Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
File:                     cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft (raw, json)
Hash identifier:          WESe58OGmwTzxmud3AtiuPsldQlWvdsenGGSHNR9UF8=
Subject key identifier:   50:EB:3F:ED:F5:62:B0:D2:13:F0:AF:8A:84:14:E3:46:0E:3A:14:2F
Authority key identifier: 70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
Certificate issuer:       /CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Certificate serial:       0199FFFE7E2665A6933C9E1C1B769B70DB53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
Manifest number:          16E5
Signing time:             Mon 20 Oct 2025 05:01:32 +0000
Manifest this update:     Mon 20 Oct 2025 05:01:32 +0000
Manifest next update:     Tue 21 Oct 2025 05:01:32 +0000
Files and hashes:         1: cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl (hash: oRZO907Ff0ykJOnQv+0IPIqgBddlcvoN1rKsCeMf0LE=)
                          2: gEcPKMyXsq8EnU4MPoFeY2Uidb0.roa (hash: 43PR1hTJL7tXyu9/IcMkUlMdJ9SOinPx2dKMQk9nNKw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 05:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:fe:7e:26:65:a6:93:3c:9e:1c:1b:76:9b:70:db:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
        Validity
            Not Before: Oct 20 05:01:32 2025 GMT
            Not After : Oct 21 05:01:32 2025 GMT
        Subject: CN=50eb3fedf562b0d213f0af8a8414e3460e3a142f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:b6:45:07:ca:3f:09:48:df:6f:84:98:79:75:
                    ca:a1:e0:ab:2b:a8:6f:a2:5f:b6:3a:01:5e:d9:8b:
                    05:fe:c1:d6:08:8c:e0:da:02:5f:4b:d9:9f:67:01:
                    d6:e1:3a:56:ad:49:78:dd:43:e8:72:31:bb:18:07:
                    bd:94:dd:e7:02:f7:a0:be:25:be:91:22:18:7e:ba:
                    f7:cb:59:bf:61:a9:63:37:2d:57:bf:56:19:0a:b5:
                    6a:ca:b1:ae:11:d1:cc:5a:7b:77:c9:4c:77:f0:3f:
                    57:8d:10:75:41:2b:e2:cd:7d:e6:ea:4c:c4:38:bd:
                    7c:2c:63:95:8e:0c:25:62:aa:71:ea:39:d3:69:b9:
                    6d:c2:8c:a5:82:5c:55:a6:19:19:21:5b:42:ed:54:
                    38:a8:8a:1a:b0:89:0d:a7:7d:da:0f:b8:2e:9a:d8:
                    e0:72:bc:bd:bf:28:2e:5f:e1:65:f9:3a:f8:e0:1c:
                    b2:3b:4d:95:d3:93:69:78:c9:70:09:04:8a:4e:1c:
                    60:76:88:01:ff:91:3c:4b:ae:d7:db:dc:a3:22:6b:
                    0d:69:59:1a:3c:14:83:c9:6e:71:d7:81:bd:79:86:
                    e5:cb:e1:83:af:ab:02:30:0a:34:ef:16:f7:ae:60:
                    73:65:f8:e9:6b:c8:82:72:bc:f0:55:3e:7e:22:c8:
                    cb:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:EB:3F:ED:F5:62:B0:D2:13:F0:AF:8A:84:14:E3:46:0E:3A:14:2F
            X509v3 Authority Key Identifier:
                keyid:70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:b1:49:0f:98:0d:29:e6:b5:49:76:07:f1:a4:5b:f1:ec:34:
         b6:38:6f:b1:5f:3d:22:ea:19:3c:f6:49:1a:75:bd:62:10:8b:
         d5:46:d1:66:74:d4:2e:fd:bd:dc:46:dc:b4:15:a7:68:ac:ee:
         4f:f0:c5:5e:58:2b:d7:88:d0:a6:08:1a:fc:02:d7:84:42:7f:
         98:03:99:d8:8c:f2:c5:6e:94:01:64:d4:c1:f2:26:90:4c:ed:
         b9:e6:14:5f:5c:f3:40:a3:c9:24:ab:71:80:0c:9f:6a:40:96:
         52:74:7d:dc:92:44:71:e3:34:bf:fe:e4:6c:d2:83:41:76:ab:
         64:64:8b:e1:3d:53:b5:f8:41:fd:39:1e:9b:25:76:8a:16:b0:
         42:b4:4d:83:e8:28:7b:0d:01:6e:02:38:a3:f5:fb:98:66:7c:
         a7:ea:07:d7:47:98:7b:09:07:4f:df:5e:1b:81:88:3b:63:75:
         f8:fb:46:70:68:4e:74:c4:df:1c:3c:33:88:aa:35:9f:09:3b:
         03:9c:25:ec:ca:73:02:38:6e:40:96:57:2a:99:a4:d0:8f:45:
         9d:06:f3:3b:27:26:cc:35:00:57:f8:0e:9d:6d:dd:da:ff:79:
         6c:05:bd:88:6f:0a:c9:69:19:b3:be:c9:df:74:06:2d:eb:03:
         03:5f:a3:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn//n4mZaaTPJ4cG3abcNtTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwN2Y3ZWU2YWI5Y2Y0NDhmOTk0OTM2N2ZiN2MwZWRlMTA3
M2Y5N2YwHhcNMjUxMDIwMDUwMTMyWhcNMjUxMDIxMDUwMTMyWjAzMTEwLwYDVQQD
Eyg1MGViM2ZlZGY1NjJiMGQyMTNmMGFmOGE4NDE0ZTM0NjBlM2ExNDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLZFB8o/CUjfb4SYeXXKoeCrK6hv
ol+2OgFe2YsF/sHWCIzg2gJfS9mfZwHW4TpWrUl43UPocjG7GAe9lN3nAvegviW+
kSIYfrr3y1m/YaljNy1Xv1YZCrVqyrGuEdHMWnt3yUx38D9XjRB1QSvizX3m6kzE
OL18LGOVjgwlYqpx6jnTabltwoylglxVphkZIVtC7VQ4qIoasIkNp33aD7gumtjg
cry9vyguX+Fl+Tr44ByyO02V05NpeMlwCQSKThxgdogB/5E8S67X29yjImsNaVka
PBSDyW5x14G9eYbly+GDr6sCMAo07xb3rmBzZfjpa8iCcrzwVT5+IsjL2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFDrP+31YrDSE/CvioQU40YOOhQvMB8GA1UdIwQY
MBaAFHB/fuarnPRI+ZSTZ/t8Dt4Qc/l/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0g5LTVxdWM5RWo1bEpObi0zd08zaEJ6LVg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni8zYjQ1YjMtMThhNC00N2Y4LTgyNjQt
ZjcwOGJjNzBlNmVlLzEvY0g5LTVxdWM5RWo1bEpObi0zd08zaEJ6LVg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ni8zYjQ1YjMtMThhNC00N2Y4LTgyNjQtZjcwOGJjNzBlNmVl
LzEvY0g5LTVxdWM5RWo1bEpObi0zd08zaEJ6LVg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP7FJD5gN
Kea1SXYH8aRb8ew0tjhvsV89IuoZPPZJGnW9YhCL1UbRZnTULv293EbctBWnaKzu
T/DFXlgr14jQpgga/ALXhEJ/mAOZ2IzyxW6UAWTUwfImkEztueYUX1zzQKPJJKtx
gAyfakCWUnR93JJEceM0v/7kbNKDQXarZGSL4T1TtfhB/TkemyV2ihawQrRNg+go
ew0BbgI4o/X7mGZ8p+oH10eYewkHT99eG4GIO2N1+PtGcGhOdMTfHDwziKo1nwk7
A5wl7MpzAjhuQJZXKpmk0I9FnQbzOycmzDUAV/gOnW3d2v95bAW9iG8KyWkZs77J
33QGLesDA1+jCQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:12:33 2025 by rpki-client