Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File:                     YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier:          VzKcFPOr5HDWSya0IYY9jpxX3fGgXFq+CnviE/7NjBQ=
Subject key identifier:   03:D7:45:CC:6C:71:77:91:EF:08:76:12:0C:D2:CD:0C:C2:D5:1B:90
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer:       /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial:       0197B77C0B19DDCA2B25BB11D49E224C87F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number:          081A
Signing time:             Sat 28 Jun 2025 17:00:49 +0000
Manifest this update:     Sat 28 Jun 2025 17:00:49 +0000
Manifest next update:     Sun 29 Jun 2025 17:00:49 +0000
Files and hashes:         1: TRV1zvMwN77u4mbYXqSf5mMtgyk.roa (hash: AGCpSC7dzCZj1/xhxXIQK1OjIYEOjpJ4XzT4WLt1kl0=)
                          2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: SIH4Bl9s03sBTS7j7Y2Gi5d10oyf9Bdqv9ikvPuT2ww=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:7c:0b:19:dd:ca:2b:25:bb:11:d4:9e:22:4c:87:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
        Validity
            Not Before: Jun 28 17:00:49 2025 GMT
            Not After : Jun 29 17:00:49 2025 GMT
        Subject: CN=03d745cc6c717791ef0876120cd2cd0cc2d51b90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:57:d9:5f:3f:fa:90:0f:f4:3b:ad:24:e5:e5:
                    0b:49:8b:c5:15:51:89:1e:65:49:02:bf:3a:39:cc:
                    04:f6:16:fb:5b:56:e4:ae:13:c3:f7:07:cd:77:c5:
                    e5:bc:e1:94:85:be:cc:58:67:21:d4:6e:6c:56:9e:
                    4d:26:d4:17:04:0a:ca:8f:0c:ad:ce:ac:d5:9e:a5:
                    74:4b:0a:28:64:ef:f1:9c:ee:04:7b:04:e2:72:5a:
                    a0:8b:73:44:8a:ea:f4:50:56:89:0b:a9:18:de:a9:
                    45:39:09:0f:a5:b1:fc:4a:a6:c1:24:8f:9f:be:2e:
                    8e:94:34:e8:c9:5e:19:b1:e8:15:98:72:c1:ad:43:
                    32:77:69:8a:f9:54:dd:5c:d1:ea:86:57:aa:46:63:
                    7c:49:41:a6:b4:8e:12:fe:f3:70:de:f1:32:29:0b:
                    2b:87:3c:1b:d7:d6:f2:e5:5e:3f:69:a9:ea:8f:86:
                    fc:48:48:8d:a3:d2:70:1c:a6:e5:e9:ce:a3:91:5c:
                    ca:0b:57:a6:34:5b:da:c0:fd:4e:80:b7:2c:26:22:
                    e6:ce:b6:7c:b3:af:02:22:b4:67:d1:30:94:84:15:
                    d3:46:29:b3:6e:bc:df:7c:62:ef:17:53:9c:a3:75:
                    3b:71:80:a7:de:84:06:35:7a:d6:22:c0:9e:1d:95:
                    46:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:D7:45:CC:6C:71:77:91:EF:08:76:12:0C:D2:CD:0C:C2:D5:1B:90
            X509v3 Authority Key Identifier:
                keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:15:08:ef:3a:03:f7:14:e4:9d:53:3b:03:5b:24:9e:98:6f:
         b4:0b:12:47:ea:fd:ee:8a:a8:df:0e:55:7f:f4:75:bc:8c:2b:
         f7:c2:28:d3:d0:49:a4:2b:3b:dc:ac:f7:07:db:b4:87:e1:a2:
         29:5c:31:35:58:9c:2d:05:ed:7c:a3:a5:16:54:3e:35:cd:32:
         72:35:1b:d9:13:4e:be:df:2a:05:22:39:a3:b1:c8:99:8c:3a:
         12:84:db:37:ef:e0:93:20:d4:34:a9:74:12:1f:00:0c:f1:bb:
         1e:cf:6d:4b:f5:0f:b8:d0:69:84:27:08:d6:12:66:71:2e:6a:
         39:c9:b1:5f:e0:e7:2b:51:8c:e9:ef:b0:d7:d2:b0:00:5a:54:
         50:d6:7c:3c:cb:12:e6:cf:90:48:97:a1:23:db:da:f8:e4:bd:
         41:3f:b0:83:10:f4:1c:bb:23:55:b8:34:50:25:7f:1e:13:42:
         a8:a6:eb:cf:be:07:79:53:67:87:4c:cc:5a:56:7f:e8:7f:98:
         63:23:d9:4f:c3:15:9d:c9:56:07:c9:d6:5c:75:ae:2e:9b:54:
         22:41:e5:7b:d9:32:d3:8a:c7:bf:f8:e1:2c:4e:1e:74:45:12:
         e3:5e:39:36:ae:43:2c:33:fb:9d:64:7e:92:33:d5:2f:27:da:
         ae:5c:4e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:17:30 2025 by rpki-client