Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File:                     U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier:          2nswQRwttYx5zwwQRYPDlsHI7u6Nle2dOEJpfS4cPaY=
Subject key identifier:   B2:A4:EA:FA:A9:42:B7:2D:AB:EB:AA:5D:AA:4A:12:03:72:04:BD:C5
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer:       /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial:       0199FD6B4DF228F4BF0B6E5CCF2298CCDA88
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number:          1391
Signing time:             Sun 19 Oct 2025 17:01:31 +0000
Manifest this update:     Sun 19 Oct 2025 17:01:31 +0000
Manifest next update:     Mon 20 Oct 2025 17:01:31 +0000
Files and hashes:         1: Gb_tS4tDYUhq7ZFBBu6bXOHKxSQ.roa (hash: j+ql1A+cPykDsn/U+bRsvn2rorjyFgGlp+mF0Qt3tRQ=)
                          2: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: 5GaftloIIlzQa7fJrg4RFklU9RN32HohM1SuRxawGqI=)
                          3: aDocXw9aAWTC2tonweXjSXZoNMs.roa (hash: M6NywDoKFY4uKrDQ3WCmTb7f59Ph9hBt6rzgbYZvGvU=)
                          4: dqRRF9NrCy7kpjHElym2fRaWWpg.roa (hash: yVbcvUrGd5qHEf8kKaXL1t+AGyhms8ILF9sbmeot86I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 17:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:6b:4d:f2:28:f4:bf:0b:6e:5c:cf:22:98:cc:da:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
        Validity
            Not Before: Oct 19 17:01:31 2025 GMT
            Not After : Oct 20 17:01:31 2025 GMT
        Subject: CN=b2a4eafaa942b72dabebaa5daa4a12037204bdc5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:16:1e:5e:90:b5:a1:de:c2:8f:b0:ce:9b:df:
                    02:a2:d2:08:bc:f1:d3:25:63:4f:5f:67:52:0b:c5:
                    5f:e7:a4:32:ea:21:47:22:a2:3c:17:7a:ea:ce:4e:
                    7d:51:15:6e:46:cf:43:af:f0:74:7b:be:b7:97:1f:
                    b5:6e:69:5b:de:a7:3a:21:74:fc:5a:1b:a1:6f:35:
                    f5:3a:ed:ff:e6:d0:99:dd:06:d3:1a:2a:c7:ce:9d:
                    75:be:61:05:a8:17:b3:6b:fd:e4:37:fc:5f:cd:12:
                    b4:29:2c:42:e7:c6:5e:2a:7c:2e:06:52:75:6f:17:
                    fe:f2:3e:68:a6:f4:91:5e:98:e9:3d:b3:44:dc:c1:
                    87:10:88:5e:db:ca:0c:4a:97:f7:5b:eb:1a:56:89:
                    fb:1b:ed:15:16:88:7f:be:09:49:4e:be:4a:3e:bf:
                    5c:4f:4f:b2:73:c0:fc:68:9d:ad:59:2b:77:06:50:
                    4a:9e:0b:76:90:27:a9:f4:4c:45:86:55:eb:bd:aa:
                    ce:52:c6:2b:57:f2:d8:c1:0c:d4:e8:ec:46:4b:79:
                    a9:d6:76:b6:cc:1c:76:c7:b0:66:dc:b7:36:d6:f7:
                    25:c9:0a:29:dd:2c:68:7c:28:ce:ed:66:8b:d1:31:
                    be:2d:d3:f1:f8:d7:e5:fa:08:bf:36:e5:8f:23:73:
                    0d:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:A4:EA:FA:A9:42:B7:2D:AB:EB:AA:5D:AA:4A:12:03:72:04:BD:C5
            X509v3 Authority Key Identifier:
                keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:7b:4c:cc:02:85:aa:e6:33:b2:41:fd:c0:2d:cb:c5:52:96:
         11:fd:73:3b:29:3d:19:09:f0:34:7d:2f:fa:87:55:68:7a:8b:
         47:e0:ce:82:f8:e8:26:bf:3d:17:32:da:a4:bf:4d:ce:50:74:
         fa:79:0d:27:24:08:ad:43:de:19:f5:9a:20:23:7e:77:aa:4f:
         e3:77:48:88:8b:74:1c:3e:a7:25:59:ee:9c:f1:3c:07:60:9e:
         51:2d:ab:d5:ef:e2:f1:68:06:35:3a:fb:e7:5c:f8:75:f6:6c:
         af:fa:fd:cf:c2:38:ef:a5:2c:08:a0:c7:31:c2:f3:fe:4d:42:
         26:db:5f:8a:d9:94:8a:0f:ff:4e:3a:60:05:e5:9b:24:36:84:
         7d:c5:e4:c2:f1:7d:53:20:5b:6a:b1:c3:31:16:d2:77:aa:f9:
         dd:76:58:2d:94:4a:df:19:70:5c:16:4c:33:1f:c5:9e:03:ea:
         4f:e6:6f:e4:0a:39:1a:24:62:bc:b9:70:ba:7f:74:8d:6a:06:
         c8:ae:0e:e6:b4:8e:7b:24:bb:60:69:b7:55:63:32:a2:d0:31:
         7a:7b:c5:92:17:b4:1a:05:f4:20:3d:c1:f5:f2:ea:6c:f0:bc:
         b7:03:c5:89:5a:b5:b5:83:d5:be:df:65:b3:2c:50:f9:6e:fb:
         12:3b:eb:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:33:20 2025 by rpki-client