Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
File:                     iQH2c8aw_4g16gL67bpbSc8UIk4.mft (raw, json)
Hash identifier:          qie1DKgjFNfyqfbLIFJhX/i4WYT54U+Btltc89p60dQ=
Subject key identifier:   6F:B5:1E:A3:A1:08:36:94:90:EE:37:F5:D4:86:AA:B9:76:21:67:2F
Authority key identifier: 89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
Certificate issuer:       /CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Certificate serial:       01987306ADE1CFD642AFB055873D8862F0BE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
Manifest number:          0CB5
Signing time:             Mon 04 Aug 2025 03:01:14 +0000
Manifest this update:     Mon 04 Aug 2025 03:01:14 +0000
Manifest next update:     Tue 05 Aug 2025 03:01:14 +0000
Files and hashes:         1: LwODeFlTbNm331VlQw3cZjyD1Sg.roa (hash: 6xKklCkI+s1DbuNSCG9T6RXJeAeTq1fLNQfBDhNCOAU=)
                          2: iQH2c8aw_4g16gL67bpbSc8UIk4.crl (hash: Kt5r9eJrUiDouBXHL5G6NWzrQ/VejwAO1/eSY6Krhpc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:06:ad:e1:cf:d6:42:af:b0:55:87:3d:88:62:f0:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
        Validity
            Not Before: Aug  4 03:01:14 2025 GMT
            Not After : Aug  5 03:01:14 2025 GMT
        Subject: CN=6fb51ea3a108369490ee37f5d486aab97621672f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:51:d1:14:68:85:47:55:a5:87:34:7b:1c:62:
                    6d:ca:28:3b:8c:94:04:9a:6d:22:97:b1:de:8e:a2:
                    b1:0a:7e:e5:25:8c:ae:e2:2b:67:df:19:6e:a1:fb:
                    f9:80:cc:f8:b3:b4:a0:0f:22:b1:01:9b:d2:2a:1d:
                    47:75:00:fe:50:94:85:a7:f6:04:73:cc:2d:0d:10:
                    29:fa:96:33:8a:df:c1:81:f2:96:a9:5e:60:27:ec:
                    d6:70:ef:12:17:ff:d5:12:0d:71:be:28:87:b3:02:
                    2d:5b:53:0f:07:9a:ae:b7:85:26:82:f5:0a:14:50:
                    0e:0e:8d:eb:a8:2f:01:32:df:65:74:16:68:09:65:
                    f8:e9:54:fe:3b:d5:37:cb:24:05:a5:48:42:93:f7:
                    30:09:2b:9a:92:1d:b5:d0:f9:bf:61:af:38:2e:d7:
                    09:a0:1b:c0:43:6c:48:e6:f4:25:a0:33:8a:91:a2:
                    28:a4:e4:99:3d:5a:69:e8:68:ac:01:66:9b:cf:97:
                    61:4d:01:c4:f4:30:c1:52:4a:c9:e8:3f:65:4f:2e:
                    9c:69:86:19:f0:94:02:1a:2b:ac:71:10:97:a1:65:
                    fd:4b:41:3f:33:f5:83:b2:e5:d8:e8:3e:75:1b:71:
                    e3:62:dc:ed:c0:3b:49:a4:dc:62:dc:4d:f3:c3:4e:
                    cc:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:B5:1E:A3:A1:08:36:94:90:EE:37:F5:D4:86:AA:B9:76:21:67:2F
            X509v3 Authority Key Identifier:
                keyid:89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         98:e6:a4:34:40:02:20:8c:a1:df:24:bb:b9:97:51:c4:8c:ad:
         4b:de:6c:f2:ad:a6:2d:76:90:8e:cd:da:85:62:b6:02:29:78:
         aa:86:61:6c:e3:1a:aa:b8:e8:70:1d:bb:1d:ee:bd:85:54:2f:
         9f:77:68:b6:f3:9f:aa:fb:65:eb:07:c5:84:65:ce:ad:99:81:
         58:68:b8:1a:23:41:aa:c0:cc:a8:a0:41:e3:46:f2:d0:4b:3b:
         52:9d:39:7b:f3:34:90:20:81:ac:fa:16:6c:79:20:41:92:e3:
         0e:a1:b4:2d:81:01:28:9d:17:99:99:a4:57:8e:fa:34:aa:58:
         65:17:51:f3:aa:7b:36:12:36:13:cc:50:c6:42:bc:c1:ea:46:
         ae:e9:51:50:b9:10:30:b6:e6:2b:a0:1c:6e:88:7d:fb:3c:78:
         a1:80:7e:f1:26:aa:dc:c2:a6:32:d2:08:b6:3b:8d:61:5e:75:
         f0:f7:c3:cd:9b:f0:f7:af:a2:4b:c4:4d:0d:43:13:42:c9:51:
         d7:7d:b8:03:49:0e:5a:bf:e8:f7:9e:2a:a5:90:e0:0c:ad:6d:
         be:25:17:5a:11:82:ea:a0:6e:1e:25:22:1e:cc:bc:71:7e:e1:
         86:0a:1b:4c:4e:72:7f:a6:38:ed:9c:b1:3d:05:ca:82:b4:c0:
         b5:37:ba:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:31 2025 by rpki-client