Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
File:                     rs1kyXg317-sBmN92VK97eDCXYU.mft (raw, json)
Hash identifier:          vKA1k1SBQIUqCvS8fMTHgldHB7/IHbFTeSkPoq+o9bY=
Subject key identifier:   61:E5:84:28:78:B9:44:7D:32:01:81:80:E3:9C:12:96:3D:F3:97:76
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Certificate issuer:       /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial:       0198D4E0682746A46A54CDFA65B8398EBE97
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
Manifest number:          0F67
Signing time:             Sat 23 Aug 2025 03:02:13 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:13 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:13 +0000
Files and hashes:         1: 1-T8CKegBPOvx5rZQQVTHJ11NZfg.roa (hash: oTgrbLpJLd4bRqFVMFFivKpiZVrk/3YZuKNsOWKM6jM=)
                          2: 17xOhQoyIYZB59OnKrsT-dwllSw.roa (hash: KCMu12vyicYfkSRRUkeo8o3fEfjAYF/JgjW23i3oXrg=)
                          3: FsSFEoZYb3Nl-hkkgjVPUd2IvDA.roa (hash: Fqkp/m22ufWmmjenywmk6qhO70aCJ2/zGhbzol+bOEg=)
                          4: Umj2rbjqE8HIV-ruGeVeqZYwg9s.roa (hash: /89yG0WnFcE05IMFp3mM3/qP9TrscwAHv2Gfhcc6Cj0=)
                          5: rs1kyXg317-sBmN92VK97eDCXYU.crl (hash: 9Wgdd3e578BgKZusTnnbXfLdomy/tPzOvdGjhHJRrXc=)
                          6: sZB9qJRdylpTdvF1XtaqqpNl-OY.roa (hash: lRBjFzzRtx2AcctUxGDd+P1zYD8sp2IpXYC35kAzyFQ=)
                          7: vxhTN1By4lMiNMyOzxGwyr7QhR4.roa (hash: Ifos+E1fPLCwRcBMt2WCu8lSioPDUu6uUrn5J7VTK/U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:68:27:46:a4:6a:54:cd:fa:65:b8:39:8e:be:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
        Validity
            Not Before: Aug 23 03:02:13 2025 GMT
            Not After : Aug 24 03:02:13 2025 GMT
        Subject: CN=61e5842878b9447d32018180e39c12963df39776
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:4f:3e:44:19:f5:25:18:a0:c6:56:2a:58:7d:
                    e0:83:b5:73:73:ae:f8:19:5c:c8:52:04:e5:d5:fc:
                    96:76:fe:de:c1:59:c0:68:1f:2a:be:6f:2a:57:08:
                    ad:3c:ed:bb:41:4c:42:00:7c:50:4a:c9:ab:65:90:
                    dc:47:d5:27:81:42:4d:ed:7e:26:f4:df:89:c1:29:
                    88:b0:da:da:07:36:f3:2a:b8:b5:35:b5:44:18:79:
                    ab:07:04:3a:e0:ac:52:f5:f3:15:31:f8:55:4a:f7:
                    79:bd:06:a7:ac:20:57:9c:ff:2b:ed:7a:60:cc:c1:
                    58:e7:80:cf:eb:4c:4f:16:cd:00:cc:fa:4a:2e:e3:
                    c4:96:c8:43:64:5b:cf:c6:d2:cb:78:cd:1d:91:1f:
                    7d:c8:bb:00:7f:04:3b:5f:cf:15:2a:74:b5:df:e6:
                    e4:af:01:f9:16:18:bd:24:06:3e:59:c6:0b:8f:f2:
                    a5:c6:ee:d8:d3:a8:70:a7:4d:c0:a2:fd:c3:0c:a2:
                    99:06:69:c2:cf:02:fd:58:68:bc:7c:8f:4b:3d:4e:
                    fe:b8:38:94:81:00:41:a5:90:a6:c6:c2:41:eb:b3:
                    fc:90:52:47:80:55:b9:31:46:8a:ee:15:86:be:eb:
                    b7:b3:da:ed:e3:8a:92:2e:33:ca:04:77:32:2d:4a:
                    f9:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:E5:84:28:78:B9:44:7D:32:01:81:80:E3:9C:12:96:3D:F3:97:76
            X509v3 Authority Key Identifier:
                keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:8d:e0:59:39:25:86:d9:c9:55:40:eb:c3:3b:b6:bb:a1:05:
         34:46:72:00:1f:20:b1:8f:d1:c0:e6:f3:b2:36:19:09:c7:be:
         ce:81:55:8e:05:d1:12:11:3e:33:53:10:43:bf:8c:16:8c:85:
         3b:29:e5:05:71:85:4a:24:ff:2c:8b:7f:0e:2e:95:5e:0e:7a:
         63:13:c8:53:2a:53:eb:b3:6b:b3:7e:e6:f2:8b:95:e2:25:dc:
         36:c7:cd:de:b9:50:89:88:e5:54:de:90:c8:8d:2f:e2:af:d5:
         ef:96:1a:c8:2d:5c:6b:98:ed:8f:8f:39:21:5d:9b:9b:c2:22:
         ae:86:58:ab:b7:61:09:a7:67:b5:4b:b8:8e:15:25:b1:ac:da:
         5d:0b:c7:e2:38:39:7e:be:7d:e9:50:82:4a:d9:c1:cf:55:a0:
         5a:e6:59:6d:86:11:c9:36:92:3d:15:6c:56:fe:e8:12:83:b7:
         ad:f2:e6:c9:83:4b:a8:ab:bc:2a:ae:92:77:b4:94:12:74:88:
         bc:68:08:20:59:97:aa:98:2f:d8:45:6a:40:a3:9e:09:99:4d:
         41:96:a3:92:05:d2:80:d3:50:55:a3:8d:e5:37:b3:44:90:cd:
         0e:f5:9f:00:97:c1:02:e9:54:03:c1:39:1f:7e:06:fc:39:cc:
         b4:b0:ea:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:35 2025 by rpki-client