Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
File:                     MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft (raw, json)
Hash identifier:          MB08+yirFrRR/oBnOqXDOH/sM7IqFLb3xeqSyZwa7Iw=
Subject key identifier:   6C:EC:87:6E:BD:C9:B7:7B:D1:13:A2:81:B0:7A:9A:73:49:60:FF:DC
Authority key identifier: 31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
Certificate issuer:       /CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Certificate serial:       0199FB7CBD34D4DA6C383324BC65082FF3CD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
Manifest number:          0EE1
Signing time:             Sun 19 Oct 2025 08:01:19 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:19 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:19 +0000
Files and hashes:         1: MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl (hash: f2JOkmg9U8DBGgntxkh+OZAVneHxlIhV1OKyIx+xDG8=)
                          2: QXjAwQSpvYGLG9EKG43DcrvrWjg.roa (hash: /g3NGPvML9niLWrxGUEsCrw0JcuhbxCMPrgB31IKq7M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:bd:34:d4:da:6c:38:33:24:bc:65:08:2f:f3:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=310e2e9fb70668c796adce877b21e09a8a1ad029
        Validity
            Not Before: Oct 19 08:01:19 2025 GMT
            Not After : Oct 20 08:01:19 2025 GMT
        Subject: CN=6cec876ebdc9b77bd113a281b07a9a734960ffdc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:cc:f3:86:49:a9:23:e8:c2:b8:40:84:a6:a4:
                    d6:04:87:dc:c6:5d:1e:c7:3a:af:5c:f6:59:8f:83:
                    7b:d4:57:87:28:8c:ee:71:01:ea:26:a2:15:89:f7:
                    37:3b:2c:ee:70:33:74:27:03:31:3b:41:66:49:98:
                    91:8c:36:a4:bc:96:a0:a9:c2:60:d7:8c:e2:98:41:
                    7a:1e:06:f6:ff:63:59:fe:f8:17:7d:7c:d3:98:5d:
                    37:7e:07:7f:6d:64:5e:24:7c:65:0d:04:e9:e8:21:
                    93:41:8a:ea:81:8e:e6:5a:3e:82:35:41:22:82:5f:
                    69:e0:3b:da:0e:24:5b:97:fa:ec:00:31:f8:2b:05:
                    be:49:b8:45:db:54:ce:ad:5c:d1:1b:fd:50:4f:01:
                    8f:f3:aa:5c:82:98:e7:84:f8:dc:f0:5a:19:57:a2:
                    08:a0:0a:21:43:0c:da:1c:07:3a:85:32:a7:0a:ae:
                    bf:07:31:82:a1:72:c7:91:7d:8f:32:77:0c:0d:48:
                    f5:ad:15:eb:26:05:7c:5f:f9:a5:e4:fa:f5:9a:03:
                    c3:af:19:b7:f6:5c:10:b3:41:e3:03:11:0f:bb:a0:
                    90:75:fe:2c:a5:56:95:7c:3a:5b:b6:fd:c3:6a:1d:
                    06:ea:40:1f:2a:7e:1a:6d:df:ec:2d:b9:b0:13:a5:
                    2e:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:EC:87:6E:BD:C9:B7:7B:D1:13:A2:81:B0:7A:9A:73:49:60:FF:DC
            X509v3 Authority Key Identifier:
                keyid:31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:6c:b5:b2:16:df:90:4d:fe:26:0b:68:d2:16:04:0d:e0:13:
         c5:da:71:58:89:34:2a:2b:7f:64:40:c4:3c:65:60:c5:9d:fd:
         5c:1e:54:51:de:c2:31:78:1e:1d:94:08:b6:d7:0a:bd:f7:77:
         b0:0e:97:89:f0:d3:b2:a1:4b:e5:1b:68:e5:11:d0:6e:36:8b:
         09:ea:3d:e6:b5:12:f9:72:c6:eb:b5:27:84:08:08:ad:7c:77:
         66:30:53:ed:f8:24:1e:37:21:d0:94:37:ae:0f:1a:c1:d2:a7:
         2b:be:05:3a:2e:95:ca:8e:9a:72:f1:d4:82:7a:ea:49:ca:a6:
         6d:c4:c7:3f:04:bd:90:69:f9:0f:ce:ba:61:86:fa:a8:21:3d:
         bf:53:cb:c8:57:1b:17:d3:b7:ce:d0:29:24:04:e6:43:16:5a:
         ba:72:34:91:e5:2e:60:ae:ba:cd:95:7e:50:19:98:b5:f5:29:
         39:75:91:78:0b:38:de:e7:be:40:c8:80:d0:63:17:55:42:e4:
         ce:af:e1:81:6e:1c:c8:ce:ed:7b:35:ab:36:77:cb:9b:e6:bf:
         5b:20:42:ca:3c:76:6d:25:12:d7:7c:62:1a:9e:f8:dc:48:f2:
         10:9a:a9:10:bd:c6:64:5a:4e:8a:ad:18:b3:85:eb:b8:75:f2:
         5d:90:4f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:23:05 2025 by rpki-client