Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
File:                     Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json)
Hash identifier:          ICKHwtlmNQXtVlowKyItHF0aTyYgPau2fzUO+pVq9Ck=
Subject key identifier:   38:55:C6:FB:3F:D8:C5:00:0A:95:6B:BF:E7:30:1C:C7:86:69:14:9C
Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
Certificate issuer:       /CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Certificate serial:       0198D773DB400520B208D166FCCCC527E4DF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
Manifest number:          1646
Signing time:             Sat 23 Aug 2025 15:02:30 +0000
Manifest this update:     Sat 23 Aug 2025 15:02:30 +0000
Manifest next update:     Sun 24 Aug 2025 15:02:30 +0000
Files and hashes:         1: 1Cpy8hReysvqo6rJK2S7mrGPkKE.roa (hash: D4UL2BT0SqLhRGOh0lwv2Oqr8FVnOBm4wqYMVb3RDbk=)
                          2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: QrRfik3DMdk6UGuU9fr6U9FG3dbz7/ke3+xtpij0SYY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:73:db:40:05:20:b2:08:d1:66:fc:cc:c5:27:e4:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af
        Validity
            Not Before: Aug 23 15:02:30 2025 GMT
            Not After : Aug 24 15:02:30 2025 GMT
        Subject: CN=3855c6fb3fd8c5000a956bbfe7301cc78669149c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:da:3c:95:5c:ea:8d:f5:c0:4e:34:60:d5:b8:
                    45:58:55:49:cc:d7:14:92:22:d7:f7:bd:97:43:39:
                    c4:55:13:99:81:da:be:f6:8e:58:e3:d8:04:d8:01:
                    b0:ac:23:66:b3:06:21:bb:42:a1:2c:56:d5:14:68:
                    45:3f:40:2d:0f:25:5e:4f:06:c2:3a:a8:82:41:6f:
                    f8:fb:ea:ff:e7:a8:2f:89:66:1f:9a:0b:42:d5:00:
                    b8:36:00:88:2e:24:7a:6d:af:dc:e1:c6:b6:70:d9:
                    a5:6e:7f:71:b2:48:d5:84:0e:5b:cb:e4:50:22:1d:
                    bf:ff:c2:28:51:39:32:c5:f0:a5:3a:b9:76:52:ea:
                    f3:18:0e:70:1d:d3:c6:b4:f3:e2:46:a4:cf:a3:48:
                    a5:a3:38:e8:50:46:02:d6:17:30:74:8e:3b:ce:d2:
                    ea:3d:0e:41:ac:47:92:82:0b:dc:a3:6e:ae:27:96:
                    d4:41:7b:a0:12:9d:c5:1b:45:f2:f2:2f:83:f6:9a:
                    e6:57:53:96:f0:e3:c4:e1:e3:be:85:8d:57:ac:c2:
                    3f:89:04:0e:55:3d:07:17:9c:f7:97:02:3b:2b:70:
                    c0:bb:42:a5:e2:c6:9b:a7:39:55:bc:cc:99:57:cb:
                    7e:bf:6d:c2:40:50:61:cf:44:90:f9:82:10:40:27:
                    85:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:55:C6:FB:3F:D8:C5:00:0A:95:6B:BF:E7:30:1C:C7:86:69:14:9C
            X509v3 Authority Key Identifier:
                keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:81:4a:73:23:4e:70:38:db:2d:97:6e:78:86:77:92:06:30:
         e1:b1:b4:eb:3b:8f:94:e5:36:9d:89:4e:b3:f7:29:6a:44:a6:
         2b:4f:0b:20:20:08:1b:79:a4:ef:11:d0:4c:3c:7a:78:62:f3:
         38:9f:23:9a:33:d7:4d:bd:54:a5:2f:70:aa:b9:4f:1c:c3:da:
         ea:c5:fb:82:06:0d:38:6c:37:48:b4:2a:05:4f:3d:bd:aa:20:
         a5:bb:71:0e:98:30:a5:0c:ca:2b:fd:21:1e:c2:05:1d:d3:ac:
         aa:eb:73:52:88:3e:be:cf:f4:9f:3a:5b:1d:97:f9:9f:66:3b:
         13:44:32:1b:d1:8d:a1:c1:3e:e3:6e:70:61:ae:af:88:95:88:
         54:a6:23:93:9d:d3:16:92:93:3d:73:b9:0a:e6:83:e7:b2:9d:
         9d:f5:4f:8b:57:ef:79:31:d4:d1:10:c6:2e:94:ad:66:09:7b:
         96:7f:17:d5:55:bc:0f:f4:7d:f4:5b:f3:96:3c:3c:98:40:9b:
         98:c5:60:08:5e:b8:82:c9:05:bb:87:8f:de:ba:25:3c:14:03:
         8b:b1:d9:aa:2c:6b:54:d4:03:b2:42:bd:8c:74:ed:54:16:55:
         d4:56:ef:77:b4:06:2d:41:e7:a1:dc:70:32:ff:85:4b:0c:39:
         ab:b2:60:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:24:54 2025 by rpki-client