Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File:                     2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier:          QLlk9EukEctxoxwTnAuDmKDY7xnjtB9/Onx72Go1yfs=
Subject key identifier:   8E:6A:03:A6:9F:AB:6F:66:58:CF:54:A6:BF:A1:EA:BB:6B:E7:57:DF
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer:       /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial:       01988B105B08E5353320B2E565B38BE64741
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number:          0345
Signing time:             Fri 08 Aug 2025 19:02:41 +0000
Manifest this update:     Fri 08 Aug 2025 19:02:41 +0000
Manifest next update:     Sat 09 Aug 2025 19:02:41 +0000
Files and hashes:         1: 1vvIkvJGRy621vVPsoLS7KLp9WQ.roa (hash: AaLmkGEE5WFi/MsCmNoVGVjYg2GotUKYwJ8yvjW+a60=)
                          2: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: aCdZHx++3z/4Tnji8d/+3sdm61yraV/z4E6bEllAjHI=)
                          3: KLjjQzFk9GYkvqPEoe40SA-mXbg.roa (hash: 2jEymy+mMO9pWyCpodUhIwEZFiuwLfDEfoelvtg+xqA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 19:02:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:10:5b:08:e5:35:33:20:b2:e5:65:b3:8b:e6:47:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
        Validity
            Not Before: Aug  8 19:02:41 2025 GMT
            Not After : Aug  9 19:02:41 2025 GMT
        Subject: CN=8e6a03a69fab6f6658cf54a6bfa1eabb6be757df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:aa:13:0c:00:88:bf:dc:01:74:c1:0b:49:55:
                    72:57:e7:51:5d:c3:54:c9:b0:3d:d2:c0:86:48:ff:
                    67:37:67:d8:85:93:b2:ec:e1:19:89:4c:ee:70:57:
                    c5:78:3b:7d:52:01:ed:07:2c:97:31:12:e4:e4:a1:
                    22:25:02:63:e6:b3:38:05:b4:c9:7e:c7:93:ca:d2:
                    c8:64:05:4b:5c:48:4d:43:4a:c6:16:73:6a:f9:ab:
                    da:59:78:cc:89:91:90:8a:bc:c6:ff:40:d6:92:11:
                    49:29:57:60:b4:af:8a:c7:3b:2e:7a:6b:5d:c6:14:
                    89:9b:45:a0:e1:e8:c4:26:2d:d9:44:be:5a:ed:52:
                    16:e8:1b:5a:42:03:09:d0:9f:f9:40:a8:cd:2b:04:
                    83:b9:60:44:45:2a:d3:e0:e1:18:bf:f2:6e:bd:04:
                    58:02:47:ce:d6:e7:12:30:d6:85:a1:f7:f7:6a:cd:
                    6c:f1:ff:21:e8:ee:23:88:78:30:38:c8:ee:36:c8:
                    57:bb:0b:fa:4a:b6:ec:3f:1e:62:c6:42:a7:6b:48:
                    16:61:48:e1:90:8c:1c:ea:78:71:52:c9:b7:7b:fb:
                    64:62:a3:c7:30:d8:29:25:4a:30:85:6e:1a:00:8e:
                    66:b0:05:15:4f:53:4b:78:eb:ff:d8:54:3f:31:7f:
                    b9:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:6A:03:A6:9F:AB:6F:66:58:CF:54:A6:BF:A1:EA:BB:6B:E7:57:DF
            X509v3 Authority Key Identifier:
                keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:1d:be:63:7b:99:04:7f:61:8b:dc:4f:65:80:db:04:f5:87:
         f0:99:28:ab:19:8d:37:df:e5:48:a6:ad:f5:fc:6a:3d:5f:8a:
         00:98:a7:6f:6c:97:52:b4:2a:3a:a4:7f:1d:02:99:e5:5f:ac:
         3b:16:4c:62:c7:58:94:72:51:6c:19:af:76:0a:4a:9d:0c:2e:
         9f:72:14:b7:7b:7e:9a:31:87:84:df:e8:c7:cf:45:e9:6c:72:
         ed:48:00:01:53:5f:51:8f:a7:02:32:14:cc:24:a8:42:26:f9:
         18:5a:ea:cb:62:48:74:02:46:bc:30:4b:2c:4e:65:0e:73:5c:
         80:06:23:f1:e6:38:d7:d5:91:e3:9b:a7:a4:30:8b:11:bf:cd:
         86:b9:d7:6a:92:64:67:5a:e8:ef:a1:7c:9e:89:83:2e:f1:24:
         dd:a2:82:71:0c:d2:d6:b3:79:6c:8e:51:07:f5:7a:7e:fa:70:
         2f:65:9d:85:e1:13:49:e3:9d:0a:59:03:b9:c0:d3:54:c5:92:
         1d:d9:df:2e:13:ce:c0:36:64:53:31:75:de:07:29:19:3e:5d:
         b8:63:4a:c4:5d:72:ba:4d:2f:17:4c:97:3c:d5:ed:62:4e:87:
         9a:14:8b:c7:ed:c0:c5:ed:97:e7:e0:ed:56:dc:9a:cc:87:2f:
         c8:27:c4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:12 2025 by rpki-client