Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
File:                     5XFody33TCeZnVM4leGr7c6XJjw.mft (raw, json)
Hash identifier:          5DJcECdllzapX289J4+41wB8NPY/EtvIK5nb532MAZs=
Subject key identifier:   9A:1F:07:5F:97:BA:9E:3F:41:86:3B:32:23:7A:B7:0D:A3:5C:43:A1
Authority key identifier: E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
Certificate issuer:       /CN=e57168772df74c27999d533895e1abedce97263c
Certificate serial:       0199FC21BE07BB0900E4D7DC06B7BEB65D45
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
Manifest number:          023A
Signing time:             Sun 19 Oct 2025 11:01:33 +0000
Manifest this update:     Sun 19 Oct 2025 11:01:33 +0000
Manifest next update:     Mon 20 Oct 2025 11:01:33 +0000
Files and hashes:         1: 5XFody33TCeZnVM4leGr7c6XJjw.crl (hash: P9y1fdaTXsjIMPXB3Fe6mXcX0EBdNTepRpD/bvogJRw=)
                          2: O3bnjDPRR3LrGEnM4sKqgBKSZIg.roa (hash: rlXDUrdTVRzlXfFa/VppQ/JwyMwu/FNANchTVmv+fxM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:21:be:07:bb:09:00:e4:d7:dc:06:b7:be:b6:5d:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e57168772df74c27999d533895e1abedce97263c
        Validity
            Not Before: Oct 19 11:01:33 2025 GMT
            Not After : Oct 20 11:01:33 2025 GMT
        Subject: CN=9a1f075f97ba9e3f41863b32237ab70da35c43a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:72:a8:f0:bd:ce:cc:06:63:e4:f7:9c:16:b2:
                    36:2c:b1:85:e8:04:ad:3d:c3:64:c4:66:79:45:3c:
                    22:3f:4e:48:be:1a:96:cf:2e:02:e1:59:49:85:c9:
                    c1:d8:3f:ae:bc:44:8c:7a:10:cf:81:aa:5f:30:44:
                    0f:ad:b0:ed:ae:6e:44:7f:50:78:47:4d:2c:09:c0:
                    76:38:26:20:67:b6:56:91:bf:79:8d:60:f3:2e:46:
                    67:50:95:f4:78:b1:fe:ab:58:6b:a5:48:09:05:3a:
                    66:55:57:2f:e8:55:97:38:c7:cb:cf:26:27:39:8c:
                    73:91:11:40:14:d8:57:da:e5:87:9d:d9:ea:9a:23:
                    bc:0a:a3:69:5c:c6:70:d0:57:e5:06:b6:49:35:cb:
                    ac:39:15:b1:06:27:fc:fb:81:d2:ca:7f:0c:09:9a:
                    6e:20:7a:8b:2b:54:dc:c7:38:fa:e5:5e:2b:17:5e:
                    d8:bc:25:a2:f5:8c:9e:78:87:56:ef:9a:49:d2:cf:
                    56:96:4c:85:c8:65:72:c4:d0:41:23:50:35:7c:69:
                    7e:ff:1c:0d:2c:cd:ad:0c:99:1c:a5:e5:14:3f:e0:
                    36:fc:a4:3e:0c:3a:8a:15:48:b9:17:10:6a:19:3b:
                    3d:20:7d:9f:ee:fa:98:fb:61:d3:46:b6:b7:98:c3:
                    15:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:1F:07:5F:97:BA:9E:3F:41:86:3B:32:23:7A:B7:0D:A3:5C:43:A1
            X509v3 Authority Key Identifier:
                keyid:E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:83:08:b8:a0:24:50:94:de:03:18:23:bc:00:34:d8:82:d1:
         13:65:18:cf:15:85:3a:17:79:c9:59:99:d1:81:23:2a:b9:52:
         24:59:96:81:76:75:71:ca:36:c3:8d:fb:ef:98:64:80:56:44:
         39:11:70:ad:b4:e7:01:cf:23:c1:24:a4:19:7d:a6:6f:10:ea:
         8b:cc:21:96:7c:c1:98:81:12:97:f4:73:8a:8d:68:b3:b2:25:
         3e:f0:47:64:0a:3c:15:8f:43:8f:d1:f4:74:d9:69:c0:a7:f1:
         60:45:4c:c5:71:d0:cb:34:56:15:07:67:8f:ca:a8:6a:52:76:
         1e:b7:ba:61:8f:b3:59:e3:b6:30:cd:16:37:81:eb:15:d8:41:
         4c:c1:c5:1c:91:c0:07:a6:9d:0d:b8:64:db:a1:9d:e8:37:e0:
         46:4a:52:8c:26:f6:3b:04:80:ec:b0:b8:cb:ba:5a:37:23:fd:
         dd:41:97:0b:ca:c8:2d:d7:44:2a:61:75:3e:71:1f:05:52:67:
         fe:11:37:03:f4:62:52:4f:91:32:a4:fd:be:1a:10:82:3a:d9:
         20:c9:0c:95:3c:c8:3c:0f:02:6c:ef:f9:d1:52:01:da:23:b8:
         7b:e5:69:18:cc:aa:4e:86:fe:7c:25:5b:f4:28:f1:06:0d:84:
         99:4d:80:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:00 2025 by rpki-client