Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
File:                     5fmFqUAlRIkU3qoXQiBzBDklE90.mft (raw, json)
Hash identifier:          d/9AxRqwnKVYlg5CZ4vgATNFAP9yzQy6Y1BIxUT6pA4=
Subject key identifier:   CF:B8:10:5A:97:57:F6:23:00:9F:C2:FA:D0:DE:36:95:28:78:17:1D
Authority key identifier: E5:F9:85:A9:40:25:44:89:14:DE:AA:17:42:20:73:04:39:25:13:DD
Certificate issuer:       /CN=e5f985a94025448914deaa1742207304392513dd
Certificate serial:       01987D8B21B6E104326996E15CF29C2253C2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
Manifest number:          01ED
Signing time:             Wed 06 Aug 2025 04:02:06 +0000
Manifest this update:     Wed 06 Aug 2025 04:02:06 +0000
Manifest next update:     Thu 07 Aug 2025 04:02:06 +0000
Files and hashes:         1: 5fmFqUAlRIkU3qoXQiBzBDklE90.crl (hash: oUoRlWYOW0UJ/i3hr2DtSJjM8Y8KXVTVcwJ3J5vhTLI=)
                          2: nAZJBZ6VvJoN3Mjanp3D7Pbl_-s.roa (hash: toI1tT2hR8zRYJnuO8W3FR+ZELFSDV5ej6CQ6AsxKnE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 04:02:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:8b:21:b6:e1:04:32:69:96:e1:5c:f2:9c:22:53:c2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5f985a94025448914deaa1742207304392513dd
        Validity
            Not Before: Aug  6 04:02:06 2025 GMT
            Not After : Aug  7 04:02:06 2025 GMT
        Subject: CN=cfb8105a9757f623009fc2fad0de36952878171d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:21:b5:75:9d:e3:5a:a9:81:ee:02:53:9e:5e:
                    6a:71:cb:0b:75:52:ff:ea:06:34:64:eb:e5:ba:0b:
                    35:2c:b6:31:36:5d:6e:2b:fc:74:0e:9a:2e:77:3b:
                    a1:3a:06:c5:d8:85:73:cd:59:7b:15:55:ee:d7:39:
                    09:6b:3e:4a:29:09:23:e2:5e:cd:25:87:88:e1:1b:
                    dc:80:f8:92:bb:0b:72:40:8e:5d:b3:ff:58:70:cb:
                    f9:d8:b5:b0:17:e1:2e:59:02:99:37:c1:22:b8:61:
                    9e:13:6e:70:9d:15:b8:5e:2e:d4:4f:d0:63:ac:6c:
                    06:da:d7:9c:ec:d2:41:6f:7f:3d:00:9d:47:53:d9:
                    be:20:6f:3d:c3:c7:9a:3d:a9:05:41:48:d8:36:2d:
                    74:48:80:cb:0e:36:1f:3a:ed:cf:ec:c4:86:c1:04:
                    6b:e7:7b:f1:9e:00:1f:20:4f:b2:ac:12:d5:a9:f4:
                    e3:bc:71:3f:7f:78:65:e3:37:ce:56:31:23:af:d8:
                    17:a0:94:33:8b:5c:0e:53:e9:31:ec:bd:9a:1d:f5:
                    7c:30:d8:c6:bb:15:e0:35:6e:c1:1f:da:f2:54:8b:
                    03:12:28:90:94:e8:16:1e:dd:43:bd:b6:ad:07:76:
                    22:9b:22:57:98:ca:78:e3:0b:4c:6f:4f:36:5f:54:
                    18:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:B8:10:5A:97:57:F6:23:00:9F:C2:FA:D0:DE:36:95:28:78:17:1D
            X509v3 Authority Key Identifier:
                keyid:E5:F9:85:A9:40:25:44:89:14:DE:AA:17:42:20:73:04:39:25:13:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:ef:77:a9:d7:3c:fc:59:5c:8b:06:0a:cd:93:94:35:ba:00:
         e0:39:d8:cf:a1:39:31:49:f8:54:e5:58:2c:f6:bf:79:85:b6:
         09:65:89:04:f0:3e:e0:f3:4d:30:0e:cf:8a:a8:c8:ba:c3:fe:
         47:93:51:47:64:08:4c:3d:c5:6f:69:13:fe:6b:bd:c0:bc:af:
         34:94:20:85:6b:a1:ac:01:93:65:70:f3:f2:1a:ca:cd:41:92:
         34:4f:22:30:32:ee:0d:48:84:b5:9f:33:9c:d1:33:8a:70:cf:
         10:19:25:30:ec:6a:fb:e7:ff:ff:e0:89:45:94:fc:94:dc:0a:
         74:c3:0f:45:8b:77:65:c9:26:60:10:d8:72:ba:0c:4d:0c:3e:
         26:15:c4:2a:cb:38:60:a5:38:37:d3:6c:f7:92:55:e7:05:61:
         db:b8:32:9b:01:6e:9a:5c:76:89:4c:aa:fd:87:47:a7:7d:88:
         a5:66:21:10:37:c3:d5:3d:95:80:0f:b7:bc:a9:17:2b:ae:85:
         bf:5a:d4:39:e7:88:0c:5e:48:ed:bc:2c:95:40:d2:b0:5c:56:
         17:c1:8a:ce:ae:f7:21:91:d3:f5:21:68:d5:e8:fc:d8:9a:58:
         b7:30:a9:98:ac:78:9f:f9:48:74:86:da:65:45:eb:ff:c6:4f:
         e7:c5:99:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:14:08 2025 by rpki-client