Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
File:                     MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json)
Hash identifier:          ZT/kNm9h+bSHClG8PywiGQl4s2dTglcmC7RPmtFrQ+Y=
Subject key identifier:   F5:20:DC:53:1F:65:E8:1B:D9:DA:59:24:8A:E8:64:48:3F:98:0B:1A
Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
Certificate issuer:       /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Certificate serial:       0199FF593571A33D47287E1DEFC3AF33D797
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
Manifest number:          155C
Signing time:             Mon 20 Oct 2025 02:01:00 +0000
Manifest this update:     Mon 20 Oct 2025 02:01:00 +0000
Manifest next update:     Tue 21 Oct 2025 02:01:00 +0000
Files and hashes:         1: DhdGK18Qr8BfEi425qb4XqU3Df0.roa (hash: zUZN1xRmcwh2/G+LSnUGvmnpV/nEFzaIhdcZknHnKqM=)
                          2: HdR6Ah0Qe32r7472JEBtQ7R-uic.roa (hash: 9q8qH00PICKWGR7GNHvqSbuGck7QEOPOmn1zpnijT28=)
                          3: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: fpDLZY5wWR+8/kS91PsKQaRcAi6iXcObxnzRDxhuZF8=)
                          4: fijUe6qDGFgvjf20rKDx3KsLKhg.roa (hash: foZAP48xDa0sL73147a0de2CyfWzFAaIZ8oA6qYD28M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:59:35:71:a3:3d:47:28:7e:1d:ef:c3:af:33:d7:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
        Validity
            Not Before: Oct 20 02:01:00 2025 GMT
            Not After : Oct 21 02:01:00 2025 GMT
        Subject: CN=f520dc531f65e81bd9da59248ae864483f980b1a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:5e:37:63:ac:2a:08:fe:87:f6:f4:cb:a6:dd:
                    97:e1:ce:bb:0c:a8:2b:2e:f2:78:76:6d:4f:40:ad:
                    58:84:5e:f5:82:53:27:30:e3:c0:ca:58:56:49:a0:
                    af:90:aa:31:fd:71:ab:bb:78:fa:f7:62:43:e3:15:
                    f5:3b:6b:7d:6a:62:d4:a6:ba:31:b9:2d:90:51:b0:
                    82:69:1a:e6:f2:b2:28:5b:4f:29:d6:39:fe:80:4f:
                    09:65:ea:b1:72:40:4f:8b:4b:b1:3c:4b:ea:77:1b:
                    91:6b:ed:bf:ab:29:5f:36:34:80:cf:d1:c3:49:9c:
                    19:4f:08:b4:86:b7:49:47:1d:d1:fb:47:b2:df:91:
                    2e:53:9e:d0:5d:b4:e3:86:a1:93:05:9f:ff:da:64:
                    d7:4d:a0:2d:79:46:72:0e:1c:55:84:2f:59:19:cf:
                    6a:c2:0c:26:d7:f5:53:68:be:db:db:60:ce:e1:17:
                    a9:9e:a0:fb:51:5f:a1:74:76:10:fe:44:58:b1:21:
                    37:be:ed:d8:53:2c:f8:cc:2c:dc:65:7d:1c:62:f0:
                    ed:1f:a7:ec:71:5a:c5:99:97:df:d7:04:b5:ed:a5:
                    97:77:56:a8:af:4f:62:30:cd:62:ba:90:2e:fd:ed:
                    26:5c:3c:40:c7:23:bc:5b:09:f5:e0:d9:54:64:b4:
                    f6:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:20:DC:53:1F:65:E8:1B:D9:DA:59:24:8A:E8:64:48:3F:98:0B:1A
            X509v3 Authority Key Identifier:
                keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:b5:db:0a:4f:62:55:96:c7:64:2f:72:bb:8a:0e:22:06:cc:
         d1:eb:ac:b0:04:65:c6:7b:16:d8:53:97:46:70:14:84:29:77:
         da:05:c4:43:b7:c6:e5:37:14:9c:4b:3f:63:c7:c8:a3:42:28:
         18:54:97:53:e4:4c:66:0e:d3:72:77:f2:ec:da:e5:99:e8:8d:
         08:af:9c:de:68:1c:36:02:47:8c:44:61:e8:f7:81:c6:46:a4:
         98:73:c0:7b:9b:0b:c5:9f:45:63:d2:c6:5b:44:b2:6e:e8:37:
         fc:a9:48:43:1f:ac:c0:70:41:66:18:e3:54:74:71:dd:6a:29:
         96:3b:e2:73:ab:8f:f5:a7:60:dd:88:0a:5c:20:a8:dd:94:06:
         3d:53:9d:13:ea:3d:c1:65:cc:d1:28:82:63:e7:6b:2f:20:31:
         e1:59:70:24:fc:61:42:ce:71:eb:fc:ec:14:e1:00:cd:b5:a9:
         01:8d:3f:ef:e2:21:c9:24:71:4a:42:fd:0f:e1:aa:55:cb:ad:
         5a:e4:2f:b0:ec:64:f6:01:4f:36:07:92:09:f0:e5:4e:82:c9:
         21:49:6d:76:f6:88:07:20:72:d7:46:6c:5a:76:74:bd:65:59:
         1b:58:1c:da:a1:d7:d6:35:a2:ad:c3:1b:c1:70:c6:4a:77:ef:
         43:f6:f7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:07:38 2025 by rpki-client