Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
File:                     hrIjA95LCocPz-e2VWwCT3XHajQ.mft (raw, json)
Hash identifier:          0LTilC0pQ1FvH80xC+wCUzjK4fU0XR6/vIoyFGKPZcw=
Subject key identifier:   5C:D9:1F:D8:C1:FF:C1:49:BD:69:0A:3C:B2:D0:F0:45:44:75:99:AF
Authority key identifier: 86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
Certificate issuer:       /CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Certificate serial:       0196903A0F98E0EB58736B030E75679EB8B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
Manifest number:          101D
Signing time:             Fri 02 May 2025 09:00:46 +0000
Manifest this update:     Fri 02 May 2025 09:00:46 +0000
Manifest next update:     Sat 03 May 2025 09:00:46 +0000
Files and hashes:         1: ZjB1G19DDx_6Q5oScLG5jMaC8XA.roa (hash: 7/c0oLP47xBtzbpIYR3dJCRfL58YizRnGJk+IU5Vsgc=)
                          2: bckQXnbwfKXBuJ2fgXGJ6V-6Qfk.roa (hash: v7e6EIu7w13jemXrMUjQBx6+ZKi093MMCQO7o8uB3rY=)
                          3: hrIjA95LCocPz-e2VWwCT3XHajQ.crl (hash: aLkzjcOA0xIESWvLaERb4niGp8iuj7NAPyRXlBU4rpQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 03 May 2025 07:31:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:90:3a:0f:98:e0:eb:58:73:6b:03:0e:75:67:9e:b8:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
        Validity
            Not Before: May  2 09:00:46 2025 GMT
            Not After : May  3 09:00:46 2025 GMT
        Subject: CN=5cd91fd8c1ffc149bd690a3cb2d0f045447599af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:d8:40:2e:53:f6:76:30:75:d8:21:71:fd:a7:
                    39:56:e0:c5:62:af:46:9b:74:7a:69:cc:b1:6a:62:
                    ba:5c:8f:30:07:fd:d7:65:b7:5e:95:c9:5e:f3:ef:
                    76:ac:ab:75:24:e5:7c:86:4e:3e:09:14:6a:ee:4d:
                    6c:3e:df:46:76:08:a3:43:8f:c7:5f:97:4c:ba:6a:
                    62:d9:01:1c:e4:d6:67:e2:fa:27:c4:ad:a9:79:de:
                    26:07:79:af:67:27:e3:8f:36:6d:cd:47:94:da:ef:
                    2f:0a:2d:41:b3:ee:f6:2b:17:16:3f:be:f6:ed:d7:
                    48:9d:aa:22:5f:6a:ca:e5:f8:8d:93:96:5c:2e:5e:
                    b0:10:f3:0b:4d:b7:5c:db:18:44:f9:b4:2f:c4:b8:
                    f1:ef:77:96:5a:3f:f2:a4:81:02:da:ae:f3:20:7b:
                    23:a7:a8:da:7b:42:65:94:1c:62:52:5a:b6:4c:57:
                    c0:c2:11:f2:ff:18:74:00:f8:a6:f8:1f:6b:ee:5b:
                    c6:7d:0e:10:30:75:37:5e:0b:ac:ab:26:be:63:e2:
                    9f:2c:8c:b6:c1:94:4d:28:40:72:6a:2d:54:4f:60:
                    d0:8d:e9:d8:dd:64:50:0f:46:89:b0:40:b6:b0:ab:
                    8e:00:ec:3b:c6:f0:44:6c:72:f3:e1:14:61:d3:bf:
                    df:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:D9:1F:D8:C1:FF:C1:49:BD:69:0A:3C:B2:D0:F0:45:44:75:99:AF
            X509v3 Authority Key Identifier:
                keyid:86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:43:e7:b8:1c:58:b6:64:a5:68:cd:c9:d2:b5:97:ba:42:4f:
         df:19:32:25:1a:39:8c:60:4e:4f:5a:29:9c:87:97:9a:65:2d:
         54:4f:2f:bd:a0:65:d2:7f:a6:49:a5:5d:d4:77:49:1e:a6:62:
         59:74:ea:19:0f:75:71:3f:fd:0e:2a:e4:53:ed:d1:51:f4:dc:
         60:d9:fe:c2:36:a5:e7:de:a6:e1:1e:34:ab:96:a1:a1:bf:eb:
         d8:a3:7a:a2:af:db:9e:a7:fc:40:79:f6:af:41:a7:9c:22:40:
         c6:36:3b:14:9f:b0:93:d1:af:29:2e:08:5d:18:79:88:b1:e0:
         b8:36:36:a3:e3:0f:23:87:7a:c5:8d:62:c5:ec:a2:97:42:56:
         dd:03:73:2f:eb:81:c4:a8:6a:8c:0a:a6:67:63:ef:68:07:05:
         89:7c:9e:2d:a7:11:b5:dc:59:be:54:c1:f4:9a:65:89:d6:46:
         7b:54:e1:87:f0:96:74:37:ff:8a:61:c7:3f:04:dd:b5:22:b1:
         29:89:aa:31:9d:d9:d6:13:0d:7b:37:36:f2:cb:13:b1:f9:93:
         a6:ba:76:99:6f:39:a4:f8:ef:a8:da:90:ba:16:a6:be:af:bd:
         07:f9:04:ab:7f:76:08:45:8b:5c:cd:e7:6e:26:ae:cb:29:e1:
         8b:df:f2:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 13:17:50 2025 by rpki-client