Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
File:                     FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json)
Hash identifier:          8kOK+7GAOU5ZC4aXXH0zn3U0SNzbXzujVK0fiihx828=
Subject key identifier:   AB:FC:08:AE:F1:EF:FA:23:77:20:3A:CA:64:EC:D0:85:12:23:0B:59
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Certificate issuer:       /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial:       0199FD6B0AC0AF914CD340508B62E8A422D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
Manifest number:          16F2
Signing time:             Sun 19 Oct 2025 17:01:14 +0000
Manifest this update:     Sun 19 Oct 2025 17:01:14 +0000
Manifest next update:     Mon 20 Oct 2025 17:01:14 +0000
Files and hashes:         1: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: mN3aEYA0s6eFhdVMzuK82AE2gaSD28z+NA8ubX3e620=)
                          2: MNlQF5nG0eeT7QS_s8UJC2BbGl4.roa (hash: msf9qspTIOl4MPPSDjXBam+bCbkt7kvUjAGSdIfDP0c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:6b:0a:c0:af:91:4c:d3:40:50:8b:62:e8:a4:22:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
        Validity
            Not Before: Oct 19 17:01:14 2025 GMT
            Not After : Oct 20 17:01:14 2025 GMT
        Subject: CN=abfc08aef1effa2377203aca64ecd08512230b59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:5e:5e:23:b8:3e:63:4e:1b:0d:c4:fe:a7:0b:
                    12:17:e2:b1:22:5f:ae:43:f9:fb:52:d0:74:ac:05:
                    f5:0f:11:a2:eb:7d:3e:a9:2c:6b:02:bd:f2:fd:dd:
                    73:7e:08:4b:c1:88:15:fc:40:cb:15:de:69:3a:b0:
                    33:dc:76:87:54:7b:c6:cd:df:e6:06:ff:b3:0b:2d:
                    2e:33:c0:c2:38:34:d4:51:08:36:ba:93:33:75:04:
                    1b:35:23:9e:50:5b:47:3d:97:67:d5:75:47:6d:eb:
                    ea:4a:81:9e:bb:c5:4b:84:d6:2f:a2:a3:52:a3:6b:
                    67:2a:88:3e:7e:be:5c:8f:cc:4e:4f:f3:86:7f:96:
                    29:7a:cb:5f:53:ae:b4:fd:34:5f:3f:ce:f3:d2:2f:
                    04:19:fc:f5:d3:cd:94:af:c0:c4:55:0b:9d:31:fb:
                    cd:19:df:2c:5a:c7:43:a7:71:20:a8:e0:75:9f:94:
                    42:25:84:6f:97:26:01:7a:ea:51:c5:c3:2d:56:b6:
                    6e:22:40:9d:9d:59:91:f8:5f:3e:19:44:ba:c2:eb:
                    71:52:a6:3a:f1:ac:7a:8f:f8:a9:2d:80:93:a2:c3:
                    cc:37:5e:e1:bd:8d:37:14:e4:af:b2:f9:32:27:b6:
                    3c:70:1c:68:cc:0f:1e:a9:90:d9:7c:47:98:b7:03:
                    18:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:FC:08:AE:F1:EF:FA:23:77:20:3A:CA:64:EC:D0:85:12:23:0B:59
            X509v3 Authority Key Identifier:
                keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:f9:f8:c4:6a:e2:39:68:70:54:b9:9b:98:e4:48:21:66:63:
         96:77:2e:b0:c5:95:be:c6:85:a6:d7:c5:48:11:4d:00:c0:15:
         fd:21:6f:a8:0e:1b:9c:45:57:53:a1:f1:62:d7:30:ad:ce:c2:
         cd:66:95:da:2b:06:45:21:5b:7d:2c:e0:97:72:96:8b:47:5f:
         19:ed:31:c4:a3:cc:f9:0b:55:d4:42:36:b4:50:ca:a4:3c:f8:
         03:5e:85:7d:fb:3a:ec:4f:85:fb:8b:c0:3a:de:f5:d9:dc:9c:
         37:7d:8d:25:58:a4:ff:bb:a1:d5:3a:14:c5:04:3c:57:55:0b:
         87:8b:67:66:76:50:e4:16:60:c3:5c:d9:8e:e9:23:a2:5b:b8:
         af:3d:8c:88:c1:6a:3b:c2:74:8b:e8:4c:9b:7f:a9:75:7c:0b:
         79:9f:4c:f8:2b:12:9d:c9:ee:9a:9c:cc:5a:86:4a:ef:0e:50:
         8a:32:7b:68:dd:d6:57:6a:ca:dc:c5:d1:32:e4:c4:5d:25:75:
         01:68:48:91:26:30:a2:27:90:be:e1:27:25:73:73:c1:7b:e4:
         04:4d:56:e3:97:6c:ac:c7:f6:69:8d:2f:ea:e1:d3:0d:6f:56:
         af:9d:12:33:78:1b:e6:ec:8a:c1:41:74:93:19:2d:bb:df:84:
         0c:9a:e2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:11:37 2025 by rpki-client