Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
File:                     O9mhd7td-26r5MrXne-PiwBd9lY.mft (raw, json)
Hash identifier:          9FOiqQzK2coRpyoN0KMiol/H6xMiYF8CI+UzJznFI6w=
Subject key identifier:   D2:FC:A7:C0:C6:F8:99:03:D0:3F:F8:68:07:75:4D:80:90:89:2B:52
Authority key identifier: 3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
Certificate issuer:       /CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Certificate serial:       019683C7AB25F3668AF84F43D6D20207A530
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
Manifest number:          1052
Signing time:             Tue 29 Apr 2025 23:00:22 +0000
Manifest this update:     Tue 29 Apr 2025 23:00:22 +0000
Manifest next update:     Wed 30 Apr 2025 23:00:22 +0000
Files and hashes:         1: 4n60dmESH0S_t55G5kL7m5-9nPQ.roa (hash: 8Yl7mPdCOASLn21jFFZtRnqVACPq2IcHgd8DlOM4RfQ=)
                          2: BibofgsXi1m02E0sydv0lSzcS6M.roa (hash: 6kPi5tOuSZ0eERv1ZZd/XUAaafp/Tbm9N/8PWSqizA4=)
                          3: O9mhd7td-26r5MrXne-PiwBd9lY.crl (hash: Gh47oG/VDOXjFrI6eZxM6g9rYGsUzubuKHsWge86vGs=)
                          4: c4wHBWSbrNsVlf_a1cQ3OL9nR-U.roa (hash: b+RfZmuxixUWKJA86U4yLBBzKqnW3kWf0oaDSsDCSts=)
                          5: ovHMIugdzTg_bwipZYtU7WSoXAk.roa (hash: gF8CQNR3IscVXMALoF8UJJgAvjQPh7b9Wa8roCX6mtI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 30 Apr 2025 23:00:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:83:c7:ab:25:f3:66:8a:f8:4f:43:d6:d2:02:07:a5:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
        Validity
            Not Before: Apr 29 23:00:22 2025 GMT
            Not After : Apr 30 23:00:22 2025 GMT
        Subject: CN=d2fca7c0c6f89903d03ff86807754d8090892b52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:57:78:f6:ac:cf:b1:40:fc:a7:98:de:43:92:
                    81:00:b4:d6:b7:05:79:55:6c:c0:3e:d3:3c:4b:88:
                    78:a0:91:10:3f:16:ec:43:0e:34:99:b3:f4:ff:93:
                    c4:6a:13:59:3c:bc:d9:ba:f3:01:a0:cc:7a:1d:61:
                    f3:be:5c:93:42:c7:e9:56:29:5b:fb:3e:84:9e:5e:
                    fc:d8:28:ed:df:62:9c:43:6b:d5:07:ac:2a:d4:2b:
                    64:97:eb:c5:7b:3d:22:7d:21:ec:f1:e2:26:ca:0a:
                    35:6f:12:59:68:69:0d:4c:c0:de:0d:e7:30:d3:5c:
                    ec:dd:93:2b:68:86:15:a4:12:53:8f:6a:75:aa:ba:
                    4a:86:f7:d5:27:28:96:53:af:11:5b:33:eb:fc:9f:
                    cf:64:24:6d:fe:45:a8:55:88:24:6b:83:9a:cb:cd:
                    f7:fb:00:53:8c:96:a4:c0:70:4e:22:24:8d:c6:3f:
                    f5:77:43:fa:60:b5:59:52:2d:cd:9c:d6:86:6e:95:
                    a7:b1:52:8a:7f:b3:4f:04:88:4e:9d:0f:3e:40:ac:
                    2c:e3:db:56:bc:35:f2:15:a7:06:be:a2:d7:d9:76:
                    97:e8:d9:6c:f9:0d:41:67:9b:f1:78:62:90:a6:b8:
                    b6:19:c6:e0:20:04:b7:c9:5d:cb:5a:44:1f:0f:f8:
                    a1:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:FC:A7:C0:C6:F8:99:03:D0:3F:F8:68:07:75:4D:80:90:89:2B:52
            X509v3 Authority Key Identifier:
                keyid:3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:f7:24:9e:74:18:e6:53:6e:49:ea:eb:9a:3a:05:42:de:03:
         58:de:c3:58:50:63:ab:f0:df:a7:90:4f:d0:44:2d:b7:6b:10:
         63:57:f7:93:52:81:f9:72:4c:db:23:09:2e:4b:53:b8:82:7a:
         64:6d:7f:b3:35:9a:e7:d9:06:36:aa:42:09:08:3a:9a:ea:cf:
         99:1c:68:64:0f:5e:90:04:49:86:3a:60:26:7e:00:2a:f1:62:
         31:39:4c:8b:5d:b7:98:43:bb:35:38:c2:55:6c:2b:a1:b2:5f:
         40:56:b3:e1:34:8a:22:8d:2d:8a:12:2c:9d:b4:a0:b0:b7:17:
         d5:b6:66:75:2a:84:e2:ff:d3:ba:b6:d3:87:85:94:86:47:18:
         f3:f6:a0:e2:87:b8:36:58:44:a2:aa:21:51:d5:b2:7a:94:7c:
         fd:c7:b7:b5:f5:b7:ed:d7:59:a8:45:0d:79:c8:75:b5:3d:52:
         39:d8:b8:c8:e4:49:26:3e:82:46:ed:46:86:93:23:83:47:61:
         24:88:1b:ea:cb:56:b7:93:8d:d4:89:e8:fb:7f:b3:66:12:1a:
         94:9f:f4:57:74:c7:c1:41:6b:e0:f5:d1:7c:ba:96:b0:e9:e5:
         88:7b:38:ab:0b:2c:4d:f7:9f:8a:f7:fb:b0:97:9d:93:c8:0b:
         ca:e0:b0:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaDx6sl82aK+E9D1tICB6UwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZDlhMTc3YmI1ZGZiNmVhYmU0Y2FkNzlkZWY4ZjhiMDA1
ZGY2NTYwHhcNMjUwNDI5MjMwMDIyWhcNMjUwNDMwMjMwMDIyWjAzMTEwLwYDVQQD
EyhkMmZjYTdjMGM2Zjg5OTAzZDAzZmY4NjgwNzc1NGQ4MDkwODkyYjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVd49qzPsUD8p5jeQ5KBALTWtwV5
VWzAPtM8S4h4oJEQPxbsQw40mbP0/5PEahNZPLzZuvMBoMx6HWHzvlyTQsfpVilb
+z6Enl782Cjt32KcQ2vVB6wq1Ctkl+vFez0ifSHs8eImygo1bxJZaGkNTMDeDecw
01zs3ZMraIYVpBJTj2p1qrpKhvfVJyiWU68RWzPr/J/PZCRt/kWoVYgka4Oay833
+wBTjJakwHBOIiSNxj/1d0P6YLVZUi3NnNaGbpWnsVKKf7NPBIhOnQ8+QKws49tW
vDXyFacGvqLX2XaX6Nls+Q1BZ5vxeGKQpri2GcbgIAS3yV3LWkQfD/ihzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNL8p8DG+JkD0D/4aAd1TYCQiStSMB8GA1UdIwQY
MBaAFDvZoXe7Xftuq+TK153vj4sAXfZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9jMGQ0NjctZjYyYS00MTljLWJlODUt
ZTM4MDMwYjY5ZDVhLzEvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9jMGQ0NjctZjYyYS00MTljLWJlODUtZTM4MDMwYjY5ZDVh
LzEvTzltaGQ3dGQtMjZyNU1yWG5lLVBpd0JkOWxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATPcknnQY
5lNuSerrmjoFQt4DWN7DWFBjq/Dfp5BP0EQtt2sQY1f3k1KB+XJM2yMJLktTuIJ6
ZG1/szWa59kGNqpCCQg6murPmRxoZA9ekARJhjpgJn4AKvFiMTlMi123mEO7NTjC
VWwrobJfQFaz4TSKIo0tihIsnbSgsLcX1bZmdSqE4v/TurbTh4WUhkcY8/ag4oe4
NlhEoqohUdWyepR8/ce3tfW37ddZqEUNech1tT1SOdi4yORJJj6CRu1GhpMjg0dh
JIgb6stWt5ON1Ino+3+zZhIalJ/0V3THwUFr4PXRfLqWsOnliHs4qwssTfefivf7
sJedk8gLyuCwpw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 03:10:43 2025 by rpki-client