Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
File:                     I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json)
Hash identifier:          iQfaiaXJLLTPqKNJ7SIECjl3C3Ebi5Amay7o7l8d/K4=
Subject key identifier:   71:F7:9F:64:6A:A5:34:D3:5A:97:48:F5:23:60:C9:43:2B:31:BB:C9
Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9
Certificate issuer:       /CN=23b1943087ce69623e76b2145b3479ac204ba1c9
Certificate serial:       0199FB45E1854310702E90E9AC42F21379BE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
Manifest number:          1620
Signing time:             Sun 19 Oct 2025 07:01:24 +0000
Manifest this update:     Sun 19 Oct 2025 07:01:24 +0000
Manifest next update:     Mon 20 Oct 2025 07:01:24 +0000
Files and hashes:         1: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: 1qaLwB6iwGBjtPbS/hmrJWP4ZYNZnAsL+5w15PVeaYc=)
                          2: IGzDnKyfU3XrsCi1kVIq3v9WjnM.roa (hash: BCjdpahib4P29wEhEZ+5HfDxKnWj0l2OSsP7lZ3IOHg=)
                          3: fngY7vAjtnIa6khyzBr6ohfARXc.roa (hash: 8j7K0AdGmWd/+RMVsdDrX0khITQq1MTMhTuPXkbPnqc=)
                          4: xgdlAL2WKr_Js4V_ZLjPaz6bev8.roa (hash: CfOyHBtQR8zjYYv9qA3Dd8n5he3YeIT+MsIzoT30dKc=)
                          5: z5Ucz1kkGg56QZyAblN2WefSoGM.roa (hash: 5hK/qHn0csimMvRktmqCqsq2To8mi7zen0Vo1KFJGyM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:45:e1:85:43:10:70:2e:90:e9:ac:42:f2:13:79:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9
        Validity
            Not Before: Oct 19 07:01:24 2025 GMT
            Not After : Oct 20 07:01:24 2025 GMT
        Subject: CN=71f79f646aa534d35a9748f52360c9432b31bbc9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:9a:d5:50:26:83:91:52:e4:d1:22:5d:1a:54:
                    19:22:1e:1b:0d:31:f0:41:a0:8d:2e:27:44:63:a5:
                    ce:1f:89:35:3c:60:a0:26:6b:53:52:18:a7:f3:0f:
                    29:d8:78:d8:f8:94:10:e5:03:e2:64:86:a3:e6:47:
                    b2:63:67:62:ba:11:65:34:9a:90:f5:46:9e:d6:1f:
                    ab:18:66:9c:2f:03:12:38:f3:2c:af:2e:8f:1b:f0:
                    49:49:b0:fd:aa:29:4d:42:95:01:53:f9:50:02:38:
                    62:06:47:93:94:29:31:e6:54:15:ff:bb:7e:b9:80:
                    61:d4:67:1d:18:56:16:91:cf:65:dc:4b:59:af:8c:
                    db:fb:da:8b:c8:d3:36:56:38:62:3a:cd:3d:04:d4:
                    6e:c5:2e:6e:61:43:f6:9e:7d:e2:88:b8:e3:8e:08:
                    98:3c:ce:1c:43:b9:73:3e:ef:0c:b5:18:5e:29:76:
                    b9:51:12:27:7b:24:ca:47:7e:f5:2f:70:6c:97:3f:
                    8d:bd:a0:dc:3d:9d:3d:1d:dc:dc:44:26:60:f4:bf:
                    f1:d8:81:be:2e:26:5c:2d:de:33:d6:6d:ff:b7:0b:
                    0d:5f:3b:e1:14:cc:d1:c9:39:92:59:b2:84:10:f1:
                    47:79:b5:85:4a:f8:23:5e:b2:aa:b0:4a:ed:4a:bc:
                    1b:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:F7:9F:64:6A:A5:34:D3:5A:97:48:F5:23:60:C9:43:2B:31:BB:C9
            X509v3 Authority Key Identifier:
                keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:2f:f5:1c:65:74:99:c2:c2:70:13:71:ae:4b:20:fa:2a:72:
         e1:25:46:91:80:28:aa:0e:2e:5f:d4:fd:aa:ce:c7:c5:ef:30:
         ed:6b:f1:ce:3c:db:be:03:a4:af:6f:5b:a0:86:b9:f3:87:fa:
         4c:51:c6:c1:02:e2:4c:b3:ea:fa:6e:6c:b2:73:5f:4d:b5:ea:
         a2:ed:5b:b7:6c:c1:3f:b5:59:4e:09:98:eb:a5:94:ed:ed:4f:
         15:be:3a:8b:4e:06:9f:1a:f8:78:80:02:f0:21:04:47:2f:a9:
         71:fb:5c:56:ea:b5:90:cc:d2:82:6e:e3:26:a6:0e:54:75:6f:
         c6:ec:be:1a:f5:77:ff:03:4a:b9:a6:93:48:3f:27:8c:30:bc:
         8d:eb:cf:2a:2d:be:b3:ab:c4:54:9f:98:1f:15:d8:2d:99:3f:
         59:37:09:26:26:18:ab:2d:5d:21:3b:e1:7e:53:80:b4:6c:04:
         c2:5e:c2:42:f0:a3:1a:cb:5d:38:85:cc:97:a2:5b:cf:57:e2:
         66:4f:e4:80:90:50:3a:7e:ad:19:79:79:f0:b7:1f:80:34:35:
         7d:31:cf:28:bf:a5:b2:31:98:78:09:94:96:86:81:64:43:30:
         b9:99:7d:86:73:d1:73:c7:46:d2:21:fd:d7:b4:1d:21:be:0c:
         7b:9a:f9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:15:01 2025 by rpki-client