Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
File:                     i58lgoNRffGYWTiOE7rRrgJopfs.mft (raw, json)
Hash identifier:          RdlxOYt8YSec5EAmq7D5ZLI1saa/YLZiN8xfaauxWsI=
Subject key identifier:   B2:14:0F:03:01:A7:17:BB:15:53:7D:ED:93:A7:2D:3D:80:77:86:1A
Authority key identifier: 8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB
Certificate issuer:       /CN=8b9f258283517df19859388e13bad1ae0268a5fb
Certificate serial:       0198D4DFE213A3B02026F3D64DEA558E61FB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
Manifest number:          164A
Signing time:             Sat 23 Aug 2025 03:01:38 +0000
Manifest this update:     Sat 23 Aug 2025 03:01:38 +0000
Manifest next update:     Sun 24 Aug 2025 03:01:38 +0000
Files and hashes:         1: aUEo_6I1NIoEpJrfmKA_-34y2x4.roa (hash: qf/pPhy348tojuz4A7OR24KHAsQ8d6peWd65flxSoJ4=)
                          2: i58lgoNRffGYWTiOE7rRrgJopfs.crl (hash: Nv4tjEbW8KIlQpVXKvnF8d26cSNn4xiwmIepUm6DHvg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:01:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:df:e2:13:a3:b0:20:26:f3:d6:4d:ea:55:8e:61:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b9f258283517df19859388e13bad1ae0268a5fb
        Validity
            Not Before: Aug 23 03:01:38 2025 GMT
            Not After : Aug 24 03:01:38 2025 GMT
        Subject: CN=b2140f0301a717bb15537ded93a72d3d8077861a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:bb:53:ed:c4:4e:1b:16:d5:28:37:57:e8:73:
                    f6:e8:da:df:62:c9:68:35:38:a5:8d:b0:92:10:00:
                    9c:e1:9d:01:f2:d9:9c:9d:dd:3c:c7:43:d5:b3:23:
                    42:9f:07:e4:b6:bb:a2:4f:a3:3c:43:76:4d:fc:ac:
                    c3:ce:03:c8:6b:e9:27:f4:67:d2:6e:fb:b9:b1:04:
                    a9:19:ac:c1:33:3a:db:74:ae:5d:ec:b2:5b:92:1a:
                    d6:89:9f:85:f1:4a:90:cb:39:08:7e:66:6a:81:44:
                    e7:2a:ce:ed:64:0a:0b:01:d7:39:2d:ca:8c:16:27:
                    4a:65:d9:75:d0:99:5c:7a:0c:a3:02:99:ec:82:81:
                    a7:69:93:fb:37:85:ef:a5:38:26:8f:56:91:d5:da:
                    e2:c9:84:7f:bc:30:ef:0f:c8:d8:78:93:05:6e:de:
                    10:ab:b3:08:dd:4e:ba:4d:06:30:d8:e1:02:3c:b4:
                    97:e8:bc:26:fd:9a:37:eb:b9:08:e8:d1:40:9c:9e:
                    58:48:11:7b:df:49:76:90:d8:22:d0:3e:3b:71:9a:
                    d6:6d:bc:35:1b:5c:42:da:14:a3:b5:27:17:f5:61:
                    5e:70:c0:52:17:bc:fa:ab:3c:45:5b:00:b0:76:98:
                    4c:93:ae:c6:10:6d:2a:c3:b9:66:f2:24:71:76:e9:
                    39:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:14:0F:03:01:A7:17:BB:15:53:7D:ED:93:A7:2D:3D:80:77:86:1A
            X509v3 Authority Key Identifier:
                keyid:8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:fa:82:ef:6c:b2:5d:70:0d:66:3d:3f:a2:db:35:34:61:32:
         73:20:61:b8:73:9a:ed:8b:7e:80:61:03:40:ac:d4:cd:62:41:
         1e:ee:04:2b:25:e0:26:3d:68:b6:3d:27:d7:f4:31:57:e8:c4:
         cf:d9:3d:9e:26:ef:9e:e5:53:f6:9c:b4:0d:1d:74:c7:92:01:
         ba:ee:df:bc:28:fa:32:a3:d5:06:3b:3b:95:fa:19:8b:bb:0c:
         7c:5c:84:2d:c4:4a:6f:9b:8d:72:96:9f:27:cc:52:8e:41:25:
         4f:38:91:db:93:79:99:6b:d0:da:89:b5:30:d8:f0:6d:43:86:
         e9:5e:e6:8d:ac:76:76:df:17:db:6b:69:28:99:bf:f4:fd:50:
         d2:f6:a5:38:69:ff:b6:ec:1f:8b:14:67:5a:72:ad:56:95:69:
         f9:89:59:0d:bc:72:74:b2:07:18:e6:66:89:dc:d7:48:52:2b:
         a1:85:0f:d8:4a:c8:60:d6:f9:ca:9f:6b:a2:98:12:fb:36:3b:
         0f:4c:ad:ce:42:97:33:bf:35:93:d9:7c:a2:22:7c:cf:6c:55:
         8e:47:9e:b4:3d:06:02:65:15:6d:43:ba:e6:52:e8:ce:68:df:
         55:ca:ac:b6:d2:00:3d:f4:21:8c:8f:03:05:ad:17:02:df:df:
         02:4b:36:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:39 2025 by rpki-client