Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File:                     4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier:          BN1i9vpC9feYCfWkkTzTGIFsd8a+k8Nb/6VZirmY7Lw=
Subject key identifier:   94:37:EB:3C:3A:B4:AE:8C:AE:7E:B0:13:2D:7E:6F:B3:2D:AD:3F:BE
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer:       /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial:       01987D1BEF0BC7BA02B48099CCAA96578CFE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number:          0EB0
Signing time:             Wed 06 Aug 2025 02:00:39 +0000
Manifest this update:     Wed 06 Aug 2025 02:00:39 +0000
Manifest next update:     Thu 07 Aug 2025 02:00:39 +0000
Files and hashes:         1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: nleD5CkQB2/ftiYWnEQAvpbXK6iQNtRxUIGY1Q6s17U=)
                          2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 02:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:1b:ef:0b:c7:ba:02:b4:80:99:cc:aa:96:57:8c:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
        Validity
            Not Before: Aug  6 02:00:39 2025 GMT
            Not After : Aug  7 02:00:39 2025 GMT
        Subject: CN=9437eb3c3ab4ae8cae7eb0132d7e6fb32dad3fbe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:fb:37:24:3e:38:9b:01:ce:c0:4c:16:c6:5a:
                    a3:9b:8e:47:d6:2a:74:dc:dc:e9:48:ff:97:be:98:
                    bf:72:58:0e:30:2e:b6:fd:a9:ad:3a:c5:a5:a6:6e:
                    e7:54:c2:ab:ac:a4:d3:8a:75:eb:e1:50:32:ec:9f:
                    7e:4b:61:6e:37:b0:5a:a3:00:a9:42:0a:33:e2:4b:
                    6b:db:71:36:3f:89:e7:ff:31:80:ea:b9:9b:7b:6f:
                    83:d7:1c:58:ec:8b:a9:ba:00:5b:77:f0:aa:6e:1c:
                    35:74:db:2a:93:c8:63:f8:b1:22:65:c5:c2:31:d2:
                    24:c8:21:ae:13:e2:c6:90:ff:fe:3a:2b:9a:d7:cc:
                    80:89:ed:40:c4:45:da:9a:69:3d:fe:65:50:64:ca:
                    eb:7d:b5:3d:63:37:2b:84:dc:b3:fc:77:68:db:51:
                    fb:74:a7:40:89:92:a4:e8:10:23:cd:57:22:25:ce:
                    cd:09:66:78:04:b7:b5:e6:bf:ec:5c:b7:1b:2e:19:
                    87:da:4b:ac:e0:c2:82:3d:d8:dd:60:e6:2c:3d:b7:
                    61:3f:44:c5:bb:e8:9f:29:2b:bf:ac:43:18:a2:3d:
                    1e:f4:09:e4:ad:25:30:b8:7f:9e:bb:3f:ac:24:9b:
                    91:f2:3d:4b:0d:e3:80:d0:ae:5e:5b:27:63:23:88:
                    49:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:37:EB:3C:3A:B4:AE:8C:AE:7E:B0:13:2D:7E:6F:B3:2D:AD:3F:BE
            X509v3 Authority Key Identifier:
                keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:2a:f4:34:13:ff:b1:5c:b6:27:fe:d6:e6:e4:1a:f6:a8:1c:
         b8:9e:85:94:b4:22:44:16:ed:3f:c9:77:bb:0b:ca:61:eb:2c:
         02:a1:5a:d1:91:a3:a6:7a:a2:06:83:f5:e3:a2:4d:b1:5d:b1:
         6a:9d:88:79:16:2b:5d:d8:ce:2c:28:c1:ff:f6:90:a3:1e:e4:
         b8:3c:ff:f1:35:30:08:1c:0d:4f:50:0f:8b:c4:6c:83:56:55:
         38:bf:21:d2:65:e9:c1:85:5f:28:28:91:91:61:14:a2:71:f8:
         2c:e2:68:aa:35:8a:c8:ea:93:5d:17:85:63:b5:dc:5f:7f:19:
         0b:65:b1:69:6e:87:b3:2f:7e:1f:fc:17:e5:8c:b4:93:a8:b1:
         b6:c0:c8:16:75:27:9f:3d:0f:31:4a:fe:d6:65:ab:3b:69:23:
         c0:8b:1f:a3:9d:23:b0:fb:56:66:c3:26:90:92:06:5b:c8:b0:
         79:ac:68:b8:36:13:39:9a:16:db:13:b0:0c:20:df:f0:5a:0c:
         62:86:6d:71:42:bf:a1:58:c2:71:f7:34:68:dd:8b:e2:81:ef:
         89:5b:b1:21:28:14:f2:c4:70:aa:42:07:94:77:6f:e6:0b:7c:
         26:21:f3:94:95:2c:e2:8c:9e:c9:a6:a6:3f:d4:3c:36:1e:86:
         c3:9f:cf:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:15:53 2025 by rpki-client