Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File:                     Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier:          1yV1TJ0hNMOenJLcZr59tDwF1rAYX+xM/eq9DSeX68A=
Subject key identifier:   E3:3A:53:E4:1E:2B:31:EC:07:84:C5:BF:26:FE:69:8A:A3:09:B2:65
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer:       /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial:       0199FC8F8B072347097B8D6C9303C2D902AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number:          16FB
Signing time:             Sun 19 Oct 2025 13:01:29 +0000
Manifest this update:     Sun 19 Oct 2025 13:01:29 +0000
Manifest next update:     Mon 20 Oct 2025 13:01:29 +0000
Files and hashes:         1: 42NnB3jW5n3RbWWrHMDd_7NubAY.roa (hash: bZyySLXxgMQfpoBtEuXSmgHgMgLKQxBjV3IqMenXg0E=)
                          2: EuMIVvtjfwcw4H_1qN_NTTYxtB0.roa (hash: GstL7gwAEgcyBOR5WEEQ3UJ45LkAklqubcGaSv86PEM=)
                          3: U3GEel-_AheBYgIYIVYL9mt_5dg.roa (hash: qjeuuOD21NigMG6GkIxT7OwP2vU0izG4cg6tV2NDSPY=)
                          4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: TI5RozZlynPNOLiPIM60b06VYCaROWmKUI9Fgz1A+aQ=)
                          5: ZvRJrTWQfMOoVK-yV_Cqwkgeu5A.roa (hash: hHz6N7J+wTDqY/Lm+M/7LMn5tnMNWvw100eCFcrE1zM=)
                          6: hMxFbe2_woNux6m3JkElwux-E5g.roa (hash: nrSIsPwWOsAGq4mrEG8bp4vhnLrScT5iVl2b8ClElOk=)
                          7: olCZzHEOZSOjj4yqtahX2zJkhMQ.roa (hash: aXtBhSkmw714xAy5wT1PAT7ELEpsc4omuqROu4g4WE8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:8f:8b:07:23:47:09:7b:8d:6c:93:03:c2:d9:02:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
        Validity
            Not Before: Oct 19 13:01:29 2025 GMT
            Not After : Oct 20 13:01:29 2025 GMT
        Subject: CN=e33a53e41e2b31ec0784c5bf26fe698aa309b265
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:90:04:f9:3a:10:43:46:74:e2:ef:34:94:c4:
                    cc:fb:ae:28:36:f7:a2:ff:db:43:2e:68:01:84:ec:
                    90:36:90:ba:99:7f:bd:67:ae:16:42:43:2d:b2:8c:
                    94:c2:34:66:d7:28:2d:24:bf:b3:f1:4b:aa:8c:d3:
                    57:24:00:c7:b2:4d:13:d2:bf:d6:e9:8a:9d:e4:c9:
                    89:77:e5:20:aa:3b:7a:df:28:a2:8c:1a:05:33:81:
                    26:13:b4:42:ea:4a:7b:fe:58:54:e1:50:f9:ae:ac:
                    ea:86:0a:62:c8:03:97:4a:db:3a:6e:9c:b8:62:e5:
                    8c:c7:4d:fa:3c:fe:03:e0:e3:62:71:85:e8:66:12:
                    2e:b9:68:d1:28:5a:4c:e4:0c:38:b6:41:49:3b:37:
                    33:44:7b:88:da:a1:b7:fd:3a:ce:2b:fd:1b:4f:89:
                    22:93:27:b0:42:06:2a:c1:b3:d7:95:b2:dc:e7:31:
                    7a:34:97:dc:49:40:51:55:da:ec:8e:4c:c1:7d:3a:
                    e6:fa:41:cb:e0:4f:7f:cf:13:40:73:3d:85:08:f1:
                    8f:c9:ff:8d:1e:82:c1:18:df:aa:90:9e:47:49:ae:
                    30:c0:54:1a:0d:dd:10:05:07:1b:8d:b3:f7:eb:a6:
                    07:8d:b9:f2:dc:8f:e2:76:8d:66:cf:6c:7c:9f:87:
                    8c:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:3A:53:E4:1E:2B:31:EC:07:84:C5:BF:26:FE:69:8A:A3:09:B2:65
            X509v3 Authority Key Identifier:
                keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:a2:c3:a0:af:e4:74:97:fb:cd:d9:27:ef:61:57:d6:9d:84:
         cf:66:d9:f4:79:c3:5f:07:ae:39:6f:5e:9d:4d:03:40:09:03:
         a2:12:9b:64:b7:9e:ea:df:ac:52:2e:7a:3b:01:b5:59:eb:b2:
         82:37:14:e4:34:4d:c0:23:1c:e0:b1:18:8f:08:29:a8:04:13:
         cf:c0:2d:2a:b2:bf:e0:eb:00:28:b5:27:3d:94:04:2e:22:54:
         3a:c8:93:c0:c5:b4:79:fa:f5:36:c2:2d:4c:49:22:6a:0c:0d:
         3d:21:ed:a3:fb:d0:70:37:85:34:ad:6e:e7:95:de:c3:19:12:
         31:f7:24:8a:8f:a8:05:8d:a7:2a:fc:fc:f1:5e:97:06:e6:b8:
         4e:cf:64:08:3f:04:65:a3:12:19:07:5c:08:a2:01:f7:4c:1d:
         4e:f2:fa:8f:47:ea:06:c0:39:fd:50:75:27:07:53:ef:4f:3b:
         be:67:ae:6e:9d:ac:a5:5f:f3:08:15:14:da:46:ba:cd:08:6b:
         54:bf:3a:ed:32:e2:98:14:91:b5:cd:a9:0d:1f:4f:fe:43:3f:
         05:26:62:be:4b:5f:bb:02:21:74:df:c6:f4:6e:b1:fa:d7:73:
         34:42:d6:26:4e:cd:ef:41:e1:c0:c1:41:8c:7c:28:57:4e:bd:
         a7:9c:0d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:13:09 2025 by rpki-client