Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
File:                     2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json)
Hash identifier:          iqtOrOBx8sWZGY+gTeesbZRHxZdSu/WiDvwFOC62MEA=
Subject key identifier:   93:CB:8A:B8:C9:AD:58:40:D1:F7:03:81:65:EA:76:4B:0D:0E:2B:72
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Certificate issuer:       /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial:       019773E45C76D8FC3EBAD8850401CDB953A2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
Manifest number:          02EE
Signing time:             Sun 15 Jun 2025 14:00:35 +0000
Manifest this update:     Sun 15 Jun 2025 14:00:35 +0000
Manifest next update:     Mon 16 Jun 2025 14:00:35 +0000
Files and hashes:         1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: a3JvgRpgHyfa1fl8HOR59pt1tBztTAW6rOO9Yft453U=)
                          2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=)
                          3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=)
                          4: RVfWb6AeQUrXaw0eh9r6r19sjZE.roa (hash: v4r/LVDf839QcMU4tAbsB+argaU/EH+WPkLUSna1SOM=)
                          5: T195uzhcxLzu10eyYWudFCGivFA.roa (hash: qzUIoK7cQxzw4ahmYyu2KSE8akPb2eWd34lvfRiJKwg=)
                          6: WLuKYa43v4uLoTtBwSGJKLjUaW8.roa (hash: Fla1bcGk5oIM2PQQTeiavoL8NWNQFQ/epjWD6RXMXlw=)
                          7: h2By371OCvj77wNVdyQcqgznsSg.roa (hash: soUA/0DY5+xPnyfK/0AF2K5yBnM6iGB14VNuRKlaQjI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 13:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:e4:5c:76:d8:fc:3e:ba:d8:85:04:01:cd:b9:53:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
        Validity
            Not Before: Jun 15 14:00:35 2025 GMT
            Not After : Jun 16 14:00:35 2025 GMT
        Subject: CN=93cb8ab8c9ad5840d1f7038165ea764b0d0e2b72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:bb:ae:04:92:db:d0:1a:ac:e9:ba:b3:ae:f1:
                    db:b9:41:bb:a4:fc:33:d4:24:5d:e7:52:d4:40:3f:
                    38:d5:60:b1:60:bc:70:07:fa:70:f2:c0:f3:43:66:
                    19:01:04:5e:da:b5:a5:d4:23:db:75:01:77:dd:e5:
                    38:7b:4b:ee:06:fa:ab:eb:1b:8e:6f:61:6f:60:c8:
                    39:bb:f4:67:08:98:9c:02:a4:ec:7c:cc:27:4e:3e:
                    01:ef:49:f4:80:b9:71:6f:02:20:c8:a4:61:b2:d6:
                    80:cd:58:25:82:02:84:15:3d:1a:0f:91:59:65:d3:
                    0a:82:ea:8c:93:1f:d4:ae:b9:07:8c:8f:15:e0:89:
                    89:24:ee:9c:88:54:ba:30:c5:0c:16:85:44:f3:25:
                    aa:fa:af:f7:8f:10:16:1a:b6:9a:93:e3:0e:41:43:
                    e2:69:8b:cf:30:85:6d:55:57:2c:fd:67:62:99:b1:
                    9b:e5:1d:c2:80:65:85:d4:50:6d:6d:c3:80:13:51:
                    e2:1a:31:ef:f0:df:3a:e0:c9:1d:3a:7c:cc:1c:c3:
                    78:08:97:ce:94:1a:bc:b1:78:76:00:cc:8e:3c:15:
                    bf:41:d4:cd:4b:b5:b6:08:6c:67:ab:81:69:bf:30:
                    ae:3d:ac:22:91:33:ec:f3:39:5d:45:09:49:2d:1b:
                    1f:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:CB:8A:B8:C9:AD:58:40:D1:F7:03:81:65:EA:76:4B:0D:0E:2B:72
            X509v3 Authority Key Identifier:
                keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:c6:80:3e:e8:f0:84:e9:56:05:76:6e:10:8c:c2:f3:71:57:
         94:8a:b6:3a:55:71:27:b4:c0:87:2b:2e:ee:f9:94:4f:47:0f:
         bd:d3:ef:1b:53:c0:b7:fd:42:c7:65:06:a3:bc:82:84:42:50:
         e8:eb:09:03:cc:10:43:30:ec:9c:f8:76:97:cf:5a:78:12:b8:
         fb:7f:dd:47:6a:9b:88:32:76:46:16:2d:ae:4c:db:0c:84:4c:
         0d:ca:da:f7:b8:4b:fb:3e:c1:57:bf:ec:ed:b1:98:14:ec:03:
         dd:77:b9:23:51:11:2e:72:0f:09:62:be:75:cd:fd:41:8b:a6:
         ba:d0:28:d6:37:0f:38:ad:fa:20:ab:d8:48:fa:3e:04:0d:5a:
         8e:7b:70:27:31:23:2b:5c:be:79:8c:d2:de:32:d9:90:0d:3c:
         f1:ae:a1:2e:32:47:c6:d0:7d:a6:37:a4:28:dd:78:95:46:75:
         ec:84:7f:79:92:40:9e:c7:5f:32:6a:e2:34:e4:43:3c:6e:6f:
         30:a6:42:b7:cf:57:82:e0:eb:d1:0c:9e:cd:f9:de:d9:59:4a:
         d0:77:5d:cd:95:96:1c:1f:fb:82:53:9a:cf:0e:08:f5:d2:40:
         d3:48:ae:23:72:36:b6:75:12:87:26:2a:86:0e:89:5e:54:63:
         80:af:51:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 18:37:03 2025 by rpki-client