Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File:                     KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier:          ZW4Qg1wACvmyyr8Myie5U5058s4PBXlFf4+xaHnOD7o=
Subject key identifier:   53:9A:7C:DC:02:9A:85:BE:A1:C4:BD:4E:69:06:76:FA:20:14:4E:7D
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer:       /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial:       0199FB7CF007AB07469C48988CB71DC8D36B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number:          0BFE
Signing time:             Sun 19 Oct 2025 08:01:32 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:32 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:32 +0000
Files and hashes:         1: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (hash: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=)
                          2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: dsUaA8NVf3dWeP3LjpVkPE1DLes+3fAcrnlPcJCOVHU=)
                          3: z3-dsZKj9j7nCKXS-M2vtq4aJrk.roa (hash: 28apFTsYy4v/YWMNME9MOhYcWfL7kBuIz5Y1C6vARJo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:f0:07:ab:07:46:9c:48:98:8c:b7:1d:c8:d3:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
        Validity
            Not Before: Oct 19 08:01:32 2025 GMT
            Not After : Oct 20 08:01:32 2025 GMT
        Subject: CN=539a7cdc029a85bea1c4bd4e690676fa20144e7d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:ec:4d:67:b1:be:b3:48:97:bf:de:b3:8c:83:
                    92:57:18:0c:0c:d9:6a:36:e6:94:0e:a0:34:83:9e:
                    1b:a6:44:b9:76:c8:23:e6:54:c9:a5:8a:7a:e1:87:
                    eb:7c:04:bf:f4:a5:8c:1d:d7:c9:27:99:49:9a:31:
                    4b:72:0f:db:0c:25:1c:63:d7:7e:5d:e4:b3:1d:17:
                    ad:e5:ca:75:b1:07:e3:e3:12:a0:79:d4:6d:61:3b:
                    5a:87:da:cd:c3:b0:ff:0f:b8:11:c9:78:29:08:b9:
                    6d:ca:c5:44:4f:3c:bc:0a:46:eb:e5:91:6a:57:94:
                    ed:69:89:62:2d:dc:eb:e5:10:c4:3f:30:67:74:53:
                    37:05:52:77:44:df:ab:01:11:24:9a:6a:a7:b8:a9:
                    0b:e3:9a:e3:60:34:4e:d2:c9:0c:39:a2:9f:3d:15:
                    16:06:0e:ab:bc:8c:ae:01:7d:53:7a:1b:b9:46:e7:
                    64:41:92:dd:d1:27:48:3f:8c:f2:bc:1c:27:ee:38:
                    61:13:53:ff:6f:fd:96:2e:be:00:27:37:e5:05:f4:
                    2e:58:33:5d:bd:db:52:ed:05:91:21:48:90:52:d5:
                    83:ab:a8:62:ee:d6:ce:b5:da:6e:e3:b5:f1:96:f8:
                    db:db:be:91:f2:f9:c7:56:48:68:c5:6b:f3:b4:fd:
                    25:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:9A:7C:DC:02:9A:85:BE:A1:C4:BD:4E:69:06:76:FA:20:14:4E:7D
            X509v3 Authority Key Identifier:
                keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:89:6e:53:0c:62:62:ec:db:fc:1a:bb:73:da:02:66:46:80:
         85:78:b0:c7:ec:9f:ad:79:f5:27:5e:ea:f6:8f:76:a6:42:6c:
         78:7f:cd:b6:c1:93:47:ce:78:25:2f:88:af:b2:dd:7b:e7:27:
         e1:96:db:ee:01:ac:e1:1c:3d:e1:3f:14:48:ff:d7:11:97:59:
         0c:41:b3:0e:c1:15:69:11:df:66:7f:d5:53:72:e5:1b:b5:58:
         fe:41:ef:f6:d6:57:a1:f1:0b:e2:3a:d5:86:13:85:0a:65:51:
         3b:a7:70:43:74:d1:f9:fd:9d:f4:78:0b:c4:39:f0:53:c3:8f:
         d0:fe:00:3f:af:33:9f:96:25:88:93:27:6e:24:a8:2f:cd:a3:
         2c:fc:f4:2f:4d:9b:07:2d:a8:5d:24:4a:24:4a:34:10:fa:bd:
         dc:5e:0d:3c:e0:a4:02:7d:ab:ae:5f:07:60:ec:d2:d1:91:2a:
         13:dc:fe:12:17:21:7c:55:d3:7a:84:2c:e5:d6:5f:ac:64:69:
         84:31:b0:be:3f:4d:6d:27:29:a3:fd:f5:85:be:a5:44:2d:62:
         4d:f1:3c:3e:02:34:ee:75:83:5a:b8:c2:e4:ef:20:5a:71:34:
         64:14:9a:ab:8a:8f:cd:89:38:7e:c2:41:97:e6:3a:9c:0f:17:
         56:9c:b8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:16 2025 by rpki-client