Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
File:                     AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft (raw, json)
Hash identifier:          UdSP05EFyQ7/Xv43eRg2sjd6eQhOl2r1493s1q3wcgc=
Subject key identifier:   D0:27:8F:1F:E5:39:6B:49:7B:6F:A6:C4:9B:A8:48:C5:D9:5A:6E:51
Authority key identifier: 01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
Certificate issuer:       /CN=01538851167b4e3d6f64d53797b08cb41371870f
Certificate serial:       0199FAD832D19D115AA8E7A6460507F7C0F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
Manifest number:          16E1
Signing time:             Sun 19 Oct 2025 05:01:36 +0000
Manifest this update:     Sun 19 Oct 2025 05:01:36 +0000
Manifest next update:     Mon 20 Oct 2025 05:01:36 +0000
Files and hashes:         1: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl (hash: oQGBLwDK89liKUQXveJNUY/chYT+rAVM2m34YUhBLWc=)
                          2: voTBQK08ae5dJLLPC_WLTf299J4.roa (hash: IJFytwQyok533gq1H2eNYMHcRnLoiQur1Z7mEoU5py4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 05:01:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:d8:32:d1:9d:11:5a:a8:e7:a6:46:05:07:f7:c0:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01538851167b4e3d6f64d53797b08cb41371870f
        Validity
            Not Before: Oct 19 05:01:36 2025 GMT
            Not After : Oct 20 05:01:36 2025 GMT
        Subject: CN=d0278f1fe5396b497b6fa6c49ba848c5d95a6e51
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:47:46:5d:d4:94:da:3a:f4:38:a8:ea:1f:d6:
                    17:22:d1:89:ca:e9:5c:23:11:00:2f:51:5a:cb:46:
                    ec:9e:a4:39:9c:2c:dc:52:99:0b:f8:6d:4b:57:88:
                    b3:8c:5b:3a:b1:bc:b7:b5:4c:38:b2:11:a4:3d:d2:
                    fd:99:3b:2c:ec:32:2e:c9:e6:c5:0f:31:5d:a2:70:
                    a9:df:b7:9d:f6:d6:04:25:94:79:ba:92:7d:6d:e8:
                    42:30:4d:58:9a:e6:8b:bf:53:7c:26:62:a6:a3:87:
                    32:83:5c:4a:f9:85:cc:39:07:c3:02:c7:3c:a5:f1:
                    ac:32:45:44:76:a1:ec:8b:92:80:32:b4:51:44:c7:
                    03:9a:5e:f2:d1:48:44:87:75:72:5e:b3:ca:3a:89:
                    d7:f2:47:6f:06:0e:d2:ee:61:90:5a:9f:10:63:23:
                    e6:94:b4:42:76:af:e6:0a:2b:da:7d:cf:4e:06:d6:
                    5a:95:a7:09:4d:72:5d:b1:b5:83:8c:4d:1c:30:d3:
                    27:3f:4b:5f:83:1b:aa:c0:4b:6d:98:f1:26:c2:f6:
                    ca:17:9a:6a:7e:f0:e4:cc:f7:af:7c:9a:c2:b5:12:
                    46:27:d3:9f:e4:2a:45:b0:57:94:69:33:99:57:da:
                    b4:5c:8b:02:68:41:2b:dc:c0:d3:2f:f0:ad:ef:5e:
                    65:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:27:8F:1F:E5:39:6B:49:7B:6F:A6:C4:9B:A8:48:C5:D9:5A:6E:51
            X509v3 Authority Key Identifier:
                keyid:01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:9a:89:32:63:6f:bf:77:93:06:3d:91:88:2e:8b:0d:e6:59:
         b8:81:65:5c:17:0d:dd:9d:5f:1f:0b:8f:07:f8:13:17:6f:d5:
         30:bf:4d:5b:57:15:4b:b5:15:b9:e6:92:2c:44:d4:c5:5d:6e:
         7d:c4:cf:a3:c2:ca:8d:4b:2a:a5:59:4a:2b:02:3b:fe:2a:5d:
         87:85:c0:d6:52:48:2d:e6:ba:12:a2:a5:f5:56:d6:20:b0:3d:
         34:a4:99:b3:9a:64:70:0d:87:b1:9e:b7:04:2a:68:ae:71:2c:
         f1:69:b0:84:7b:1b:da:5b:d2:77:2f:86:96:c4:00:61:dc:e5:
         92:53:8f:30:05:0e:c1:e2:77:29:86:ad:47:86:68:0d:eb:27:
         85:e8:9b:80:1d:b0:d2:db:4f:06:d3:2d:35:8f:8a:69:6e:40:
         84:c4:c4:8f:a6:53:5b:de:da:a4:b4:be:61:6d:62:23:3c:16:
         66:ec:54:6d:3f:1c:a1:63:10:a9:cb:5d:9e:37:ba:4c:dd:24:
         7a:fd:42:97:b6:6c:e2:51:4e:1c:15:b8:89:82:c6:c8:32:79:
         33:e1:df:ed:f0:3d:93:03:91:a0:ad:79:ee:88:2b:c1:f3:58:
         b8:4d:2e:74:0e:c6:bb:bd:e6:3e:bb:fb:63:d0:00:b7:0e:1f:
         c4:0a:e3:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn62DLRnRFaqOemRgUH98DxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNTM4ODUxMTY3YjRlM2Q2ZjY0ZDUzNzk3YjA4Y2I0MTM3
MTg3MGYwHhcNMjUxMDE5MDUwMTM2WhcNMjUxMDIwMDUwMTM2WjAzMTEwLwYDVQQD
EyhkMDI3OGYxZmU1Mzk2YjQ5N2I2ZmE2YzQ5YmE4NDhjNWQ5NWE2ZTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0dGXdSU2jr0OKjqH9YXItGJyulc
IxEAL1Fay0bsnqQ5nCzcUpkL+G1LV4izjFs6sby3tUw4shGkPdL9mTss7DIuyebF
DzFdonCp37ed9tYEJZR5upJ9behCME1YmuaLv1N8JmKmo4cyg1xK+YXMOQfDAsc8
pfGsMkVEdqHsi5KAMrRRRMcDml7y0UhEh3VyXrPKOonX8kdvBg7S7mGQWp8QYyPm
lLRCdq/mCivafc9OBtZalacJTXJdsbWDjE0cMNMnP0tfgxuqwEttmPEmwvbKF5pq
fvDkzPevfJrCtRJGJ9Of5CpFsFeUaTOZV9q0XIsCaEEr3MDTL/Ct715lJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNAnjx/lOWtJe2+mxJuoSMXZWm5RMB8GA1UdIwQY
MBaAFAFTiFEWe049b2TVN5ewjLQTcYcPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9iZjQyNjMtZmZhZS00MmQ3LWJlMGYt
NjI5NWI4NTRkZjg2LzEvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9iZjQyNjMtZmZhZS00MmQ3LWJlMGYtNjI5NWI4NTRkZjg2
LzEvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZZqJMmNv
v3eTBj2RiC6LDeZZuIFlXBcN3Z1fHwuPB/gTF2/VML9NW1cVS7UVueaSLETUxV1u
fcTPo8LKjUsqpVlKKwI7/ipdh4XA1lJILea6EqKl9VbWILA9NKSZs5pkcA2HsZ63
BCpornEs8WmwhHsb2lvSdy+GlsQAYdzlklOPMAUOweJ3KYatR4ZoDesnheibgB2w
0ttPBtMtNY+KaW5AhMTEj6ZTW97apLS+YW1iIzwWZuxUbT8coWMQqctdnje6TN0k
ev1Cl7Zs4lFOHBW4iYLGyDJ5M+Hf7fA9kwORoK157ogrwfNYuE0udA7Gu73mPrv7
Y9AAtw4fxArjEQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:08 2025 by rpki-client