Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
File:                     sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json)
Hash identifier:          y4ztu/vCuPhLybsWgggHw7cTYyoNyiaTP1nUszvjtTY=
Subject key identifier:   87:FB:AC:C4:3D:60:A7:89:47:97:7E:CB:35:9A:C8:8F:1B:6B:37:A2
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Certificate issuer:       /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial:       0198D698782E8AE3458AE45E07BDC0C7664E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
Manifest number:          165C
Signing time:             Sat 23 Aug 2025 11:02:53 +0000
Manifest this update:     Sat 23 Aug 2025 11:02:53 +0000
Manifest next update:     Sun 24 Aug 2025 11:02:53 +0000
Files and hashes:         1: AtRByS0zJPDiOgR2GmP-us653x0.roa (hash: FxQtASMxynUngBeMPqWpgsQ0Eb/Ckc7wV64mAxHzC3U=)
                          2: Eo6V5YnuCJr9FvEX2DYqWrELADI.roa (hash: lChhm1otin5POSG81kYUPCqjBD0lABLrbTGgjSwCBss=)
                          3: Lsu4SS6ThyYeppRYu6PmZ-042nc.roa (hash: uXqaykBNjJacbWPSq8V/QHVwNjfPRIGaAOgab5oa/hs=)
                          4: YELUwe4nammHucxrbZyOcSXhQAs.roa (hash: F7evvDSLJ4aaJnnTjKcdJcahJaI+uHzuDY+hV5o5tME=)
                          5: lAQuczRYGnewQpXm-9DH2Aa2FJM.roa (hash: cpxHeGSggctdEQY5QxkgjLkTiuh9nHgtIGZfv1ijkMo=)
                          6: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: lqc7PJSoQKDrjITL4e+tfdhKm7O2JvJDlNWWDwzY4ns=)
                          7: u0aUu0b_iEvlUDq3juqga9PBn0M.roa (hash: I2lvIAd5dytk2OpXdsqlzCje+prqBKxhEoVZ7EyyIW4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:98:78:2e:8a:e3:45:8a:e4:5e:07:bd:c0:c7:66:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
        Validity
            Not Before: Aug 23 11:02:53 2025 GMT
            Not After : Aug 24 11:02:53 2025 GMT
        Subject: CN=87fbacc43d60a78947977ecb359ac88f1b6b37a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:c1:66:d8:77:91:9b:d2:5a:23:9c:10:ab:71:
                    67:f2:cc:1b:55:fb:1e:78:2a:dc:d6:d4:06:70:db:
                    b5:88:b4:ab:95:15:02:06:1a:b5:dd:ad:c4:ca:65:
                    9c:92:be:49:70:3e:68:d9:be:36:78:fa:9e:46:68:
                    1c:1f:c2:31:cd:e4:bb:4b:96:1d:88:bf:63:05:83:
                    79:61:6e:65:0b:77:91:9a:43:d3:25:0f:cf:96:97:
                    ff:71:e6:95:c9:f4:5c:46:57:b4:a3:72:1c:e6:30:
                    27:b8:3f:8c:11:ce:a1:f8:90:b2:4e:48:41:38:34:
                    48:a0:40:69:e4:e5:cd:04:92:91:6f:04:00:50:d3:
                    e9:8a:f6:5c:da:5b:94:74:9d:16:33:f7:c5:66:3a:
                    9c:00:e2:aa:f4:f3:48:90:8a:b5:9e:bc:d7:1a:ed:
                    a1:da:0d:5f:58:72:30:e2:b9:52:66:d7:93:88:9d:
                    4b:f7:33:ee:d8:3e:d2:bc:22:bb:0e:c3:07:07:34:
                    40:0c:76:91:1b:37:64:39:ed:98:bd:a8:03:85:f0:
                    b9:29:18:f5:82:87:0d:06:cc:3c:fb:e5:6f:93:ee:
                    61:26:4a:9d:cb:12:43:46:8b:45:09:c7:24:92:6f:
                    61:64:76:c5:77:57:3d:d8:87:47:6e:7c:c6:5e:82:
                    72:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:FB:AC:C4:3D:60:A7:89:47:97:7E:CB:35:9A:C8:8F:1B:6B:37:A2
            X509v3 Authority Key Identifier:
                keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:ac:3a:db:2e:31:6f:1f:43:d2:32:74:9f:af:e2:8e:2b:5b:
         62:b1:64:36:b7:31:87:14:16:9e:a2:0d:20:68:67:ee:d6:d9:
         36:a2:d3:2b:ab:3a:86:13:37:ea:f1:fa:79:70:1b:3f:4c:48:
         7e:b5:72:c9:41:45:44:2d:77:47:d3:73:24:f5:6c:70:e0:40:
         1b:5e:ee:c0:58:07:37:30:8f:06:09:46:bb:50:3f:d9:18:61:
         3b:da:2c:34:75:35:2b:07:51:ff:42:56:1e:e5:29:b0:60:54:
         bd:81:63:0c:7e:e9:c0:f3:ba:ea:47:09:a2:4e:3b:8c:49:71:
         f6:60:f5:9d:71:4e:2f:40:fe:f8:a3:c5:c2:c3:f1:85:98:f4:
         05:ad:5f:3d:97:2c:3a:50:c6:19:41:b7:8c:f7:ae:bb:b5:83:
         42:96:47:d4:3e:34:20:f4:08:5e:43:38:2f:d7:41:1b:f6:3c:
         2c:73:8f:a1:27:05:f9:f8:89:6a:2f:4d:32:71:d4:2b:60:e0:
         e9:98:4b:e5:df:e2:30:31:49:29:b4:6c:23:b9:7c:ec:5d:f5:
         bd:5c:db:d1:9e:ae:5b:c1:d5:24:d4:14:59:71:e6:5a:84:d7:
         be:0e:f0:b4:bc:f9:dd:79:76:6d:e8:f9:55:84:60:22:d6:32:
         87:ee:83:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmHguiuNFiuReB73Ax2ZOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNGFiYThiNjA3NDkzOTM0NzhlODNjMzYwZTZjYmQ3NWQx
NTZmODkwHhcNMjUwODIzMTEwMjUzWhcNMjUwODI0MTEwMjUzWjAzMTEwLwYDVQQD
Eyg4N2ZiYWNjNDNkNjBhNzg5NDc5NzdlY2IzNTlhYzg4ZjFiNmIzN2EyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8Fm2HeRm9JaI5wQq3Fn8swbVfse
eCrc1tQGcNu1iLSrlRUCBhq13a3EymWckr5JcD5o2b42ePqeRmgcH8IxzeS7S5Yd
iL9jBYN5YW5lC3eRmkPTJQ/Plpf/ceaVyfRcRle0o3Ic5jAnuD+MEc6h+JCyTkhB
ODRIoEBp5OXNBJKRbwQAUNPpivZc2luUdJ0WM/fFZjqcAOKq9PNIkIq1nrzXGu2h
2g1fWHIw4rlSZteTiJ1L9zPu2D7SvCK7DsMHBzRADHaRGzdkOe2YvagDhfC5KRj1
gocNBsw8++Vvk+5hJkqdyxJDRotFCcckkm9hZHbFd1c92IdHbnzGXoJyAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIf7rMQ9YKeJR5d+yzWayI8bazeiMB8GA1UdIwQY
MBaAFLFKuotgdJOTR46Dw2Dmy9ddFW+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYt
Y2Y2YzMwNTIxMmViLzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYtY2Y2YzMwNTIxMmVi
LzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtKw62y4x
bx9D0jJ0n6/ijitbYrFkNrcxhxQWnqINIGhn7tbZNqLTK6s6hhM36vH6eXAbP0xI
frVyyUFFRC13R9NzJPVscOBAG17uwFgHNzCPBglGu1A/2RhhO9osNHU1KwdR/0JW
HuUpsGBUvYFjDH7pwPO66kcJok47jElx9mD1nXFOL0D++KPFwsPxhZj0Ba1fPZcs
OlDGGUG3jPeuu7WDQpZH1D40IPQIXkM4L9dBG/Y8LHOPoScF+fiJai9NMnHUK2Dg
6ZhL5d/iMDFJKbRsI7l87F31vVzb0Z6uW8HVJNQUWXHmWoTXvg7wtLz53Xl2bej5
VYRgItYyh+6DSg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:57:45 2025 by rpki-client