Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
File:                     2pxnKeHomJmE3YAtGpDonOL-Nzw.mft (raw, json)
Hash identifier:          W+ndNqMCQetnJ9uti89ako2epDo9PNNyMd4vzLedbJ4=
Subject key identifier:   FE:2E:44:1D:D2:EE:25:A8:61:F1:1A:6B:97:B4:2C:17:BE:2F:44:52
Authority key identifier: DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
Certificate issuer:       /CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Certificate serial:       0199FEEB94529F95263A386E7E1F6A2E06C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
Manifest number:          16E3
Signing time:             Mon 20 Oct 2025 00:01:15 +0000
Manifest this update:     Mon 20 Oct 2025 00:01:15 +0000
Manifest next update:     Tue 21 Oct 2025 00:01:15 +0000
Files and hashes:         1: 24_mmtOlkG05yQ7mb26MLLzNTPk.roa (hash: NN9FJFjMrEoXgY4DCGNqxgbjsbFf0mQojMZSGAkFQFg=)
                          2: 2pxnKeHomJmE3YAtGpDonOL-Nzw.crl (hash: ChQhmUNv0b7Jw5HxYsDjyL7OyFKg1DSHD9CwfXeWxB4=)
                          3: bhkCmw6Utz1WDIi1a3ZQnDXW25w.roa (hash: vuvSrc/xAi8bu4mOjDMbPo9yb6kp8ev2fK1dkeS76Yo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:eb:94:52:9f:95:26:3a:38:6e:7e:1f:6a:2e:06:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
        Validity
            Not Before: Oct 20 00:01:15 2025 GMT
            Not After : Oct 21 00:01:15 2025 GMT
        Subject: CN=fe2e441dd2ee25a861f11a6b97b42c17be2f4452
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:9e:1e:16:46:71:9c:6d:38:7a:e7:bb:28:f4:
                    69:5f:3c:f3:22:f4:02:e5:d1:95:a0:8d:a6:d1:de:
                    b7:6a:98:de:4f:84:b2:40:e6:12:f0:f0:d9:eb:30:
                    fe:50:48:d3:b8:c1:90:a6:d2:68:10:51:ed:61:8c:
                    18:c5:00:d8:48:04:2b:e3:d6:0d:8d:29:cd:d3:0c:
                    fe:d7:a9:58:3c:aa:3f:e5:48:f0:81:54:77:29:4f:
                    e8:ed:40:3b:e8:7f:6c:69:49:03:01:d3:61:65:1a:
                    b9:35:66:c0:cd:c9:7e:a2:52:fb:08:dc:f5:61:37:
                    c0:2a:66:89:91:dc:7b:56:e0:09:27:4c:e6:e0:de:
                    9e:fc:1b:c2:60:0b:1c:b3:49:f6:9c:89:82:1b:52:
                    85:22:2c:55:20:77:45:ee:63:85:ca:cc:b7:df:03:
                    59:69:71:8a:40:f2:c9:8a:dd:3d:c4:fa:2f:68:14:
                    9f:59:c9:1c:95:1d:a7:d3:ef:2c:fc:e6:7a:ef:1c:
                    7c:be:66:7a:e1:fa:74:c4:cf:87:a5:c0:55:22:3d:
                    a4:ef:f5:24:23:67:60:2f:f4:74:bb:88:2e:a2:2b:
                    7b:a2:e2:93:15:2f:31:9a:10:a3:01:47:8b:d5:60:
                    0d:ac:e5:a4:5a:c5:88:6f:af:7e:87:31:06:e0:2f:
                    d0:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:2E:44:1D:D2:EE:25:A8:61:F1:1A:6B:97:B4:2C:17:BE:2F:44:52
            X509v3 Authority Key Identifier:
                keyid:DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:73:e4:22:7f:d8:ba:75:b0:ba:71:fa:04:dd:f5:20:1c:58:
         41:0e:39:1f:8f:0c:93:2f:28:6e:c6:cf:34:6a:0f:f4:3f:24:
         ba:1b:e7:21:c0:39:15:8e:68:78:31:72:c1:c7:d4:99:32:31:
         51:9d:76:d7:30:24:db:ec:2a:18:35:62:a0:b4:66:d1:15:ef:
         86:42:0d:4e:d5:4c:04:d6:66:9a:85:87:e7:45:6f:ec:fb:d9:
         a8:d2:ff:f8:40:7a:5b:ee:9e:01:c3:06:56:45:b7:05:15:3a:
         0b:f1:60:ef:69:60:0f:04:81:4e:72:f6:84:0a:1e:a3:ca:cc:
         6d:b6:ed:ea:95:8a:20:66:72:55:9a:62:b9:fb:99:9f:51:5d:
         49:ae:b2:31:0f:3a:ed:62:ca:e6:72:a0:47:65:27:14:99:07:
         99:4c:11:b3:7d:01:ff:3c:9e:02:4f:f6:02:16:de:64:22:87:
         c5:7e:25:15:16:b0:ac:ea:3c:4c:8d:8f:5b:99:4b:9e:c0:48:
         04:fb:d3:6d:c7:37:3a:af:79:30:3b:69:5d:b2:6e:a8:37:ce:
         64:86:2a:f7:10:d7:03:3e:e7:8c:a3:e1:6b:0f:6a:ac:39:05:
         4d:e7:c4:43:6a:16:23:84:c3:82:f2:bb:32:6b:9b:a2:68:c1:
         ef:7f:80:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:33:03 2025 by rpki-client