3e3749bc0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:0b:e2:13:64:1f:96:82:a1:3d:1a:a5:a3:dd:
                    e6:6e:50:03:87:4b:7a:0c:cb:05:c1:5b:54:57:dd:
                    58:52:f2:c2:6e:47:a1:d7:cf:00:b7:1e:89:98:20:
                    a8:25:5d:fe:19:31:fa:90:ad:3b:86:88:92:aa:e5:
                    02:8f:a5:84:ca:de:25:00:aa:ed:d9:75:77:70:75:
                    d8:40:99:11:5a:c9:41:3b:6e:8c:30:08:31:70:6c:
                    b9:eb:a1:99:e0:6a:7c:3a:27:af:e3:21:e4:87:6c:
                    98:c3:dd:3d:1c:09:fa:52:27:39:12:a4:12:b8:cc:
                    ed:ae:26:85:df:84:28:70:9b:7f:5d:e3:ed:cf:ec:
                    17:b7:59:57:fb:b4:c7:0a:ff:6c:db:f9:02:23:8a:
                    b0:14:ed:a6:e4:4a:7b:bc:ea:cb:55:72:56:0f:01:
                    c2:6a:b8:80:c1:f9:45:58:e4:ae:af:d5:9f:01:47:
                    02:ae:38:c6:2a:84:f8:e4:e7:eb:a7:0a:ee:de:76:
                    c1:6f:90:06:b6:0e:c7:35:54:f8:ef:f5:31:a4:5e:
                    9d:7b:36:5c:88:3c:50:6c:6a:60:8f:ac:f9:40:67:
                    d3:f2:1c:16:2d:04:34:c5:f9:2d:08:42:2b:44:28:
                    9f:5c:95:19:3b:23:af:70:8a:1a:1f:cb:db:75:03:
                    cb:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:EF:54:E8:4C:B6:F1:39:B3:21:31:68:40:BF:54:B3:E3:74:9B:C0
            X509v3 Authority Key Identifier:
                keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:82:b1:72:83:90:7a:ba:7d:40:6f:d4:eb:d2:89:1b:31:b6:
         64:83:ed:e7:40:d0:21:67:8d:85:34:75:05:5c:cc:bd:ba:e1:
         5f:ac:44:36:86:f4:36:cf:b4:54:59:d7:8e:c5:59:bf:49:57:
         aa:b8:f3:ad:63:8e:17:46:99:b1:4e:f1:dd:17:4c:2b:71:f1:
         a3:1f:58:95:5a:dc:95:f9:c0:78:4c:6a:4b:6b:fd:25:c8:f7:
         a9:77:f8:a7:d0:15:0b:f5:91:70:6e:50:f4:c5:10:31:d5:05:
         32:6f:68:c9:eb:7c:22:a2:98:a5:ff:83:68:d5:fc:64:36:6c:
         c8:fa:a2:95:e8:ad:ce:93:3e:71:1b:bc:65:41:33:06:8d:15:
         0d:17:b3:ba:79:99:82:42:ee:ab:4f:35:53:8f:b1:90:c5:d3:
         fc:2d:1e:eb:f5:19:17:01:97:51:1d:a7:93:cf:92:2b:e2:5f:
         f5:4c:82:46:9d:5f:ab:87:44:99:20:4d:79:b7:91:0d:ef:46:
         52:45:45:3f:aa:40:cb:e8:9e:b2:e0:db:14:21:05:88:2c:4d:
         0f:63:da:1d:84:6e:bb:c2:bb:f1:b2:36:68:0b:e4:2d:6f:71:
         f5:77:b9:f7:4c:13:b1:31:75:95:fb:63:04:80:4c:a2:d1:41:
         d6:ef:f7:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiDVz1uoVW3VB2SjRYQaqvdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNmQ1MTFjZTNhZjkwYzRkNjAxYzdjY2Y4MzYwNTIzNzEz
ZTJjOTAwHhcNMjUwODA3MDcwMzA5WhcNMjUwODA4MDcwMzA5WjAzMTEwLwYDVQQD
EygxY2VmNTRlODRjYjZmMTM5YjMyMTMxNjg0MGJmNTRiM2UzNzQ5YmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAviE2QfloKhPRqlo93mblADh0t6
DMsFwVtUV91YUvLCbkeh188Atx6JmCCoJV3+GTH6kK07hoiSquUCj6WEyt4lAKrt
2XV3cHXYQJkRWslBO26MMAgxcGy566GZ4Gp8Oiev4yHkh2yYw909HAn6Uic5EqQS
uMztriaF34QocJt/XePtz+wXt1lX+7THCv9s2/kCI4qwFO2m5Ep7vOrLVXJWDwHC
ariAwflFWOSur9WfAUcCrjjGKoT45Ofrpwru3nbBb5AGtg7HNVT47/UxpF6dezZc
iDxQbGpgj6z5QGfT8hwWLQQ0xfktCEIrRCifXJUZOyOvcIoaH8vbdQPLjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBzvVOhMtvE5syExaEC/VLPjdJvAMB8GA1UdIwQY
MBaAFAJtURzjr5DE1gHHzPg2BSNxPiyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzkt
ODRkYTYyMDY2ZThhLzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzktODRkYTYyMDY2ZThh
LzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkYKxcoOQ
erp9QG/U69KJGzG2ZIPt50DQIWeNhTR1BVzMvbrhX6xENob0Ns+0VFnXjsVZv0lX
qrjzrWOOF0aZsU7x3RdMK3Hxox9YlVrclfnAeExqS2v9Jcj3qXf4p9AVC/WRcG5Q
9MUQMdUFMm9oyet8IqKYpf+DaNX8ZDZsyPqileitzpM+cRu8ZUEzBo0VDRezunmZ
gkLuq081U4+xkMXT/C0e6/UZFwGXUR2nk8+SK+Jf9UyCRp1fq4dEmSBNebeRDe9G
UkVFP6pAy+iesuDbFCEFiCxND2PaHYRuu8K78bI2aAvkLW9x9Xe590wTsTF1lftj
BIBMotFB1u/3Qw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:20:05 2025 by rpki-client