Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
File:                     O2HIth_0q5daL2xn0LzmN5Ni4v4.mft (raw, json)
Hash identifier:          ltTVEYJv+2jOBcQGxmLPQ0snpt4bX5mw8Aoq99cLyXY=
Subject key identifier:   D7:DF:B2:02:0D:32:92:8D:1A:B1:9F:2D:64:BD:B1:F8:1A:5F:91:0F
Authority key identifier: 3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
Certificate issuer:       /CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Certificate serial:       01987E9CE5DB1DE134D75BB631D382B2B545
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
Manifest number:          0931
Signing time:             Wed 06 Aug 2025 09:01:08 +0000
Manifest this update:     Wed 06 Aug 2025 09:01:08 +0000
Manifest next update:     Thu 07 Aug 2025 09:01:08 +0000
Files and hashes:         1: O2HIth_0q5daL2xn0LzmN5Ni4v4.crl (hash: 2pTCrO28DhfZhDrIOP7WilFpeeTWpf8DKd9CvBo7Kpc=)
                          2: zPHYYf64cnazRpEP2DM-tC5zi20.roa (hash: KRY5tyMHgi4pvRx1DdmJaDKEtzRxICuicXJ6HWfF+Yg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 09:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7e:9c:e5:db:1d:e1:34:d7:5b:b6:31:d3:82:b2:b5:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
        Validity
            Not Before: Aug  6 09:01:08 2025 GMT
            Not After : Aug  7 09:01:08 2025 GMT
        Subject: CN=d7dfb2020d32928d1ab19f2d64bdb1f81a5f910f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:bb:3b:04:f9:6a:7a:6e:5e:0f:16:36:c6:53:
                    46:37:d5:bc:d9:0c:f2:54:d2:0a:fd:bf:59:9e:b4:
                    13:f4:1e:33:75:46:27:93:a7:a5:73:df:96:af:dc:
                    5c:b4:78:4a:da:56:0f:5e:b3:4a:a4:35:48:33:75:
                    92:92:20:85:47:7f:c0:6d:2d:06:0e:e9:aa:f8:f1:
                    ce:91:12:1a:56:9b:23:0f:6a:63:50:6f:e2:dc:68:
                    16:05:53:c0:f8:6a:52:de:d4:40:c4:5a:ec:35:2a:
                    58:64:da:21:91:66:af:cd:5f:3f:1f:ed:34:33:e2:
                    ff:76:04:64:73:b8:98:a7:b2:08:c9:77:97:64:04:
                    69:53:98:25:56:87:52:8f:d9:fa:a6:d4:3d:ca:e2:
                    77:35:a7:8b:bb:3a:9e:71:35:8f:59:ac:9d:59:ab:
                    09:f1:c6:67:24:c4:77:e4:13:12:b0:b3:b7:d6:fc:
                    69:e0:bb:f8:82:a3:58:63:91:1a:ab:1e:3c:cf:5a:
                    8b:83:46:10:a3:cb:63:8f:d6:ea:9b:a6:6c:80:f2:
                    b2:c6:e4:28:53:44:74:3f:30:cb:4c:cb:8d:56:7a:
                    f0:89:fa:cc:94:24:95:76:c1:a1:89:3e:4d:c3:6a:
                    2f:75:4e:72:ed:33:14:63:35:d9:f3:0c:89:84:52:
                    fa:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:DF:B2:02:0D:32:92:8D:1A:B1:9F:2D:64:BD:B1:F8:1A:5F:91:0F
            X509v3 Authority Key Identifier:
                keyid:3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:50:8f:be:ad:cd:1a:28:00:49:3b:57:b4:5b:26:ab:93:11:
         b9:e7:20:4f:57:cc:4b:31:6a:c2:46:73:b0:86:4b:3a:bd:fe:
         92:1b:f6:f9:ab:55:83:36:ee:df:76:3f:7b:bf:87:3a:21:80:
         ee:52:90:28:53:e4:ab:aa:20:53:82:d2:09:5b:51:8c:28:e1:
         00:1e:f3:96:79:15:3d:aa:cf:1e:0f:a9:e0:b7:47:9b:77:e7:
         41:cd:77:33:d1:82:95:da:ac:1c:12:89:ed:65:4c:c4:bc:55:
         40:4c:3a:fe:04:58:ea:b6:a7:2c:e7:ec:17:22:f1:f8:b7:81:
         f9:b2:e3:bd:8f:ab:93:d5:e9:d8:12:29:72:9f:f4:46:26:24:
         85:c0:d2:6b:ad:7d:5d:b0:03:5d:15:f6:e8:b9:82:98:46:02:
         99:6e:71:4e:00:74:6b:0f:8a:11:ef:f5:09:a8:45:5d:ff:99:
         bf:48:49:97:dc:49:9c:e5:99:34:cc:84:77:53:71:fd:09:d0:
         5c:9c:44:4c:0f:3d:9d:c1:f9:77:1f:43:48:ab:bf:17:26:1a:
         1a:07:9e:4a:77:8d:9f:31:48:fc:63:d4:79:e2:c8:98:2c:a1:
         4c:a6:6e:8f:eb:c2:ca:b2:51:9a:54:cc:9b:91:7f:f7:43:23:
         3c:85:fb:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:23:53 2025 by rpki-client