Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File:                     H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier:          GXup5CWMCNMCOx9o5/Bh6ki4gy0T6BxIWGfjjeEgmSk=
Subject key identifier:   49:14:BA:D9:F5:56:4F:F2:A8:58:A7:A7:B8:02:A6:C1:89:03:28:DF
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer:       /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial:       0198D4E07E86B90C7BBE7E12B128D571ACA6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number:          0F03
Signing time:             Sat 23 Aug 2025 03:02:18 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:18 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:18 +0000
Files and hashes:         1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: iHlXCMtswh6B+rEQzEMvcMZkXvqvqzrzw0PyHlq5B30=)
                          2: vNstzceOXGplN-vBnPrAujnN1Ks.roa (hash: A1jnUd+2zoPrt/m5wPvY6xxOOy1gAscK2t40BFmGG10=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:7e:86:b9:0c:7b:be:7e:12:b1:28:d5:71:ac:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
        Validity
            Not Before: Aug 23 03:02:18 2025 GMT
            Not After : Aug 24 03:02:18 2025 GMT
        Subject: CN=4914bad9f5564ff2a858a7a7b802a6c1890328df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:25:1b:40:57:71:39:f7:48:18:64:ee:3d:0c:
                    a4:b7:ac:76:86:11:fe:60:74:88:1e:5f:2c:c5:e9:
                    b7:8b:41:00:6b:ab:a5:c9:9f:bb:58:bb:61:00:3e:
                    99:ef:3c:e7:f1:91:e6:ac:d6:31:68:29:fb:36:ac:
                    39:2a:f5:34:77:bc:61:d7:1e:ee:2b:73:5a:c5:78:
                    34:f4:6c:d8:98:c7:04:94:ed:d3:4c:f6:9c:77:1f:
                    ec:b3:5c:a3:28:33:eb:85:1b:45:31:d2:9a:6b:be:
                    de:3a:7f:3f:35:8e:d1:ec:63:e9:a7:43:b1:f5:7b:
                    7f:3f:a8:c5:c5:5c:49:e1:2d:66:71:c2:96:c5:b5:
                    95:a7:a5:94:44:fa:14:28:ad:bb:06:1d:08:07:17:
                    d9:17:10:f1:5a:92:67:b9:c7:e9:40:84:95:04:14:
                    c5:55:88:bb:f3:5a:19:b6:92:b7:12:d5:2b:29:ca:
                    58:1e:13:3b:b6:c7:dc:2d:d5:2a:f1:25:04:05:d7:
                    01:39:f7:70:9b:08:b8:1f:f9:44:e5:ce:5d:d7:d1:
                    c3:08:c3:a5:04:7d:6a:1d:d1:30:2c:b2:97:1e:9a:
                    b3:91:87:f4:9b:2a:52:a7:e8:0c:fd:89:08:f2:b0:
                    1d:f9:27:ad:a6:7c:1c:da:92:75:f3:57:c9:1a:d3:
                    ae:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:14:BA:D9:F5:56:4F:F2:A8:58:A7:A7:B8:02:A6:C1:89:03:28:DF
            X509v3 Authority Key Identifier:
                keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:dd:30:e5:dc:38:71:42:9b:78:6a:13:08:8c:f7:65:77:53:
         0e:b1:ff:63:ac:05:3f:17:31:21:01:31:90:f5:38:6e:7d:56:
         10:6d:13:25:49:83:66:03:70:28:79:fe:97:8f:9d:89:23:f3:
         92:d0:fa:6a:3b:6a:f5:af:63:44:b2:b1:51:24:40:20:29:17:
         c4:54:76:e9:30:85:bc:49:38:57:48:c8:0b:1c:71:0c:91:97:
         33:b7:6a:aa:70:ce:5f:88:5e:90:e7:68:26:f0:2c:e7:29:a5:
         e1:83:3f:5f:8c:a0:29:1e:5d:4c:29:3e:0d:fc:1b:b0:50:23:
         13:ff:b1:b0:ec:6d:d1:57:60:ad:3b:f0:b3:d6:e6:85:70:85:
         5a:ac:76:2c:15:c0:e7:af:59:a3:f4:99:fa:9f:71:30:76:a6:
         99:39:f6:d6:e3:30:70:18:07:0b:28:16:d9:17:6c:e9:b1:51:
         24:26:11:1a:b3:0d:03:23:36:f5:3a:64:23:08:0e:63:82:4f:
         9a:8f:b5:2e:7f:c6:76:09:ab:79:ae:2f:64:77:10:14:a2:a5:
         35:15:f5:5d:04:f2:ef:37:26:55:4b:0e:da:dc:94:48:74:a1:
         48:cc:28:c6:67:60:fc:ed:c7:b2:25:c8:4c:4c:12:24:a8:39:
         f4:8c:6e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:11 2025 by rpki-client