Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
File:                     _hpSVPN9jCkbEd2r7YiwY0gdr2s.mft (raw, json)
Hash identifier:          SAe4aKo3YsFiy1drkixUir6hMhOA5+WPpx6r24bq9aw=
Subject key identifier:   6C:52:55:B2:2F:A1:03:E0:9A:11:EB:8A:F4:DE:88:25:D4:40:59:C5
Authority key identifier: FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B
Certificate issuer:       /CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
Certificate serial:       0199FDD8E3BFA5B52FF9BE57B5152AC8C985
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
Manifest number:          16E0
Signing time:             Sun 19 Oct 2025 19:01:13 +0000
Manifest this update:     Sun 19 Oct 2025 19:01:13 +0000
Manifest next update:     Mon 20 Oct 2025 19:01:13 +0000
Files and hashes:         1: _hpSVPN9jCkbEd2r7YiwY0gdr2s.crl (hash: ElrO1xNJG8kIQlRsKH/dz3uzJbfVCq1HE4L4rOcU8Bc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d8:e3:bf:a5:b5:2f:f9:be:57:b5:15:2a:c8:c9:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
        Validity
            Not Before: Oct 19 19:01:13 2025 GMT
            Not After : Oct 20 19:01:13 2025 GMT
        Subject: CN=6c5255b22fa103e09a11eb8af4de8825d44059c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:34:58:cf:38:f5:06:76:90:c9:f4:7e:5b:0a:
                    70:e5:89:b0:46:8e:0f:0f:cd:08:4d:85:4b:32:d1:
                    14:a5:80:16:31:e0:9f:37:d7:62:42:b3:d9:ee:fd:
                    04:33:cc:e1:49:7b:3e:49:fd:07:0f:f1:e1:1c:01:
                    16:85:6f:e6:cf:05:08:79:ae:d4:db:3b:99:e9:8e:
                    e4:3a:e4:e4:a9:e5:5d:cc:60:a1:55:81:de:31:9f:
                    f4:13:a3:eb:11:a5:22:c9:9b:f8:5a:27:2c:34:58:
                    b7:1c:0e:e8:22:1b:fe:bb:b6:5c:b1:0b:29:ea:65:
                    1a:2b:c5:ad:07:70:08:15:22:c3:fb:b1:b5:24:7e:
                    e4:64:cb:c4:d1:01:71:26:31:75:64:fc:45:da:36:
                    97:c3:ee:d3:0b:c7:2c:a7:0d:c0:1e:c0:71:0a:d1:
                    d2:f0:da:b9:b7:44:0b:5d:43:83:01:17:8a:03:6e:
                    27:29:7c:90:0c:3e:27:e2:87:9d:56:56:0d:ef:1d:
                    77:93:95:2e:4b:df:5c:53:71:2b:5e:f7:73:b4:5c:
                    5b:7f:2a:8e:4c:67:12:52:6d:8c:92:3d:b1:39:cd:
                    1c:f0:5a:81:5a:4b:bb:7d:c6:72:31:8c:cd:58:21:
                    c9:b8:7a:f8:e4:d1:b6:a9:66:49:02:3c:71:05:bf:
                    93:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:52:55:B2:2F:A1:03:E0:9A:11:EB:8A:F4:DE:88:25:D4:40:59:C5
            X509v3 Authority Key Identifier:
                keyid:FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:28:e5:7e:7d:cf:b7:55:70:76:9e:b5:64:8b:3b:3b:b3:52:
         ce:f4:49:77:75:d2:73:d4:72:15:07:73:a3:31:3c:f9:20:ce:
         df:b8:aa:7b:8c:da:8f:67:0c:25:df:5e:bf:01:81:29:31:09:
         94:66:a2:03:ee:b3:fa:49:db:e8:bb:b2:b9:b3:aa:24:ca:72:
         fd:06:3d:bb:e6:1a:a8:fb:f3:4f:03:87:f2:45:54:7a:12:22:
         76:82:b5:26:ed:40:8a:18:c4:22:d2:36:f4:b9:e7:41:ef:39:
         4c:2b:f8:6b:b0:48:1b:5f:26:8b:65:d0:1b:76:fd:c0:51:3a:
         06:d5:3d:a1:01:0c:a2:c3:ae:dc:35:8e:d1:2e:ab:4d:c7:3c:
         cc:a5:2c:22:69:59:3f:0b:2f:02:58:53:36:93:c5:d7:97:71:
         01:95:2c:dd:9e:87:a3:7d:a9:92:96:ec:de:3f:f3:87:7c:78:
         01:14:b9:90:72:0e:05:55:9a:34:da:15:37:de:5a:c2:38:b8:
         87:f9:22:6b:c4:f8:38:c6:9a:c4:bd:73:00:cd:ad:6e:9d:98:
         71:3d:6b:e9:52:64:6a:03:27:da:a8:a2:37:96:81:11:39:3e:
         c8:6b:6b:8d:4e:9d:68:06:73:3c:da:67:90:6f:7e:ec:c3:8b:
         37:b5:ff:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----