Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File:                     00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier:          eCUfOFlQbVzpeSRT56GAojuN6eKVwgdeL7dC3wIi5h8=
Subject key identifier:   5D:4F:3D:27:81:A5:A6:F4:11:4F:EF:43:36:A1:BF:4D:44:60:57:3C
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer:       /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial:       01987419043AA1F57CC4D5D2BF26DAAB0D81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number:          01BF
Signing time:             Mon 04 Aug 2025 08:00:53 +0000
Manifest this update:     Mon 04 Aug 2025 08:00:53 +0000
Manifest next update:     Tue 05 Aug 2025 08:00:53 +0000
Files and hashes:         1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: M6tfmeCv7kZ2h+P20ZeIvhHri8cxnRR4miDWDZ6Al20=)
                          2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:19:04:3a:a1:f5:7c:c4:d5:d2:bf:26:da:ab:0d:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
        Validity
            Not Before: Aug  4 08:00:53 2025 GMT
            Not After : Aug  5 08:00:53 2025 GMT
        Subject: CN=5d4f3d2781a5a6f4114fef4336a1bf4d4460573c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:98:05:aa:1a:b4:26:ec:b5:7c:2d:05:c0:18:
                    fe:c8:da:84:f0:34:e5:fb:5d:b6:e3:a5:9b:a9:ad:
                    96:44:e7:ca:ff:a6:0f:6f:6b:90:14:cb:19:4c:3b:
                    50:36:2c:41:52:d8:d3:1e:86:c7:eb:d4:e5:1d:5c:
                    4c:11:d5:41:04:4d:3c:dd:7a:96:ad:55:4e:bc:e5:
                    d5:16:28:e4:26:d7:bc:f9:a5:09:1b:b6:10:81:31:
                    12:76:ba:79:84:a0:eb:80:0f:78:2a:b2:bd:d9:54:
                    93:d8:b5:45:09:09:93:c3:d0:7a:0c:10:19:38:65:
                    8f:d1:48:3e:36:d8:0b:de:63:4e:c0:71:57:49:b0:
                    aa:b8:fc:e3:57:3d:cc:0b:e6:e5:f4:05:42:e7:db:
                    6f:d1:5e:7f:bf:64:84:9d:4b:e1:f1:fd:b0:cd:6d:
                    a6:95:23:ac:bc:ae:63:10:46:ee:cd:7c:1a:81:68:
                    bf:3b:06:64:eb:f3:fb:98:9c:2b:af:3d:ba:28:95:
                    a3:11:87:3b:79:18:93:0b:d2:2c:d7:e8:56:44:13:
                    23:07:db:82:de:04:8f:87:ae:2b:e2:9f:35:60:f9:
                    b8:08:a1:26:96:27:21:f6:24:34:26:d6:d8:67:9d:
                    11:4e:ea:58:46:11:8f:35:64:92:62:8c:a5:78:13:
                    6f:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:4F:3D:27:81:A5:A6:F4:11:4F:EF:43:36:A1:BF:4D:44:60:57:3C
            X509v3 Authority Key Identifier:
                keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:47:32:48:ed:a2:e1:ed:9a:fb:4b:03:ba:b0:41:f9:ca:ca:
         2a:bc:94:b0:9b:55:7e:db:23:f5:4b:63:67:6b:f7:55:94:63:
         f8:33:e5:69:6c:96:96:54:86:3b:05:f2:a1:28:23:20:a8:b5:
         be:c3:84:3c:58:20:cd:7e:9c:50:f5:36:17:59:f2:68:ab:10:
         ef:45:74:87:5f:67:39:f2:17:93:a2:f1:05:ba:e5:64:f5:bb:
         8c:39:c6:7e:13:1c:52:d6:18:5c:e5:3d:7c:a2:03:35:21:60:
         1d:83:97:aa:39:da:8d:ff:7e:fb:c8:ec:c0:56:4d:07:13:1f:
         13:7b:66:c3:ec:6d:9b:b7:77:a3:35:8a:a1:40:67:83:8e:d4:
         f6:4f:11:6d:b9:3d:0b:d5:ed:97:32:e2:ea:e0:bb:5e:e1:80:
         23:ef:4b:e3:52:ec:b6:d8:30:8f:f9:1d:65:8b:cf:ee:23:19:
         44:47:21:00:d8:9d:24:5d:72:d2:ad:3a:ca:95:14:d2:de:f6:
         3d:f7:68:f3:8f:26:ed:a7:99:3c:ad:8c:f7:2a:d3:3c:16:2f:
         7b:98:18:8a:8b:cd:41:44:09:5e:31:03:33:0a:f8:76:53:90:
         77:25:b4:d2:d5:41:2a:c8:1b:58:ca:8b:a4:76:e1:2c:f1:d9:
         4d:e5:86:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:49 2025 by rpki-client