Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File:                     OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier:          2hA4kG8JbPvL+VzX4N2F30kSlI9rcZNwgXdPv61WsBA=
Subject key identifier:   0B:D3:93:2F:04:CA:19:67:C0:EE:97:42:74:D0:58:B7:8C:C8:E8:EC
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer:       /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial:       01988F58F69D5B1D507B299EEFEFEEA2385C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number:          162F
Signing time:             Sat 09 Aug 2025 15:00:28 +0000
Manifest this update:     Sat 09 Aug 2025 15:00:28 +0000
Manifest next update:     Sun 10 Aug 2025 15:00:28 +0000
Files and hashes:         1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: /XlCNucfq3w7youshDBokOYD0S1hRMYElf9nPJrL1LU=)
                          2: THEjTsFNcxDVZEOdq3GfXqXC4zc.roa (hash: x5CBmcScUC+Y/Wuw5WgYT+dNtpSqSEasQSVqzZJLzc4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 14:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8f:58:f6:9d:5b:1d:50:7b:29:9e:ef:ef:ee:a2:38:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
        Validity
            Not Before: Aug  9 15:00:28 2025 GMT
            Not After : Aug 10 15:00:28 2025 GMT
        Subject: CN=0bd3932f04ca1967c0ee974274d058b78cc8e8ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fd:88:c6:1c:e1:5d:f9:36:be:7a:f9:cf:2f:59:
                    b6:3d:e8:4d:43:6f:09:e7:a8:51:70:6e:9d:cf:75:
                    36:11:c7:8f:4b:2e:e6:0e:5f:3e:37:64:db:ca:09:
                    19:77:69:c8:fd:9b:23:16:5b:f0:c1:8d:9e:9a:dc:
                    08:8a:d9:a7:46:56:41:c6:fb:50:e2:fa:ad:77:15:
                    aa:79:98:b0:a0:4e:94:f9:cc:e2:d6:9c:6f:68:6c:
                    e5:80:ca:ba:19:f0:b0:19:1e:43:2b:8c:5a:22:74:
                    f6:b5:f7:64:a1:d2:79:fe:3e:9a:25:23:7f:76:4a:
                    10:35:4f:96:ee:98:22:35:c6:f6:40:8e:69:e3:a1:
                    fa:89:1b:d3:e7:6b:3c:63:8a:12:a4:cc:9e:d5:c8:
                    d2:af:a8:9f:77:e9:cc:bc:f4:47:a4:f3:a9:d1:b6:
                    ef:32:01:a4:8e:e9:ac:23:8e:af:08:85:a3:55:3d:
                    aa:a4:54:ec:45:ad:62:e7:bb:ff:d0:de:18:2a:24:
                    cd:e7:db:4e:85:0b:8b:a7:8a:81:24:75:dd:f9:a9:
                    11:23:52:c8:ac:e6:db:d2:dc:9b:f0:46:00:62:6b:
                    26:0e:4c:77:d8:35:d8:d9:5a:2e:d8:e2:dd:d0:5c:
                    4c:0f:09:77:79:59:64:69:c0:42:5b:ca:52:b3:1f:
                    6b:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:D3:93:2F:04:CA:19:67:C0:EE:97:42:74:D0:58:B7:8C:C8:E8:EC
            X509v3 Authority Key Identifier:
                keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:b1:ff:0f:92:ba:03:3c:c1:51:72:4e:bd:68:f7:60:0c:94:
         5b:95:f8:de:c7:2e:e6:b6:b0:41:3b:05:41:df:ca:72:91:48:
         53:ea:34:52:74:8a:da:0c:dd:c5:4e:a2:48:6f:82:06:05:eb:
         b5:0a:5e:8b:32:13:2e:93:c4:03:fc:25:65:88:60:d5:49:fc:
         0c:a9:7c:a7:71:39:b0:48:ba:b5:d3:4c:b8:ff:22:2b:43:c6:
         0c:1d:84:72:8b:ee:4d:74:3a:42:17:6a:1b:18:a3:54:da:a8:
         ac:71:09:82:07:ff:6f:25:5c:dd:c1:e7:a0:76:00:d3:e6:2f:
         7b:da:77:b4:69:02:06:62:8e:45:2d:89:6b:0d:37:76:bd:f2:
         8b:8f:f3:83:c5:34:b4:fe:ea:c7:a7:4a:fd:06:71:9c:4c:91:
         11:8c:1d:b0:89:b1:8f:7c:e1:6c:23:24:13:7a:ec:08:da:47:
         62:e8:26:08:e7:08:25:55:15:1f:0d:88:01:b4:65:11:d7:a8:
         eb:61:3c:52:e6:76:da:25:77:0e:d6:27:5d:9e:10:6a:da:2b:
         c8:c6:b7:dc:f2:98:aa:38:e0:ba:46:98:51:d0:6c:a8:45:4b:
         4e:ae:30:3e:ad:30:6f:1a:f8:5b:f9:19:17:bf:2f:2f:b1:d2:
         ea:53:68:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:38:49 2025 by rpki-client