Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File:                     OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier:          QXCf501fQLS5euMTH1uyFe5FJmYfI6RQ7jd+bmGYqwo=
Subject key identifier:   C5:9C:C4:49:8B:51:94:4C:0F:DD:CA:38:86:E3:7C:78:6A:E3:3D:7A
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer:       /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial:       0199FEB52764786EE163159C55D6C7EE0B60
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number:          16EB
Signing time:             Sun 19 Oct 2025 23:01:48 +0000
Manifest this update:     Sun 19 Oct 2025 23:01:48 +0000
Manifest next update:     Mon 20 Oct 2025 23:01:48 +0000
Files and hashes:         1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
                          2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
                          3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
                          4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
                          5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: E9SHR0/GambI2Fq3/zHDeWHau8RvuxHEfy2Ev9L0nSg=)
                          6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
                          7: W0I5WxQMrOu6TANHFOGcvsplCew.roa (hash: as8TMPog4cNQstxcdryoIwh9zVe/CWxue8zaTtgppZI=)
                          8: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
                          9: qwwHopD_0G8M1Je41mhruAKGMpE.roa (hash: aHrYRaDs2jeGMQeUQIc+2frl2SVKEgdlFJTzXtA4yQs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 23:01:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:b5:27:64:78:6e:e1:63:15:9c:55:d6:c7:ee:0b:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
        Validity
            Not Before: Oct 19 23:01:48 2025 GMT
            Not After : Oct 20 23:01:48 2025 GMT
        Subject: CN=c59cc4498b51944c0fddca3886e37c786ae33d7a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:aa:8d:cd:c0:ec:62:b3:4d:2f:cd:6d:9f:55:
                    cc:15:5e:13:70:ce:2e:0b:33:e9:fe:bc:31:2b:42:
                    f4:9c:f9:fe:58:42:2e:0e:cd:fc:ae:21:29:86:a8:
                    0a:a7:73:fe:d7:fb:82:db:64:2e:1c:6f:66:95:bc:
                    1f:9b:9a:61:e2:15:cf:9c:38:8b:7b:83:c1:16:a0:
                    d8:ee:4f:30:25:53:ee:01:04:f2:a5:9d:12:39:b4:
                    32:19:49:e0:e9:70:55:b3:f5:be:55:72:31:92:39:
                    bd:0f:b6:0e:f0:4f:33:a0:28:4d:40:c2:ec:4f:bb:
                    cd:e0:70:20:05:10:aa:d8:d9:f2:a1:a2:a3:8f:24:
                    34:e8:86:a1:31:ec:c8:2b:fb:63:2f:9f:94:f0:f8:
                    21:ed:88:b9:ee:f6:14:c2:01:bf:7b:70:51:92:d4:
                    3b:1f:da:1e:f4:b5:db:f1:85:d8:f8:47:1c:b0:03:
                    a0:dc:93:68:1d:87:39:fd:ff:cd:13:83:07:f5:34:
                    67:73:39:66:6d:f2:e5:20:fa:a8:82:7d:d9:16:10:
                    9f:19:c4:20:e5:7c:cc:9d:3c:09:9c:9f:a4:c0:32:
                    7c:f2:51:43:03:30:ad:32:45:c3:cc:4a:ab:3d:cd:
                    fa:2a:59:6e:cb:c4:c4:61:e4:af:0b:27:26:c9:7b:
                    9d:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:9C:C4:49:8B:51:94:4C:0F:DD:CA:38:86:E3:7C:78:6A:E3:3D:7A
            X509v3 Authority Key Identifier:
                keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:e5:1d:26:61:0d:15:a8:ab:ff:92:45:95:ec:7d:d1:5c:2b:
         92:82:53:6a:ed:2e:71:14:a8:d2:da:c6:2f:21:c2:28:8e:19:
         f4:53:ec:63:76:12:27:7b:48:b5:a4:a4:56:2f:72:cd:1d:d4:
         aa:2a:c7:ed:62:22:2b:01:a9:65:62:94:5c:6f:f0:40:ec:a1:
         ad:39:47:3b:53:f7:ce:0c:fd:cd:7f:a3:d6:18:ce:e8:74:ad:
         55:93:86:a1:b0:45:ca:72:71:3e:67:2a:cc:2b:22:03:69:1d:
         e6:43:13:6b:06:2b:ed:e8:1a:77:6a:5c:67:31:77:ec:b1:30:
         ac:5d:90:02:05:51:d1:6d:5e:f4:dd:b5:e5:0e:89:82:5a:db:
         35:5c:47:2a:8e:cd:a1:c6:57:d1:00:33:43:4b:c2:ba:e0:16:
         2d:8c:d2:65:f3:d3:66:1a:46:6b:dc:16:71:3e:82:10:e0:58:
         b9:9b:80:e3:c6:d6:8c:94:8f:01:7f:c8:83:5c:ff:86:be:23:
         f8:e7:3c:a5:ae:94:81:94:82:4d:87:9a:72:98:33:d4:6b:62:
         ce:dc:f8:29:23:64:50:47:cf:7a:69:68:ee:d4:a0:11:b6:0b:
         62:52:d5:d4:5c:ba:ef:96:fa:24:c3:6d:77:e3:a5:7c:47:4f:
         4c:1d:82:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:49:35 2025 by rpki-client