Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
File:                     C0ojfRF9934LiqUS9vJfsgf5orE.mft (raw, json)
Hash identifier:          7f/teFflruMHKHd2cuqqUJNgtXOA99FvsUF5H162iuQ=
Subject key identifier:   99:BE:1A:7A:98:8D:54:4B:72:99:EC:AE:2A:6E:9B:28:44:9E:B8:6D
Authority key identifier: 0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
Certificate issuer:       /CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Certificate serial:       01987FE713785699F30E1DE8FD40E861B87B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
Manifest number:          11B8
Signing time:             Wed 06 Aug 2025 15:01:46 +0000
Manifest this update:     Wed 06 Aug 2025 15:01:46 +0000
Manifest next update:     Thu 07 Aug 2025 15:01:46 +0000
Files and hashes:         1: C0ojfRF9934LiqUS9vJfsgf5orE.crl (hash: x/YitDdPiySX8ZjwcOKIBkR8P+ppf4H2XzUZVTYnvN8=)
                          2: ubaYGhsK3un9FzpeOuJImEsVY0k.roa (hash: GKSurghCGTsvWWfo6kF8DtoCXANGJM6Q52lyK44WE3w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 14:26:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7f:e7:13:78:56:99:f3:0e:1d:e8:fd:40:e8:61:b8:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
        Validity
            Not Before: Aug  6 15:01:46 2025 GMT
            Not After : Aug  7 15:01:46 2025 GMT
        Subject: CN=99be1a7a988d544b7299ecae2a6e9b28449eb86d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:15:39:53:f6:7c:5c:6c:c7:6f:96:5d:20:67:
                    e1:13:44:42:f2:48:c1:cc:35:d0:22:1e:5c:39:6c:
                    19:04:a7:99:46:b3:a6:fd:4b:0f:f1:0d:07:59:58:
                    f8:6f:f2:8f:c7:a3:65:ff:f8:e8:38:d2:7e:e7:68:
                    05:e7:50:f8:57:31:5b:46:36:f0:b2:03:54:fa:2e:
                    56:16:05:be:76:37:b0:77:90:6f:f4:cf:bf:a5:fe:
                    a1:9b:00:7c:62:42:33:51:49:a7:79:09:c9:ab:60:
                    68:d1:81:ad:3b:34:93:bb:c2:00:3b:50:1b:a0:a7:
                    78:0a:21:89:76:3d:a8:41:19:1c:20:6e:81:fb:8a:
                    58:6d:0e:63:1f:01:81:90:f8:d7:b5:c5:c7:cc:cb:
                    82:d2:15:5b:22:40:cd:de:95:a9:a4:03:89:ae:91:
                    ea:be:79:1b:0e:83:75:4d:a3:f4:7f:15:bb:97:95:
                    fe:50:0f:bf:3c:dd:3a:71:d2:bc:32:1a:ff:79:4e:
                    1a:9b:f3:99:79:6a:89:8f:e8:a6:8b:1a:c3:e1:9c:
                    47:39:f8:f2:8e:1a:ff:5c:41:27:03:66:a5:fb:00:
                    e4:67:41:f5:e3:d5:89:36:6e:46:6d:90:ad:7d:d1:
                    3c:1d:7b:5e:8f:82:0f:05:e9:05:ab:ea:9e:39:74:
                    94:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:BE:1A:7A:98:8D:54:4B:72:99:EC:AE:2A:6E:9B:28:44:9E:B8:6D
            X509v3 Authority Key Identifier:
                keyid:0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:87:76:7d:6a:06:c2:b5:39:ee:dd:6e:1c:76:36:82:c5:4a:
         19:05:f0:52:cc:47:96:44:37:3e:e7:a7:4d:8f:d3:96:a8:c6:
         ae:13:e7:bf:2a:fa:e9:aa:80:e6:3d:49:88:ef:82:4e:23:73:
         67:53:3b:2a:7f:2c:bb:7a:0b:36:38:3c:30:ea:1a:34:d2:2d:
         b9:92:42:52:79:8e:96:62:c8:3f:42:94:31:24:5a:a8:2a:6a:
         a4:64:76:0c:b8:25:cd:6e:15:06:14:ab:2f:34:7e:1a:60:64:
         6b:d4:45:2b:75:0d:c0:54:7e:a3:6d:f0:86:82:70:64:5a:d0:
         09:4c:de:a8:1c:2d:93:76:ef:cc:f7:88:fd:a6:4b:dc:29:c8:
         f3:b5:e2:67:9a:cf:86:d7:ff:91:39:b9:04:97:db:c1:71:0b:
         2f:38:ff:66:c6:1b:c3:33:76:c5:c4:30:15:76:35:3e:8e:62:
         df:02:6a:c9:60:98:e0:38:a2:40:65:7a:02:20:17:28:34:67:
         57:fb:0c:c8:d1:06:05:a5:b1:7f:a4:64:4c:61:58:b0:78:30:
         a9:04:2a:74:ba:b7:ca:f4:1f:d1:ca:b8:bf:82:17:97:70:46:
         21:92:9f:2e:88:c9:d2:bf:2a:ee:bc:b9:13:52:76:b1:52:29:
         88:74:bb:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:32:10 2025 by rpki-client