Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File:                     hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier:          iDlSJFtOxPjU4ctNA6QbhlWweXSlaOIm0nvQO4t6uBM=
Subject key identifier:   5F:EB:06:DD:C3:FB:60:E6:91:7C:B2:FE:81:FD:63:3E:CE:3A:CA:81
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer:       /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial:       0197790A963C5AD731C6BEB2F28926F745A4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number:          0A86
Signing time:             Mon 16 Jun 2025 14:00:26 +0000
Manifest this update:     Mon 16 Jun 2025 14:00:26 +0000
Manifest next update:     Tue 17 Jun 2025 14:00:26 +0000
Files and hashes:         1: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: cU0O7cj64Uv5JI05E3EHLuSkEF2S/+p5GjqY0vIk4vA=)
                          2: wWq59skVXk0ZG4IFLK9dggmPZBc.roa (hash: G7C47jomjQ8yRWntSox+zS/AjFvrINeu+2AEHacLP1Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 14:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:0a:96:3c:5a:d7:31:c6:be:b2:f2:89:26:f7:45:a4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
        Validity
            Not Before: Jun 16 14:00:26 2025 GMT
            Not After : Jun 17 14:00:26 2025 GMT
        Subject: CN=5feb06ddc3fb60e6917cb2fe81fd633ece3aca81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:ab:e3:bb:c8:ee:7c:30:ae:bc:b4:4e:64:fc:
                    83:66:e1:f5:32:b9:38:ec:d7:7f:b3:cd:59:2f:76:
                    85:45:bc:19:29:25:c4:3f:5d:f7:67:6c:d3:fb:b5:
                    80:4c:1c:02:4b:9c:36:23:99:7e:cd:85:a9:a9:b0:
                    71:33:8a:55:4e:2c:0b:f7:05:e8:50:39:9d:ca:12:
                    db:88:bc:45:a7:f8:16:f2:b0:3c:65:0d:75:d7:6c:
                    bb:81:e2:03:6a:32:a9:e1:27:85:16:a3:2c:f8:1c:
                    fb:07:f9:5a:2e:b8:78:cf:38:68:35:8f:12:9a:47:
                    e3:42:6d:d3:e5:b2:6e:d5:ed:fa:09:a3:e6:f9:c9:
                    34:86:5c:56:4c:e9:60:d0:18:85:f3:d4:b6:43:9a:
                    75:aa:05:7e:c4:ca:19:d1:c5:f2:3c:3b:f0:81:cd:
                    ba:68:52:26:51:67:1b:0d:ac:f0:19:1a:81:30:72:
                    1a:f0:08:8e:84:d9:53:6f:db:2d:0f:2d:ac:1f:35:
                    da:66:93:90:af:47:4a:aa:d6:35:96:6a:a4:d7:b7:
                    87:a5:af:1f:57:2e:88:19:ec:7d:b9:82:a4:98:0a:
                    5c:ef:b7:b1:06:85:34:41:87:a0:0b:0f:74:b7:47:
                    87:54:e4:95:4c:64:78:ce:e6:17:8b:8d:ac:57:25:
                    28:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:EB:06:DD:C3:FB:60:E6:91:7C:B2:FE:81:FD:63:3E:CE:3A:CA:81
            X509v3 Authority Key Identifier:
                keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:40:24:63:50:7f:b9:03:b5:be:17:7c:d9:7e:59:21:81:70:
         ca:4f:d4:7d:13:fc:9d:67:8d:98:a9:06:bc:b6:b6:b7:bf:c7:
         5f:35:d1:56:af:8e:18:5c:b5:c3:be:9c:96:9a:ea:9c:7d:03:
         9d:df:f5:7d:65:0c:6e:a0:ea:7b:fd:c0:2c:cc:80:5b:28:0f:
         39:93:ab:b0:8e:ed:fd:44:a7:7a:69:a9:14:52:a4:cc:93:0b:
         b6:1b:78:17:cf:0e:ee:60:82:b2:8f:98:6d:6c:5a:3f:90:4d:
         10:01:15:c8:67:fb:aa:fd:be:4c:cc:76:30:77:92:c2:d7:21:
         5e:b3:0f:16:2f:14:17:63:fc:85:df:e7:ce:97:1b:c4:ca:da:
         12:d0:c9:fd:ad:b7:b9:49:21:b5:28:f3:15:55:68:be:22:8c:
         80:42:ae:e0:54:cf:71:a9:0d:a5:be:2d:72:5b:d7:d5:6b:a7:
         17:84:0f:38:d0:84:92:35:ed:fc:bd:4b:99:a3:08:dd:23:e5:
         3f:70:0a:57:ec:77:3b:97:5e:b2:c5:b3:44:5c:04:b2:57:91:
         0e:60:62:44:77:35:e8:cf:4d:b4:5f:71:f1:3b:78:3c:54:7e:
         0f:f3:17:5e:68:b7:e5:87:d0:61:45:5c:56:f6:d4:73:9f:27:
         33:82:89:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd5CpY8Wtcxxr6y8okm90WkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OWIzNjAwZmQ3MzhlNjk4ZDEyZmVmMjBlMTA2ZTZhOTRl
M2I2NzQwHhcNMjUwNjE2MTQwMDI2WhcNMjUwNjE3MTQwMDI2WjAzMTEwLwYDVQQD
Eyg1ZmViMDZkZGMzZmI2MGU2OTE3Y2IyZmU4MWZkNjMzZWNlM2FjYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxavju8jufDCuvLROZPyDZuH1Mrk4
7Nd/s81ZL3aFRbwZKSXEP133Z2zT+7WATBwCS5w2I5l+zYWpqbBxM4pVTiwL9wXo
UDmdyhLbiLxFp/gW8rA8ZQ1112y7geIDajKp4SeFFqMs+Bz7B/laLrh4zzhoNY8S
mkfjQm3T5bJu1e36CaPm+ck0hlxWTOlg0BiF89S2Q5p1qgV+xMoZ0cXyPDvwgc26
aFImUWcbDazwGRqBMHIa8AiOhNlTb9stDy2sHzXaZpOQr0dKqtY1lmqk17eHpa8f
Vy6IGex9uYKkmApc77exBoU0QYegCw90t0eHVOSVTGR4zuYXi42sVyUolQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/rBt3D+2DmkXyy/oH9Yz7OOsqBMB8GA1UdIwQY
MBaAFIabNgD9c45pjRL+8g4QbmqU47Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUt
NDI0M2U4OGJkNzZjLzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUtNDI0M2U4OGJkNzZj
LzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWUAkY1B/
uQO1vhd82X5ZIYFwyk/UfRP8nWeNmKkGvLa2t7/HXzXRVq+OGFy1w76clprqnH0D
nd/1fWUMbqDqe/3ALMyAWygPOZOrsI7t/USnemmpFFKkzJMLtht4F88O7mCCso+Y
bWxaP5BNEAEVyGf7qv2+TMx2MHeSwtchXrMPFi8UF2P8hd/nzpcbxMraEtDJ/a23
uUkhtSjzFVVoviKMgEKu4FTPcakNpb4tclvX1WunF4QPONCEkjXt/L1LmaMI3SPl
P3AKV+x3O5dessWzRFwEsleRDmBiRHc16M9NtF9x8Tt4PFR+D/MXXmi35YfQYUVc
VvbUc58nM4KJxQ==
-----END CERTIFICATE-----
Generated at Mon Jun 16 23:08:15 2025 by rpki-client