Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
File:                     2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft (raw, json)
Hash identifier:          Gg8No/LsaD9ECsTP/BsKsC8U16x0UokHr3M2jmLGIpA=
Subject key identifier:   7F:8F:4B:02:66:24:F3:FD:F5:46:D7:A0:F6:2A:D8:1F:47:25:68:8B
Authority key identifier: D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
Certificate issuer:       /CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Certificate serial:       019873E27759F6C8BF74A6F6CA0F06180802
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
Manifest number:          15A8
Signing time:             Mon 04 Aug 2025 07:01:18 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:18 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:18 +0000
Files and hashes:         1: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl (hash: IjgWrcV2pMDJJIUSpVn7HBPCThTGxPjVejh0FLO7jB0=)
                          2: gd86nab0qf28eq3d5pPFq5e9rZo.roa (hash: OleM9BzJjHgCcSMlxVVC1tH0LyJmqbhh/CO/g3APccs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:77:59:f6:c8:bf:74:a6:f6:ca:0f:06:18:08:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
        Validity
            Not Before: Aug  4 07:01:18 2025 GMT
            Not After : Aug  5 07:01:18 2025 GMT
        Subject: CN=7f8f4b026624f3fdf546d7a0f62ad81f4725688b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:5c:d6:82:93:66:61:27:46:ae:03:c5:2a:39:
                    61:09:a8:6a:a0:da:9a:3f:8d:07:a6:97:19:5a:24:
                    1d:d1:71:08:59:8e:98:62:9d:22:e7:2e:0f:46:28:
                    d5:b2:67:e1:ad:38:ae:4c:f5:5c:10:27:f3:7d:a3:
                    c3:fa:c3:e9:d9:4d:f2:b3:db:d9:d3:dc:39:1b:f0:
                    5b:e9:fd:fd:12:13:75:b5:4e:97:5c:6c:84:83:63:
                    97:92:7d:97:d0:7a:4c:4d:73:0f:5b:13:b4:6b:4e:
                    7a:d9:2d:1b:0c:26:51:2b:84:03:d5:e9:98:09:8e:
                    fd:f7:08:3e:ab:5d:9a:6d:ac:68:b3:c2:ab:67:12:
                    c0:dd:f6:d3:43:34:0d:02:d0:ae:52:19:1e:20:ed:
                    66:af:3a:b6:71:40:aa:45:4e:41:f5:61:4f:a5:69:
                    1e:64:b4:87:30:2d:52:d2:31:a1:e0:c2:d5:4d:79:
                    43:f4:80:f6:05:18:d3:21:91:39:33:6c:65:c3:9f:
                    50:f4:ec:54:e0:72:01:30:09:7a:df:07:e7:d4:18:
                    f1:9f:9c:5a:60:9c:70:d9:9f:b6:54:57:3e:5c:7a:
                    2a:a0:35:ef:19:00:00:15:1a:b2:3d:43:53:1b:f5:
                    6d:cc:a6:fb:75:f0:36:e4:d6:9e:63:a1:7e:99:75:
                    0c:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:8F:4B:02:66:24:F3:FD:F5:46:D7:A0:F6:2A:D8:1F:47:25:68:8B
            X509v3 Authority Key Identifier:
                keyid:D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:34:44:ba:cf:ba:d3:16:0b:11:bf:88:1b:d9:aa:96:5b:8a:
         7c:22:13:36:69:2a:6f:5c:60:89:08:52:05:18:0d:b5:68:0f:
         33:b2:37:4c:19:9c:20:e6:4b:2f:d1:da:cb:d7:1d:65:cd:1c:
         67:f2:ca:2d:28:f9:d1:81:24:12:72:82:45:b6:e6:70:80:31:
         b7:69:ff:7a:e4:94:e7:2e:e7:f4:92:94:cd:cc:2c:c9:d1:2b:
         04:38:82:4f:66:bc:5e:5f:bd:3c:4b:54:fb:bc:b4:cc:32:d3:
         3c:16:a8:82:b8:0c:f4:38:a5:5f:cb:ae:a5:7d:c5:8e:42:83:
         21:e3:24:cc:e0:9b:25:ee:7a:0a:b0:57:02:df:cc:18:28:53:
         62:64:dc:e7:c2:7f:6c:95:c5:7f:d4:0e:37:68:38:19:fc:1a:
         46:4e:72:c7:8e:43:a0:86:a5:64:cf:57:78:2d:e1:13:96:64:
         09:35:d7:64:62:29:7b:d4:9f:64:b7:0f:9a:ac:14:b8:3f:a6:
         49:f8:1b:12:4b:82:69:6a:5b:6a:18:7c:54:1d:16:e4:67:49:
         f6:aa:d6:d8:1b:32:e8:e3:dc:e6:75:a9:e5:41:c8:56:46:fd:
         46:f8:22:b9:4f:c5:9e:30:fe:2c:42:ac:6e:2c:f7:3d:08:2d:
         d7:22:09:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:32 2025 by rpki-client