Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
File:                     hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft (raw, json)
Hash identifier:          vAHp64NGp7G6C6SLXKoEvij0PReIGtAiIBGMW0+E+Cg=
Subject key identifier:   C1:AB:74:87:C6:64:12:0F:FA:26:EC:D7:C0:7B:D6:E1:9F:B1:4F:28
Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
Certificate issuer:       /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Certificate serial:       0199FA6A5778DED7E1C2FE762E194078DFB2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
Manifest number:          1195
Signing time:             Sun 19 Oct 2025 03:01:37 +0000
Manifest this update:     Sun 19 Oct 2025 03:01:37 +0000
Manifest next update:     Mon 20 Oct 2025 03:01:37 +0000
Files and hashes:         1: 9IYJ3JT9uAsxxt2lyjGjJVqXG38.roa (hash: Fm2Q+Megk5GLVl9u0EHQZ20RgFMN11FSbY9n50k8CTU=)
                          2: hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl (hash: uYoDHQOYZDjHnzC/zx6COwx1FY9kjYO9e98sI7HiS34=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 03:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:6a:57:78:de:d7:e1:c2:fe:76:2e:19:40:78:df:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
        Validity
            Not Before: Oct 19 03:01:37 2025 GMT
            Not After : Oct 20 03:01:37 2025 GMT
        Subject: CN=c1ab7487c664120ffa26ecd7c07bd6e19fb14f28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:bc:56:ea:96:12:c0:47:83:33:6c:17:e4:ee:
                    88:f8:ba:f1:a7:9e:16:fc:9e:84:34:c4:d2:0a:29:
                    49:30:34:2d:14:c2:52:fd:7e:21:e9:29:3c:5a:b4:
                    78:45:db:bb:48:9c:27:f8:a7:ef:2e:6a:48:9f:97:
                    b6:00:a8:82:66:80:24:51:b6:28:5b:9e:54:30:32:
                    0f:91:9b:33:2a:04:8e:62:fe:74:1d:f3:f8:3d:93:
                    71:ca:2b:54:59:ce:3d:ff:1e:60:83:a9:9b:9e:51:
                    86:a4:38:ae:af:d6:86:2b:36:8d:8a:0b:9f:4d:d4:
                    9f:7f:7f:67:c8:0f:94:29:fd:b4:c5:e6:5f:c0:71:
                    c1:b8:d8:ba:b0:18:19:41:7b:0b:11:1a:e4:e2:69:
                    37:de:10:66:9f:e3:f6:8b:b8:28:28:8a:22:a8:5c:
                    7b:da:57:4a:41:b9:63:b5:a0:73:ba:37:f7:de:3d:
                    d8:1e:a9:fe:df:3b:3a:62:4c:f9:51:cc:d7:bc:e4:
                    1c:31:b0:36:53:1b:7b:b8:5b:59:2c:66:77:13:8b:
                    3c:52:20:54:ab:f5:da:89:27:c2:a4:0d:4d:33:56:
                    d5:d6:a4:85:9a:44:18:1b:3d:3f:4c:7b:12:f4:de:
                    92:2e:de:d8:88:20:9e:c8:a7:73:05:bb:03:f2:59:
                    96:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:AB:74:87:C6:64:12:0F:FA:26:EC:D7:C0:7B:D6:E1:9F:B1:4F:28
            X509v3 Authority Key Identifier:
                keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:f4:65:91:95:e6:c5:ad:e3:ad:be:db:32:20:1f:c1:7c:a2:
         cb:b2:8d:4e:dc:35:f1:60:56:e7:81:e8:4d:79:1f:f1:ea:73:
         17:77:fb:22:2f:31:98:3d:f1:14:6d:63:31:90:65:da:b0:8d:
         07:88:c2:53:36:35:8d:56:08:71:86:c6:14:28:c8:e2:40:4e:
         64:9a:a6:22:85:95:2b:32:09:54:30:70:c0:cd:4a:80:59:3a:
         d7:fc:20:0e:71:77:d8:58:b5:8b:8c:eb:9b:8f:73:23:34:e4:
         f0:70:73:fd:2d:af:27:1e:c8:76:54:35:7a:80:fc:0a:1b:d4:
         cd:d6:b7:02:ee:f0:42:3a:b9:33:bf:1f:31:b7:c6:f3:b1:ec:
         e3:1c:73:00:c4:ee:08:08:32:56:5a:e3:54:ef:2d:2c:1e:4c:
         4f:72:03:f2:74:d5:50:96:44:4f:49:48:7f:07:28:34:c3:c5:
         33:5b:97:fa:c5:63:a8:b4:37:4c:0b:c2:f3:b9:e9:18:15:3c:
         8d:97:b2:b2:da:98:ca:f1:92:5b:66:5e:5e:f0:e2:5a:40:6e:
         2c:ef:6f:9a:c5:d3:78:d8:38:13:7e:4b:c4:d8:f8:7a:2c:5c:
         fa:46:a7:b5:aa:5d:c8:ce:42:a5:74:d4:35:dd:d7:c4:c3:af:
         20:d0:ba:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:19 2025 by rpki-client