Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
File:                     xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft (raw, json)
Hash identifier:          yotGqCGLs5z+DNZgjXz2oGOSABdTyWVdlwsNS6Fv55c=
Subject key identifier:   99:0C:C4:BD:8F:5C:1B:1B:26:18:1F:97:11:8B:94:8D:3F:FC:E2:C5
Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
Certificate issuer:       /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Certificate serial:       0198D4E062A43B79AE432F636AEB6C6B3D12
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
Manifest number:          0699
Signing time:             Sat 23 Aug 2025 03:02:11 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:11 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:11 +0000
Files and hashes:         1: gO1QQzQ8EJSK1sz9QVMIVflw4Is.roa (hash: XHDVuSMRNZ8ZK68EQ/rZiQRsF4JaubC5jLA4NaC8LBM=)
                          2: xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl (hash: 6H4yfQfGwxKzNfnEl0yWDSDxlvadWb46eflCxdPlVqs=)
                          3: z5AaUIsCUfsHWnAtqAIr_d8n8do.roa (hash: rmzyF9COLH0iNSyMo0DleMzCkcEN6+9Om4xVkdPkL6s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:62:a4:3b:79:ae:43:2f:63:6a:eb:6c:6b:3d:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
        Validity
            Not Before: Aug 23 03:02:11 2025 GMT
            Not After : Aug 24 03:02:11 2025 GMT
        Subject: CN=990cc4bd8f5c1b1b26181f97118b948d3ffce2c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:4c:b1:37:3f:fb:e2:ba:1d:e9:ff:e9:df:fa:
                    87:c3:11:05:c6:e6:f7:95:aa:3f:1c:06:b9:2d:8c:
                    c9:36:e8:6c:e1:6d:0a:0d:f0:4f:51:2e:54:e8:ae:
                    5b:a3:34:66:b1:53:88:b5:6f:cb:7d:a4:50:1c:04:
                    82:ff:08:75:fc:c5:66:11:5c:99:cf:e6:f9:5c:52:
                    43:a5:62:d6:f3:b5:85:5c:29:c0:b9:8f:6f:c7:fd:
                    1f:ac:5f:b3:f3:80:a5:39:0a:a4:25:65:67:fa:8f:
                    09:a9:c2:99:c0:4b:4a:9a:5b:4c:da:82:4e:29:48:
                    01:97:1d:29:bd:ae:80:af:b6:0b:39:6a:79:1f:b2:
                    32:87:ef:fd:7f:35:40:99:24:a5:2d:48:57:0d:51:
                    9b:07:94:31:71:12:b1:8a:03:55:c4:8a:af:99:aa:
                    7e:c0:70:38:0f:ec:15:f9:33:a8:67:c6:20:a7:64:
                    67:29:12:3a:c0:87:75:73:54:67:55:ab:c6:0f:1d:
                    9b:bd:79:0f:b0:c9:02:7c:a8:7f:57:f4:f4:25:a3:
                    47:78:c6:b1:f3:62:70:09:39:0c:ab:c6:eb:e5:cf:
                    ff:b8:ce:91:11:6b:f9:f4:aa:63:9e:b7:0b:38:e6:
                    14:4d:08:83:2f:86:19:10:8c:85:01:53:d5:16:92:
                    93:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:0C:C4:BD:8F:5C:1B:1B:26:18:1F:97:11:8B:94:8D:3F:FC:E2:C5
            X509v3 Authority Key Identifier:
                keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:50:27:2f:78:d5:bf:ec:76:c1:5e:db:2c:04:08:f2:fc:0d:
         51:ae:e8:b6:f9:ac:09:11:aa:37:3a:ae:49:dc:10:e5:34:27:
         55:70:24:00:0f:30:b4:7d:b8:db:d6:0d:bc:63:f4:18:26:bf:
         e0:20:cb:6a:ea:46:4b:3b:88:1e:f9:74:a7:4c:92:65:de:59:
         40:37:8f:ca:58:cf:52:7d:16:ad:24:74:7b:39:d9:9c:c1:8e:
         f0:78:9a:4d:89:02:b6:b5:fa:ac:e3:0c:ea:ce:3e:74:00:3f:
         18:a0:7c:24:e3:c9:67:03:94:81:b4:8c:4f:be:8b:93:f9:b5:
         24:be:46:63:80:a9:81:ed:b1:2d:27:af:ae:a8:72:a7:40:8b:
         35:75:32:77:87:25:52:4b:74:bc:d2:39:31:34:28:a5:09:5b:
         ce:a0:4f:30:ee:fd:be:0d:f9:1e:fb:d0:e6:ca:ad:07:cc:2e:
         09:47:1b:af:0c:2d:e1:fe:47:75:94:a6:5d:b4:76:0d:a2:15:
         aa:c5:1f:2c:51:d8:7f:0d:91:98:82:38:fc:4a:be:cc:5f:8e:
         c2:7e:80:30:36:78:b2:7c:0a:d5:e4:a2:a4:01:3c:b2:10:26:
         e5:be:69:e6:10:af:ae:bb:b9:55:64:92:41:c9:79:ad:c6:c2:
         86:a0:d1:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:00:10 2025 by rpki-client