Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
File:                     aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json)
Hash identifier:          Kz/Pbz2xMJh+xmZkDZE4/ruoxndjnIEhfgU1rUmvBbI=
Subject key identifier:   09:70:66:C8:D2:6D:99:EE:3A:DE:97:17:D9:6C:21:C4:95:97:7D:54
Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
Certificate issuer:       /CN=6821c8ff0437f7edd829166fde03446f86109d80
Certificate serial:       0197B70ED6330A95EF6CA2BA4612AB3FB900
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
Manifest number:          15B8
Signing time:             Sat 28 Jun 2025 15:01:32 +0000
Manifest this update:     Sat 28 Jun 2025 15:01:32 +0000
Manifest next update:     Sun 29 Jun 2025 15:01:32 +0000
Files and hashes:         1: NmoeARNR5KlnZdBERWuM-iNzYM0.roa (hash: HgaWyfSju8BbiVq620WeDucyKoI/pqgp0CZAcN9HrcI=)
                          2: OxQUm2cc932_SbZHxUC7er0Sf-I.roa (hash: j3K3BKXe7Af0d19rliHQJv9FsfvecTZMNvSiBZonE64=)
                          3: ZH-i__Oj4SIwtAOHRRVv0u8J8eI.roa (hash: WEK6Mlk9pLflVadH6HQ/a95uE6G+8NUpMYALAx2797k=)
                          4: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: EwLm5522zXQi/gySzJc8DxoFSzWdYATdXdDftFtoycA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:0e:d6:33:0a:95:ef:6c:a2:ba:46:12:ab:3f:b9:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80
        Validity
            Not Before: Jun 28 15:01:32 2025 GMT
            Not After : Jun 29 15:01:32 2025 GMT
        Subject: CN=097066c8d26d99ee3ade9717d96c21c495977d54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:35:19:3a:90:33:63:a8:40:12:9f:35:0d:f6:
                    73:5e:61:7c:15:ce:52:a2:1b:98:10:68:d7:2a:51:
                    94:af:2c:f2:8e:8a:96:36:cf:82:fb:d2:84:7c:46:
                    66:fe:dd:f7:4f:0f:aa:b1:fb:af:61:2d:d8:76:e8:
                    9a:5b:a9:43:0b:4f:56:9a:ca:da:72:32:69:77:3f:
                    f6:90:3a:17:e8:32:ae:a7:bd:87:67:5e:3a:5e:d9:
                    96:3e:db:61:c5:af:85:f4:b5:f2:e7:91:db:2e:ae:
                    1d:10:86:7d:72:8d:61:8a:1d:f3:24:8e:84:9c:ab:
                    ac:57:a7:35:39:b9:aa:32:b6:53:a4:c8:ab:25:41:
                    38:6a:7f:13:b4:04:18:27:68:55:a8:a9:fb:ee:0d:
                    45:e4:99:19:70:83:d7:f2:be:30:86:07:84:66:1d:
                    39:46:25:10:ba:8e:7b:62:43:23:bb:e1:3a:08:0f:
                    09:db:3e:61:84:64:a9:8a:f1:8d:83:a9:84:16:94:
                    08:fa:e8:77:4c:40:01:bb:28:5d:c3:5f:18:27:82:
                    9f:50:81:e9:31:d7:99:a1:f3:9f:3a:5c:e8:ab:1b:
                    85:53:9c:39:b7:4d:b5:e7:04:1d:08:6a:19:e2:84:
                    65:1c:55:55:ba:c5:7a:7d:ff:ff:5c:aa:7d:28:fe:
                    05:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:70:66:C8:D2:6D:99:EE:3A:DE:97:17:D9:6C:21:C4:95:97:7D:54
            X509v3 Authority Key Identifier:
                keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c9:f3:1f:ec:65:66:10:f7:3c:35:1b:e7:45:0c:1a:d6:9b:eb:
         c4:3a:a9:3b:ff:17:11:c2:e9:a8:32:39:e1:ce:1c:2e:df:06:
         75:2b:b3:f5:59:dc:91:4f:21:9e:74:19:be:3b:06:dc:46:02:
         d8:8f:8e:9c:18:c0:4f:4b:36:63:c4:d4:28:1d:5b:d2:12:41:
         25:dd:c9:c0:45:d0:f5:53:51:36:86:3d:13:f6:fb:5f:32:ba:
         8c:71:b7:14:1f:4a:d4:39:0d:9e:e3:b7:88:78:ab:37:56:a1:
         5d:13:67:e4:b0:91:18:ac:18:42:54:45:be:0e:2c:c4:85:da:
         88:a9:0c:05:ec:b1:2e:57:ce:7d:be:e2:b7:fa:83:70:e4:82:
         b3:a6:c8:c7:f8:cf:56:51:1c:f5:c8:0a:50:49:bd:11:7f:a1:
         d8:ce:f7:95:f0:71:85:4f:a5:85:89:38:1e:37:eb:57:de:4e:
         ef:ac:e1:0f:69:0e:74:08:cb:94:37:45:dc:97:20:a6:ed:a4:
         a8:1f:f3:2a:a6:60:bb:e5:e1:4d:77:18:62:a0:4d:80:d5:92:
         3e:33:05:34:6d:19:34:86:c8:92:a6:cd:e9:c4:99:34:d1:d8:
         f8:f3:bf:e2:74:47:b3:c9:d0:00:04:fd:73:8d:60:bf:0f:71:
         8f:02:72:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:17:37 2025 by rpki-client