Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
File:                     pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft (raw, json)
Hash identifier:          Ao32/8AD7TJaq7hngVSIO92f9ZO+9nChffKc0hgJOMs=
Subject key identifier:   8D:88:2D:2F:0F:78:22:19:90:78:B4:28:5A:67:3D:CA:D9:CD:34:2D
Authority key identifier: A4:82:43:08:BC:83:B4:EE:56:F1:C0:C1:B9:FB:FC:31:1B:0C:D4:4A
Certificate issuer:       /CN=a4824308bc83b4ee56f1c0c1b9fbfc311b0cd44a
Certificate serial:       0199FB45BF6253A54B43A4414291E8B5A788
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
Manifest number:          16E4
Signing time:             Sun 19 Oct 2025 07:01:16 +0000
Manifest this update:     Sun 19 Oct 2025 07:01:16 +0000
Manifest next update:     Mon 20 Oct 2025 07:01:16 +0000
Files and hashes:         1: C68Jy4vS9ZhrosrQ0hLHm1uIuZY.roa (hash: KriDQtKp0/6qr4HNTZ8vH7ju161mMdjIkNUJn2wDbds=)
                          2: TTYqeImd9Bx1jE17xCXwGjIy_ds.roa (hash: zl9hhkn8MVjXkdNWr2SWdYWZOS+aR6DMyQIaYbl32sI=)
                          3: aLyfJT6We20ULVg1UbujnE5UVaI.roa (hash: XttwXUAYz6CHALtumX6fckhDuT6Y4LNJR+NAILB010U=)
                          4: lixJMjo5-_bNmfYtadlmrrGpsCg.roa (hash: OW5E61Tvo1LN0X4Q2KSxHXhfLjcuHjhFHfnXTwr/DjA=)
                          5: pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl (hash: PuNqkGzgx6Z+zl7CbMaq1N8FbCuUTit2xx5HYpwd+54=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:45:bf:62:53:a5:4b:43:a4:41:42:91:e8:b5:a7:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a4824308bc83b4ee56f1c0c1b9fbfc311b0cd44a
        Validity
            Not Before: Oct 19 07:01:16 2025 GMT
            Not After : Oct 20 07:01:16 2025 GMT
        Subject: CN=8d882d2f0f7822199078b4285a673dcad9cd342d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:b1:96:3b:32:16:28:c5:c7:71:c5:a8:a1:42:
                    71:a0:ea:22:5f:a7:f1:47:cf:7b:c1:90:d8:b2:6d:
                    09:e2:45:e1:4e:f7:a6:a1:e8:8f:03:2b:ce:d7:33:
                    40:e6:71:09:50:30:7f:bc:af:f2:55:c4:99:1b:5f:
                    11:30:5d:05:5c:54:b6:61:6c:3b:93:54:f9:b7:77:
                    58:2d:05:42:eb:92:5e:13:f9:7a:a6:02:2e:d8:a5:
                    30:f7:cf:fd:88:0a:1c:71:93:4c:6b:ea:a3:53:c5:
                    fa:d2:b6:f8:19:bc:9b:fe:38:be:27:b4:34:42:3a:
                    d1:72:22:bd:ad:f2:0e:c6:b7:31:77:bb:e9:57:39:
                    20:56:04:70:8a:49:a8:ab:61:8c:f8:40:9d:99:dc:
                    81:9e:33:69:e1:4b:67:e2:31:92:55:e5:59:e2:70:
                    f5:d4:fe:4c:2c:cb:e6:b9:fb:1b:f4:b6:39:fc:7f:
                    02:28:9b:c9:47:5f:ac:4d:ce:2f:a1:f6:62:02:f7:
                    52:f1:e9:d8:de:cb:b8:d3:44:8e:fd:e0:10:b4:3b:
                    f0:21:df:52:bd:ba:2c:a5:4c:f0:d2:32:5f:6c:37:
                    55:ed:7c:62:ce:49:6b:fc:94:ce:c7:10:26:c2:93:
                    b7:49:7b:28:ae:7a:03:f5:c1:aa:ac:5d:64:84:29:
                    fc:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:88:2D:2F:0F:78:22:19:90:78:B4:28:5A:67:3D:CA:D9:CD:34:2D
            X509v3 Authority Key Identifier:
                keyid:A4:82:43:08:BC:83:B4:EE:56:F1:C0:C1:B9:FB:FC:31:1B:0C:D4:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:a9:f5:e2:86:8c:a8:6b:ef:4c:0a:bf:cd:61:55:43:da:2e:
         27:7d:07:dd:b9:4f:db:5f:d7:0f:b1:9d:21:8d:a2:49:49:f4:
         70:c8:85:41:e8:f3:aa:83:46:79:e1:5a:82:81:9f:ed:88:fd:
         d9:bf:9a:07:53:95:ff:7b:73:59:ba:14:0e:a5:48:4c:79:f7:
         90:a2:2e:22:14:eb:88:05:f6:3c:c6:f2:2c:20:c4:93:bf:23:
         4e:ed:ed:0a:55:d7:54:e1:66:a7:76:ea:f2:b6:a8:ec:e8:f0:
         7c:20:31:8e:5a:2d:c4:b1:87:ca:b1:33:27:3e:55:28:ad:60:
         7b:f5:cf:8a:ee:71:3b:5d:2f:6c:44:70:7a:48:b8:cc:f6:1b:
         35:99:b5:54:46:e0:ff:d0:e3:cb:94:06:33:b4:ad:97:12:af:
         95:4d:1b:ac:24:18:ee:be:fd:69:1b:cd:17:b8:e1:70:1d:d8:
         bf:6b:da:d1:e4:95:92:8e:16:30:2f:c8:55:14:75:03:1b:22:
         e9:3e:eb:71:df:52:5b:2d:58:a4:9d:d4:b8:50:45:e7:39:cf:
         6b:94:f8:5e:87:d2:58:f8:ee:30:4b:cd:a6:35:11:6b:7c:37:
         55:59:35:d1:61:a2:29:65:52:68:fa:f5:44:2f:f7:73:3d:e2:
         88:cc:88:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:02 2025 by rpki-client