Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
File:                     jwrbomBJNHOMfJaSoLOrezCoK7I.mft (raw, json)
Hash identifier:          +Ks5dnmmwmkVLE9BKLVP78G0GaSfiQvUXeeGNudX5Dc=
Subject key identifier:   F4:30:43:87:F1:99:C6:68:59:E9:91:10:DF:D6:44:67:0C:57:A5:9F
Authority key identifier: 8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
Certificate issuer:       /CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Certificate serial:       0199FAA133C156549C7CA899B1D134825DE5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
Manifest number:          0754
Signing time:             Sun 19 Oct 2025 04:01:32 +0000
Manifest this update:     Sun 19 Oct 2025 04:01:32 +0000
Manifest next update:     Mon 20 Oct 2025 04:01:32 +0000
Files and hashes:         1: jwrbomBJNHOMfJaSoLOrezCoK7I.crl (hash: n1a6ywrXpiPqUib0jJWaoIlzRlsiLkiEnbME9yq85o4=)
                          2: lHGrQ5ab4Wwh-Q0oJszTsf0BUdA.roa (hash: BJEIpPOdoxYjpK82/CR/sXoES/6zdTI5hZVWKdTDxHk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 04:01:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:a1:33:c1:56:54:9c:7c:a8:99:b1:d1:34:82:5d:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
        Validity
            Not Before: Oct 19 04:01:32 2025 GMT
            Not After : Oct 20 04:01:32 2025 GMT
        Subject: CN=f4304387f199c66859e99110dfd644670c57a59f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:4c:5c:ca:d6:fb:ca:23:7b:92:c6:26:ce:20:
                    55:c1:9c:f9:b1:19:e5:b2:8f:2e:6a:74:cc:96:0c:
                    95:1d:70:e7:d6:c4:5b:90:55:19:0b:5e:fb:4c:a2:
                    8a:c7:a2:c4:cc:5b:ba:ed:88:bb:46:eb:7d:d9:67:
                    76:cf:9c:8e:b7:9d:b6:ab:1a:b6:03:da:37:99:85:
                    37:d1:37:d6:8c:b9:d8:19:ab:91:3a:67:2d:1e:ba:
                    b0:d3:2c:fc:91:87:9f:45:79:f0:2f:c2:0e:be:c7:
                    69:11:74:23:fc:31:68:47:97:f3:c2:b8:99:70:36:
                    39:16:96:ca:34:53:5c:7e:f0:71:64:08:de:71:d9:
                    b3:18:95:36:bd:7f:17:31:9a:d5:c4:ca:98:1a:69:
                    88:f5:f7:95:15:bb:fb:5e:60:93:0a:2b:63:f8:d0:
                    bc:5e:c7:15:54:51:3c:d3:af:87:3a:40:cb:f5:2c:
                    39:9e:65:27:63:9a:bf:b6:0a:cd:de:7e:3f:2e:0c:
                    bc:fa:a5:e3:f0:a8:94:2b:3e:12:15:84:f8:fb:f1:
                    1b:5c:4b:9f:86:b1:da:77:c3:44:f6:25:b9:39:13:
                    9b:fa:b2:d4:58:0d:fc:27:8a:41:09:f2:b2:3c:5d:
                    79:45:3a:0d:0c:b2:fe:4a:99:b4:64:da:91:4f:a9:
                    74:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:30:43:87:F1:99:C6:68:59:E9:91:10:DF:D6:44:67:0C:57:A5:9F
            X509v3 Authority Key Identifier:
                keyid:8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:46:f6:6e:3b:a3:b6:7f:1b:00:28:14:9d:15:a8:6b:fe:07:
         d5:3a:a2:ee:6f:e5:f7:c3:69:19:50:79:3c:ca:08:2a:2b:85:
         31:6c:00:0e:55:22:8a:11:01:58:69:9f:3a:12:0c:01:ae:09:
         c4:d5:6f:75:ca:04:c3:e1:7b:25:41:28:05:2b:7f:c1:f9:97:
         48:b1:a8:3e:33:96:44:60:8a:76:6f:98:e7:5a:04:72:34:9c:
         52:56:e9:56:69:88:cc:7a:1f:b4:c1:34:eb:28:bf:9f:3c:e2:
         ed:e2:36:03:7d:f3:a3:71:31:57:d4:3e:27:26:d9:e3:26:9f:
         2c:f4:93:c0:a9:9c:c4:06:45:e8:9c:df:7c:e3:53:be:08:b0:
         f3:ba:62:86:51:ef:4e:ae:6f:df:b4:3e:f9:01:e6:1e:bc:3c:
         af:c2:ce:4b:0b:a0:df:45:fa:ca:ac:a9:6f:a1:50:4a:f1:50:
         54:74:86:d4:99:20:89:cb:d5:a5:c7:08:27:de:ad:79:87:7f:
         31:68:11:0d:07:32:9f:da:b3:f1:41:e2:9e:de:06:2f:e4:10:
         13:73:9d:3f:41:99:94:5b:c3:ac:5c:9c:1e:8f:4f:7b:74:eb:
         e2:71:90:cd:0c:54:73:2e:22:29:12:6a:3c:cb:e4:af:54:83:
         c9:55:82:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn6oTPBVlScfKiZsdE0gl3lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMGFkYmEyNjA0OTM0NzM4YzdjOTY5MmEwYjNhYjdiMzBh
ODJiYjIwHhcNMjUxMDE5MDQwMTMyWhcNMjUxMDIwMDQwMTMyWjAzMTEwLwYDVQQD
EyhmNDMwNDM4N2YxOTljNjY4NTllOTkxMTBkZmQ2NDQ2NzBjNTdhNTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0xcytb7yiN7ksYmziBVwZz5sRnl
so8uanTMlgyVHXDn1sRbkFUZC177TKKKx6LEzFu67Yi7Rut92Wd2z5yOt522qxq2
A9o3mYU30TfWjLnYGauROmctHrqw0yz8kYefRXnwL8IOvsdpEXQj/DFoR5fzwriZ
cDY5FpbKNFNcfvBxZAjecdmzGJU2vX8XMZrVxMqYGmmI9feVFbv7XmCTCitj+NC8
XscVVFE806+HOkDL9Sw5nmUnY5q/tgrN3n4/Lgy8+qXj8KiUKz4SFYT4+/EbXEuf
hrHad8NE9iW5OROb+rLUWA38J4pBCfKyPF15RToNDLL+Spm0ZNqRT6l0BQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQwQ4fxmcZoWemREN/WRGcMV6WfMB8GA1UdIwQY
MBaAFI8K26JgSTRzjHyWkqCzq3swqCuyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvandyYm9tQkpOSE9NZkphU29MT3JlekNvSzdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC83YTg1YzktYzU4YS00ZjhlLTgzYjEt
N2JhZmRlNGM0YjI0LzEvandyYm9tQkpOSE9NZkphU29MT3JlekNvSzdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC83YTg1YzktYzU4YS00ZjhlLTgzYjEtN2JhZmRlNGM0YjI0
LzEvandyYm9tQkpOSE9NZkphU29MT3JlekNvSzdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaUb2bjuj
tn8bACgUnRWoa/4H1Tqi7m/l98NpGVB5PMoIKiuFMWwADlUiihEBWGmfOhIMAa4J
xNVvdcoEw+F7JUEoBSt/wfmXSLGoPjOWRGCKdm+Y51oEcjScUlbpVmmIzHoftME0
6yi/nzzi7eI2A33zo3ExV9Q+JybZ4yafLPSTwKmcxAZF6JzffONTvgiw87pihlHv
Tq5v37Q++QHmHrw8r8LOSwug30X6yqypb6FQSvFQVHSG1JkgicvVpccIJ96teYd/
MWgRDQcyn9qz8UHint4GL+QQE3OdP0GZlFvDrFycHo9Pe3Tr4nGQzQxUcy4iKRJq
PMvkr1SDyVWCiQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:26 2025 by rpki-client