Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File:                     kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier:          f2WvY6GYQ9B5nKsypcGaHgBqxglfgORPsV9tdJbLEsg=
Subject key identifier:   83:52:65:08:D4:4F:B8:9A:8B:DE:DB:11:E4:69:A0:C3:8E:4E:6B:CD
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer:       /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial:       0199FA6A0EC1F60197DCAFC13C919A02DC85
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number:          11F9
Signing time:             Sun 19 Oct 2025 03:01:18 +0000
Manifest this update:     Sun 19 Oct 2025 03:01:18 +0000
Manifest next update:     Mon 20 Oct 2025 03:01:18 +0000
Files and hashes:         1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=)
                          2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=)
                          3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=)
                          4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=)
                          5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=)
                          6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=)
                          7: bvT0XxpWvjhSrsyJnY-pHBlHicQ.roa (hash: jO921Nm2+NbwqmtR+BTndgCkDUsWuQ/tZNnxs0Ah0nM=)
                          8: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: pmoZWKDZRuojrzWQX2XAsDmEPX5vQsx9b+LgnAYvM7w=)
                          9: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=)
                          10: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=)
                          11: wGY7w33wbp754v9ca7Ik2gL3Voc.roa (hash: cLU9Ywl9VMx+T+dYulHYxfzmlahVeyhReHN4Xp/Qd78=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 03:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:6a:0e:c1:f6:01:97:dc:af:c1:3c:91:9a:02:dc:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
        Validity
            Not Before: Oct 19 03:01:18 2025 GMT
            Not After : Oct 20 03:01:18 2025 GMT
        Subject: CN=83526508d44fb89a8bdedb11e469a0c38e4e6bcd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:7c:a0:c3:81:5f:43:ba:41:91:e7:c3:9c:c2:
                    57:49:68:f1:90:32:45:16:e4:b2:8f:3c:5c:66:9c:
                    ce:b0:83:4f:f7:5e:51:fe:5a:bc:96:98:da:3c:34:
                    2c:4c:37:50:1e:e2:33:aa:f1:2a:65:e5:d1:69:f1:
                    6f:aa:1b:53:82:4c:3f:8b:d4:c2:9e:3e:9c:b7:4a:
                    bb:8c:5e:8b:a9:5e:ec:a3:3f:e9:7f:99:b6:58:e7:
                    29:48:5f:c7:9d:b4:36:5e:90:41:76:b0:a2:91:dc:
                    1d:85:73:ee:88:1b:30:d4:5d:76:0e:56:27:76:78:
                    a1:5b:d9:a8:48:7d:b4:26:4e:d7:24:12:cb:66:5c:
                    ae:80:b0:3e:ac:57:88:e3:69:cf:47:f4:4d:3c:fa:
                    6e:5e:99:f6:dd:93:68:f7:4a:cc:f4:09:5c:69:04:
                    c2:49:98:d3:51:8e:b2:9c:16:37:b0:d3:dc:34:c1:
                    38:d0:6c:d4:69:f5:45:a9:c0:3a:4b:89:c2:6f:cc:
                    15:3d:fb:85:6c:d0:1d:43:7f:03:20:74:2d:26:da:
                    00:73:76:e0:34:ce:e3:ef:87:48:4f:5c:2f:c9:a4:
                    c5:07:8f:5f:cd:1e:69:72:94:27:04:4b:48:ac:bf:
                    2a:cf:d9:46:01:1e:99:90:91:7e:b2:37:f2:78:ee:
                    91:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:52:65:08:D4:4F:B8:9A:8B:DE:DB:11:E4:69:A0:C3:8E:4E:6B:CD
            X509v3 Authority Key Identifier:
                keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:d0:9f:3e:75:59:c3:9e:69:d3:51:47:bf:b9:87:3b:99:2d:
         25:43:ab:78:9b:50:7a:51:a3:05:90:8d:cb:ff:73:9b:af:6b:
         75:16:cd:05:32:12:bc:71:2c:d3:20:10:cd:b4:e1:1b:fe:78:
         57:6a:b0:a6:53:72:ea:f1:a4:57:e2:6f:98:be:08:18:c1:79:
         62:38:64:e0:81:3e:8d:50:82:db:bb:ba:ae:b2:6d:fb:1a:80:
         ac:d0:ae:1a:06:70:8e:f6:ba:bb:bd:99:f7:b4:ed:3b:4e:54:
         d5:25:0f:f1:9b:5a:9e:9d:dd:3e:c6:f5:6f:27:52:14:11:21:
         6b:3d:63:a0:0c:ea:f3:31:66:9d:0a:ae:39:3a:24:32:51:15:
         b1:bf:ea:2d:ed:e6:d8:71:c8:27:7c:3b:cf:88:42:66:12:33:
         06:69:f6:59:a5:74:f1:43:bb:a5:8d:a8:70:bd:49:aa:fb:f4:
         8b:89:0f:85:06:86:58:0e:75:60:70:82:17:b4:6d:1f:10:27:
         5b:3c:69:18:78:e0:2c:dc:b8:a2:73:28:ab:94:dd:7f:bd:30:
         e7:2c:35:eb:4d:2d:85:d0:eb:44:ed:e4:d3:6a:f3:37:ab:42:
         f5:c8:3a:15:14:8e:02:c3:14:15:b9:c6:62:25:22:9d:88:42:
         3e:3f:b4:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn6ag7B9gGX3K/BPJGaAtyFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5
ZTc1MzAwHhcNMjUxMDE5MDMwMTE4WhcNMjUxMDIwMDMwMTE4WjAzMTEwLwYDVQQD
Eyg4MzUyNjUwOGQ0NGZiODlhOGJkZWRiMTFlNDY5YTBjMzhlNGU2YmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHygw4FfQ7pBkefDnMJXSWjxkDJF
FuSyjzxcZpzOsINP915R/lq8lpjaPDQsTDdQHuIzqvEqZeXRafFvqhtTgkw/i9TC
nj6ct0q7jF6LqV7soz/pf5m2WOcpSF/HnbQ2XpBBdrCikdwdhXPuiBsw1F12DlYn
dnihW9moSH20Jk7XJBLLZlyugLA+rFeI42nPR/RNPPpuXpn23ZNo90rM9AlcaQTC
SZjTUY6ynBY3sNPcNME40GzUafVFqcA6S4nCb8wVPfuFbNAdQ38DIHQtJtoAc3bg
NM7j74dIT1wvyaTFB49fzR5pcpQnBEtIrL8qz9lGAR6ZkJF+sjfyeO6RKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFINSZQjUT7iai97bEeRpoMOOTmvNMB8GA1UdIwQY
MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt
NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy
LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtCfPnVZ
w55p01FHv7mHO5ktJUOreJtQelGjBZCNy/9zm69rdRbNBTISvHEs0yAQzbThG/54
V2qwplNy6vGkV+JvmL4IGMF5Yjhk4IE+jVCC27u6rrJt+xqArNCuGgZwjva6u72Z
97TtO05U1SUP8Ztanp3dPsb1bydSFBEhaz1joAzq8zFmnQquOTokMlEVsb/qLe3m
2HHIJ3w7z4hCZhIzBmn2WaV08UO7pY2ocL1Jqvv0i4kPhQaGWA51YHCCF7RtHxAn
WzxpGHjgLNy4onMoq5Tdf70w5yw1600thdDrRO3k02rzN6tC9cg6FRSOAsMUFbnG
YiUinYhCPj+01g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:51 2025 by rpki-client