Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File:                     D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier:          27Zx9LresE4TOMG+DvzXFhQF6KtBfFJZrRk1I8NOsEc=
Subject key identifier:   14:50:8C:19:CA:BE:5B:C2:CF:F7:81:A5:F5:E3:C5:7B:B7:C6:5F:32
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer:       /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial:       0199FEB4FCBE86BC4DC428BBBD8D405912C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number:          0656
Signing time:             Sun 19 Oct 2025 23:01:38 +0000
Manifest this update:     Sun 19 Oct 2025 23:01:38 +0000
Manifest next update:     Mon 20 Oct 2025 23:01:38 +0000
Files and hashes:         1: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: icPl2cxHzy3ZQ9jVMrbNtBdiGJx7GpLIczBqcnoMc2c=)
                          2: qj9pJEL6aLQRmJQwwNdSHRT6Q7o.roa (hash: YXXU3MHXgJerIl9CeLyHeV8Hu3RdrFxQkf90wVwUCHQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 23:01:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:b4:fc:be:86:bc:4d:c4:28:bb:bd:8d:40:59:12:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
        Validity
            Not Before: Oct 19 23:01:38 2025 GMT
            Not After : Oct 20 23:01:38 2025 GMT
        Subject: CN=14508c19cabe5bc2cff781a5f5e3c57bb7c65f32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:59:19:e9:a7:e9:fa:8e:1a:0e:14:32:f2:58:
                    62:45:17:dc:f2:41:51:2c:71:50:48:34:88:5a:3d:
                    ec:5d:31:b2:18:ed:57:b6:1a:d5:7f:db:62:8a:00:
                    18:b5:19:56:74:bb:dc:5f:a7:53:39:a3:de:99:9e:
                    15:74:76:74:14:a6:94:33:c9:b2:d4:04:6f:c6:2a:
                    fc:4a:6d:59:d7:cb:5c:a9:c3:4f:f0:8d:b3:3b:b7:
                    de:f9:49:9e:c6:86:50:a2:cc:f5:16:0a:78:70:26:
                    80:f0:22:22:aa:58:39:62:7a:33:0a:65:50:69:b4:
                    2a:0a:a6:10:b8:03:33:b8:af:3d:6e:5c:0f:9c:ed:
                    d6:35:18:43:44:0b:b3:4c:09:35:f5:81:7a:cd:56:
                    b7:18:6f:d9:3d:60:75:3c:37:76:e3:d6:89:73:c5:
                    81:8e:56:3b:3c:ed:0c:18:fb:31:67:ae:f5:60:82:
                    81:a0:3a:49:d9:8c:7f:66:19:e5:d7:51:9b:32:12:
                    3d:c1:69:a4:15:59:d2:62:ec:9b:b4:8b:f4:df:0c:
                    0b:72:33:a1:f0:2d:c8:d4:d4:89:0f:86:e8:10:da:
                    61:10:06:af:54:22:17:b5:52:06:c7:61:a2:2e:f5:
                    b4:de:47:81:fa:59:69:68:59:13:a9:4b:b9:3b:f7:
                    68:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:50:8C:19:CA:BE:5B:C2:CF:F7:81:A5:F5:E3:C5:7B:B7:C6:5F:32
            X509v3 Authority Key Identifier:
                keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:2c:60:18:f0:47:a5:a6:57:77:df:df:10:4a:76:27:5d:2d:
         56:8b:d1:77:b3:bb:64:9d:81:86:e9:4c:a8:7d:dd:c1:f1:bc:
         85:75:ad:69:35:19:ff:99:24:8c:28:8c:f8:55:38:99:68:85:
         dd:15:61:3b:4b:83:d4:4f:59:54:bb:3f:6f:d0:01:50:2d:93:
         61:16:04:82:7b:d7:10:e8:d7:36:ec:c4:07:69:99:05:f9:f8:
         02:11:b2:d4:e9:90:5c:2a:90:e3:2d:21:9a:99:de:cc:c8:6f:
         29:13:74:97:29:be:5a:6c:27:d3:48:9f:12:09:b4:59:61:2c:
         de:f7:80:40:24:6b:41:c1:a3:33:ba:d8:cd:bc:ea:12:36:d0:
         c8:f1:63:b1:13:4b:9b:02:0c:66:1f:d9:6a:b6:df:49:75:0f:
         8e:94:40:3d:de:93:7a:2b:78:7d:6c:68:9b:8e:dc:6e:30:d4:
         4c:1e:2b:e5:6c:c9:81:ec:36:ae:8f:73:a5:82:d3:2c:04:7a:
         24:76:73:33:8b:5e:2b:96:a9:ae:85:6b:af:a2:c0:25:bf:0e:
         91:ef:85:d9:ce:86:9b:60:a5:f0:8f:94:b3:84:52:01:68:1e:
         f9:8a:64:06:cf:9f:21:e2:61:89:9d:b0:6d:27:39:28:5c:d9:
         ad:bc:61:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+tPy+hrxNxCi7vY1AWRLFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYmZlOTM4NWU2YTc1OWY4MzNlNGYwOWEwOWYwZGNmZWQ1
M2IzZTQwHhcNMjUxMDE5MjMwMTM4WhcNMjUxMDIwMjMwMTM4WjAzMTEwLwYDVQQD
EygxNDUwOGMxOWNhYmU1YmMyY2ZmNzgxYTVmNWUzYzU3YmI3YzY1ZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lkZ6afp+o4aDhQy8lhiRRfc8kFR
LHFQSDSIWj3sXTGyGO1XthrVf9tiigAYtRlWdLvcX6dTOaPemZ4VdHZ0FKaUM8my
1ARvxir8Sm1Z18tcqcNP8I2zO7fe+UmexoZQosz1Fgp4cCaA8CIiqlg5YnozCmVQ
abQqCqYQuAMzuK89blwPnO3WNRhDRAuzTAk19YF6zVa3GG/ZPWB1PDd249aJc8WB
jlY7PO0MGPsxZ671YIKBoDpJ2Yx/Zhnl11GbMhI9wWmkFVnSYuybtIv03wwLcjOh
8C3I1NSJD4boENphEAavVCIXtVIGx2GiLvW03keB+llpaFkTqUu5O/dosQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBRQjBnKvlvCz/eBpfXjxXu3xl8yMB8GA1UdIwQY
MBaAFA+/6TheanWfgz5PCaCfDc/tU7PkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUt
ZDY0N2RjOGE1NmI2LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUtZDY0N2RjOGE1NmI2
LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXixgGPBH
paZXd9/fEEp2J10tVovRd7O7ZJ2BhulMqH3dwfG8hXWtaTUZ/5kkjCiM+FU4mWiF
3RVhO0uD1E9ZVLs/b9ABUC2TYRYEgnvXEOjXNuzEB2mZBfn4AhGy1OmQXCqQ4y0h
mpnezMhvKRN0lym+Wmwn00ifEgm0WWEs3veAQCRrQcGjM7rYzbzqEjbQyPFjsRNL
mwIMZh/ZarbfSXUPjpRAPd6Teit4fWxom47cbjDUTB4r5WzJgew2ro9zpYLTLAR6
JHZzM4teK5aproVrr6LAJb8Oke+F2c6Gm2Cl8I+Us4RSAWge+YpkBs+fIeJhiZ2w
bSc5KFzZrbxhkQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:07:35 2025 by rpki-client