Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
File:                     xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft (raw, json)
Hash identifier:          jOz29f4bNvGOlstNvLk4MRng21Ujvo91wduGUxYPTCc=
Subject key identifier:   C2:20:55:48:9B:F5:D7:5D:81:0E:25:E5:89:6D:11:72:D0:24:02:CB
Authority key identifier: C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
Certificate issuer:       /CN=c5721737651598f56cf7195120777d7b5316f552
Certificate serial:       0198D697EF126E90272C9826B609F788404F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
Manifest number:          13AD
Signing time:             Sat 23 Aug 2025 11:02:17 +0000
Manifest this update:     Sat 23 Aug 2025 11:02:17 +0000
Manifest next update:     Sun 24 Aug 2025 11:02:17 +0000
Files and hashes:         1: nB0wD2NbLIcgL4wuuaNReH2xdaw.roa (hash: PmwRmIsMv3KSkKaHz3D8VpJ1Kt0x35JTg65eBK0T3+k=)
                          2: xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl (hash: EzYxfekzRMJwPwyfoJ2nCCaWAp+2nPFvL8Pf9qBDBck=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:97:ef:12:6e:90:27:2c:98:26:b6:09:f7:88:40:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c5721737651598f56cf7195120777d7b5316f552
        Validity
            Not Before: Aug 23 11:02:17 2025 GMT
            Not After : Aug 24 11:02:17 2025 GMT
        Subject: CN=c22055489bf5d75d810e25e5896d1172d02402cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:b5:11:0a:7c:1b:87:13:70:ba:da:32:7d:3a:
                    ca:04:92:af:d3:2b:1d:11:ac:db:af:a2:7f:e2:fe:
                    37:c7:f5:65:b4:89:c2:de:5f:22:6e:95:bd:ff:b9:
                    e9:db:8a:bd:38:b8:4f:e3:c3:73:d5:64:ef:94:61:
                    5d:b5:38:a3:0e:00:22:e7:85:b6:72:78:ee:8f:48:
                    2b:a5:8c:7c:26:ae:7f:5d:f8:2f:96:b8:4f:e6:fe:
                    a8:06:6a:89:f1:1f:19:0c:19:3e:66:d1:0e:d3:cd:
                    a1:ee:40:73:c8:7c:bb:1f:53:22:85:3b:ee:5c:a9:
                    8d:fb:6b:75:40:1a:30:eb:8a:80:03:cd:ca:0e:c5:
                    d9:54:11:a0:25:bb:81:e0:be:30:78:1f:49:42:c1:
                    9d:d4:ac:aa:9e:ea:70:ca:cb:78:f1:2a:96:2e:cc:
                    a6:14:fb:3e:73:84:44:80:ff:d6:f7:dd:0a:9c:c3:
                    11:d5:a2:41:ba:d3:7d:53:41:a1:19:ac:4d:c0:54:
                    ce:1d:7c:70:85:e9:7e:4a:7e:5e:eb:64:5b:de:50:
                    82:f4:fd:44:fe:17:f5:3e:e6:1a:55:c7:19:ea:be:
                    71:30:ad:d8:58:f6:0b:2d:2f:3d:b9:f2:3b:cc:06:
                    fe:78:85:88:98:13:fb:80:a4:0a:f7:aa:a6:56:43:
                    b0:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:20:55:48:9B:F5:D7:5D:81:0E:25:E5:89:6D:11:72:D0:24:02:CB
            X509v3 Authority Key Identifier:
                keyid:C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:92:b1:55:e8:6e:b8:e2:fb:f2:40:20:a9:92:e5:ba:1d:8c:
         d1:75:1b:05:b8:9b:7b:02:80:f6:63:c3:f6:f0:67:4c:84:4c:
         f2:95:b0:15:ea:4c:e8:0b:21:56:91:b0:d9:1b:e0:e7:29:1e:
         19:dc:3d:1d:63:b7:7f:b9:36:45:b8:73:ce:1f:41:78:87:55:
         b1:f4:9f:6f:5d:99:df:2e:14:9c:29:6f:a7:e3:45:93:86:0d:
         c0:70:a8:d6:36:15:57:89:7e:a6:b4:a2:d1:78:09:ed:fd:3e:
         45:b2:aa:fb:c5:55:da:80:5e:47:5d:d6:e4:13:b8:9f:ff:70:
         ae:81:61:b2:a8:d5:6b:bc:04:d0:39:f5:af:a7:94:fb:ad:5c:
         b7:42:be:8d:65:de:6c:20:dc:bf:f3:00:e1:09:c1:66:5a:2d:
         d0:6e:b5:3c:7e:d0:be:66:43:9c:31:56:a7:5f:ae:80:d6:21:
         c0:b9:0c:4c:14:0a:17:ac:38:91:6e:6b:c1:87:fb:1e:03:d1:
         30:93:cb:77:d7:5f:8c:d2:88:e4:8d:ee:e9:53:bc:8f:22:59:
         8f:4c:72:ff:5f:98:00:42:4c:a8:b3:49:f3:a1:bd:8f:69:04:
         67:05:f8:a8:3f:4c:19:76:91:fe:78:f3:33:c7:e1:74:af:34:
         99:11:e4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:12 2025 by rpki-client