Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File:                     hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier:          e28cYdomchttIqWAiP38OnnuNweI5OSMWnJgYgRH2No=
Subject key identifier:   80:00:9D:E0:31:49:3E:76:85:60:4B:3F:31:79:5E:03:81:75:FA:EF
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer:       /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial:       0197752DBFEC313FB15B1078BC10F55B7BA3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number:          0A84
Signing time:             Sun 15 Jun 2025 20:00:21 +0000
Manifest this update:     Sun 15 Jun 2025 20:00:21 +0000
Manifest next update:     Mon 16 Jun 2025 20:00:21 +0000
Files and hashes:         1: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: lt6zZyLvzTy0COVOMssYcdeLBahoIa5tqhd7GaV6L2c=)
                          2: wWq59skVXk0ZG4IFLK9dggmPZBc.roa (hash: G7C47jomjQ8yRWntSox+zS/AjFvrINeu+2AEHacLP1Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 20:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:75:2d:bf:ec:31:3f:b1:5b:10:78:bc:10:f5:5b:7b:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
        Validity
            Not Before: Jun 15 20:00:21 2025 GMT
            Not After : Jun 16 20:00:21 2025 GMT
        Subject: CN=80009de031493e7685604b3f31795e038175faef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:44:34:90:7b:94:81:8b:b7:fd:7c:0a:5e:69:
                    4c:02:a7:d5:aa:72:91:13:37:a7:e4:ad:bd:ef:33:
                    bf:ab:a4:78:ab:d6:64:02:6c:e5:47:9d:cb:98:07:
                    0d:ec:5e:e4:78:e9:d6:2d:0a:f1:94:3e:61:92:48:
                    bf:1f:1b:56:c5:f7:a2:48:b8:b6:9e:03:c2:0e:94:
                    46:92:25:a3:2b:63:10:e3:98:d3:f4:60:a9:bf:c7:
                    e7:db:54:c2:09:6c:6d:b7:a9:ca:37:1d:f6:ed:ee:
                    3b:d8:34:d0:00:7e:21:20:46:56:f5:21:40:3d:c4:
                    18:40:ec:fb:c4:34:5c:40:d2:b6:9c:b8:03:30:34:
                    c2:47:17:fc:9a:c4:11:bc:ca:98:37:b2:2e:7b:f8:
                    88:e3:e7:c2:f1:26:31:4c:14:ee:aa:a0:84:48:88:
                    ba:f3:52:2f:8a:15:38:12:1b:b1:40:a6:cd:88:ba:
                    d8:cd:c0:e0:e8:63:48:9b:ee:4e:4f:16:cd:fd:f3:
                    58:59:ab:e9:ac:e2:31:0b:8e:c2:8f:44:36:73:35:
                    9c:df:3d:d8:a0:c8:8c:d0:5c:c5:4e:f7:65:db:d7:
                    42:bd:51:8d:90:34:11:e0:5e:a2:77:26:c7:1b:46:
                    85:e1:a1:f8:a8:9f:9e:65:a5:1b:6a:9d:04:72:06:
                    2f:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:00:9D:E0:31:49:3E:76:85:60:4B:3F:31:79:5E:03:81:75:FA:EF
            X509v3 Authority Key Identifier:
                keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:01:a7:92:d0:8f:e8:02:74:2b:6b:75:84:f5:ce:b0:33:80:
         18:59:65:04:18:fd:71:e6:0f:4a:ae:fb:60:41:f5:40:a5:b1:
         79:3d:88:87:a2:1f:15:1a:58:b5:9f:8d:cf:d2:61:da:94:eb:
         ff:7c:cd:2e:9d:6a:6e:17:63:8e:0e:c1:86:72:a3:d6:5d:20:
         7b:b7:9a:00:6a:ca:8c:78:62:4f:52:92:cb:c7:1d:ad:f8:7b:
         f8:68:ee:0b:6b:81:6c:86:b5:4b:af:5d:e0:44:2d:d4:ce:3f:
         52:06:d0:9d:27:e5:45:c8:9b:a8:bb:60:49:a4:9a:6a:7a:21:
         42:c5:e4:95:b9:06:64:bf:47:fa:e1:8d:3f:58:94:9d:c2:67:
         eb:db:0a:ef:00:01:59:f8:40:5a:fb:a7:fc:e8:b0:66:c4:07:
         6f:f0:d9:58:57:1b:e9:5b:7b:da:a5:15:da:69:10:8d:a7:dc:
         e8:3d:be:10:26:a2:44:2b:6d:27:07:03:9e:12:84:f3:e6:5f:
         a6:a2:1a:a8:2a:92:65:84:fb:d4:ee:d7:33:e1:3f:91:60:c1:
         93:66:9f:de:fe:94:0f:9d:ac:60:0b:c9:47:f9:11:f7:6a:aa:
         b6:3a:f5:a3:3c:3b:53:98:6c:6d:42:b1:6a:8e:07:59:bc:86:
         5f:0e:e3:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd1Lb/sMT+xWxB4vBD1W3ujMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OWIzNjAwZmQ3MzhlNjk4ZDEyZmVmMjBlMTA2ZTZhOTRl
M2I2NzQwHhcNMjUwNjE1MjAwMDIxWhcNMjUwNjE2MjAwMDIxWjAzMTEwLwYDVQQD
Eyg4MDAwOWRlMDMxNDkzZTc2ODU2MDRiM2YzMTc5NWUwMzgxNzVmYWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UQ0kHuUgYu3/XwKXmlMAqfVqnKR
Ezen5K297zO/q6R4q9ZkAmzlR53LmAcN7F7keOnWLQrxlD5hkki/HxtWxfeiSLi2
ngPCDpRGkiWjK2MQ45jT9GCpv8fn21TCCWxtt6nKNx327e472DTQAH4hIEZW9SFA
PcQYQOz7xDRcQNK2nLgDMDTCRxf8msQRvMqYN7Iue/iI4+fC8SYxTBTuqqCESIi6
81IvihU4EhuxQKbNiLrYzcDg6GNIm+5OTxbN/fNYWavprOIxC47Cj0Q2czWc3z3Y
oMiM0FzFTvdl29dCvVGNkDQR4F6idybHG0aF4aH4qJ+eZaUbap0EcgYvwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIAAneAxST52hWBLPzF5XgOBdfrvMB8GA1UdIwQY
MBaAFIabNgD9c45pjRL+8g4QbmqU47Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUt
NDI0M2U4OGJkNzZjLzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUtNDI0M2U4OGJkNzZj
LzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGQGnktCP
6AJ0K2t1hPXOsDOAGFllBBj9ceYPSq77YEH1QKWxeT2Ih6IfFRpYtZ+Nz9Jh2pTr
/3zNLp1qbhdjjg7BhnKj1l0ge7eaAGrKjHhiT1KSy8cdrfh7+GjuC2uBbIa1S69d
4EQt1M4/UgbQnSflRcibqLtgSaSaanohQsXklbkGZL9H+uGNP1iUncJn69sK7wAB
WfhAWvun/OiwZsQHb/DZWFcb6Vt72qUV2mkQjafc6D2+ECaiRCttJwcDnhKE8+Zf
pqIaqCqSZYT71O7XM+E/kWDBk2af3v6UD52sYAvJR/kR92qqtjr1ozw7U5hsbUKx
ao4HWbyGXw7jnA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 01:23:07 2025 by rpki-client