Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File:                     hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier:          I2IdKREU31Bas5AuRwoAvNhnLeDvtqV/vtktgPjLu9I=
Subject key identifier:   48:6C:E3:AD:A2:20:B6:57:14:1D:1A:C6:27:74:DD:31:57:88:C9:77
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer:       /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial:       0197CACC017AC521E30508210BE852E1A447
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number:          105A
Signing time:             Wed 02 Jul 2025 11:00:56 +0000
Manifest this update:     Wed 02 Jul 2025 11:00:56 +0000
Manifest next update:     Thu 03 Jul 2025 11:00:56 +0000
Files and hashes:         1: XLQfftOCYwZhCKWBFvPgcWtM3ng.roa (hash: e5IwRRubP2iih1RAenDvyf84x82YlIWC8mC3l2YoKV8=)
                          2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: sEa9l6kPM1Td+VvwlOdEvJgsYkGEC3NmaSO9zNsYPuM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 03 Jul 2025 11:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ca:cc:01:7a:c5:21:e3:05:08:21:0b:e8:52:e1:a4:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
        Validity
            Not Before: Jul  2 11:00:56 2025 GMT
            Not After : Jul  3 11:00:56 2025 GMT
        Subject: CN=486ce3ada220b657141d1ac62774dd315788c977
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fc:cb:25:e7:49:b8:ae:7d:c8:3f:3a:ca:eb:46:
                    5b:3a:e3:a4:91:a6:5b:e9:33:68:2f:48:be:65:a3:
                    b8:2d:0f:a3:b2:e0:2d:6c:df:42:02:91:e5:36:9f:
                    24:07:d1:c9:9e:93:66:d6:34:f1:bb:ea:18:94:01:
                    b6:ae:d0:b1:a6:d7:f3:69:88:75:8e:aa:bf:b0:8b:
                    9c:07:62:29:ca:d3:45:ae:36:b7:fa:ce:c1:f0:7a:
                    ea:a3:66:27:91:51:fd:c8:a0:cd:bc:da:a7:c9:fa:
                    79:14:c7:1f:0b:b9:4a:1f:2c:e4:0b:86:0a:9f:23:
                    b9:b9:24:82:16:5e:73:e3:43:c8:ca:b3:b7:c4:46:
                    f6:e4:2c:07:07:2e:48:30:0e:dd:23:5f:ba:fe:e8:
                    3a:2d:20:97:3e:59:56:3f:b8:fc:5b:45:f7:96:58:
                    d8:76:bc:2a:e7:f9:e3:81:50:26:06:2c:d2:b4:b8:
                    bc:30:51:91:a4:25:e6:f9:ea:e7:bd:1c:73:5e:b5:
                    fe:98:85:21:95:fd:26:43:4d:bb:79:c3:26:74:33:
                    b0:15:9a:16:c8:43:dc:14:b3:e9:06:1e:45:38:fd:
                    06:8d:24:a2:2c:b4:d2:7b:a0:e8:4d:40:72:2f:37:
                    23:b6:cc:f3:71:c9:5c:0b:5b:f8:35:58:ac:62:b7:
                    68:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:6C:E3:AD:A2:20:B6:57:14:1D:1A:C6:27:74:DD:31:57:88:C9:77
            X509v3 Authority Key Identifier:
                keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c9:ae:8e:ff:70:a7:fd:3b:90:cc:eb:4f:bb:5c:db:b8:0a:9b:
         59:45:43:e9:41:5e:52:39:be:9e:bb:12:aa:44:af:90:c7:1d:
         16:29:a7:9d:8b:07:b5:84:05:b0:14:00:c0:bb:c6:51:59:d0:
         e6:36:17:d4:a3:2e:3a:b4:40:df:4b:d3:a5:55:12:fc:b8:c9:
         ed:b5:7c:fb:70:53:84:6b:ec:d6:ac:2a:97:60:5f:56:0f:34:
         52:14:ee:f7:23:a8:f2:68:4b:42:68:44:d7:88:f1:dd:42:c3:
         4e:b6:33:d8:ef:74:9d:4f:9b:00:4c:dc:91:f4:29:24:d1:63:
         e2:73:56:a1:5c:30:fd:a6:99:ee:72:c5:30:f2:5a:30:a9:3a:
         21:f1:43:c6:7c:3a:6c:87:22:46:49:1a:d7:e0:2f:b8:9b:ff:
         eb:95:d1:96:05:53:8b:a7:2a:dc:7d:20:a9:9b:03:10:b9:f4:
         79:df:db:5b:de:af:51:ab:76:58:37:d3:b1:b5:6c:5d:04:1e:
         2b:f6:eb:74:90:d8:d5:bc:4b:0e:ce:cf:38:91:6d:6c:50:dd:
         7a:ab:b2:5d:c5:6e:a6:a0:b7:46:4a:f9:15:3a:e9:13:11:e4:
         a5:41:ee:a4:ba:32:fb:30:d3:7f:e6:b3:3a:32:ec:0b:2d:6d:
         de:2b:c1:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfKzAF6xSHjBQghC+hS4aRHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NmQ0NTIyNWNmMGQ0ZmE5YzY1YWVlODg4NjFkMjI2MTIw
M2FkMDAwHhcNMjUwNzAyMTEwMDU2WhcNMjUwNzAzMTEwMDU2WjAzMTEwLwYDVQQD
Eyg0ODZjZTNhZGEyMjBiNjU3MTQxZDFhYzYyNzc0ZGQzMTU3ODhjOTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Msl50m4rn3IPzrK60ZbOuOkkaZb
6TNoL0i+ZaO4LQ+jsuAtbN9CApHlNp8kB9HJnpNm1jTxu+oYlAG2rtCxptfzaYh1
jqq/sIucB2IpytNFrja3+s7B8Hrqo2YnkVH9yKDNvNqnyfp5FMcfC7lKHyzkC4YK
nyO5uSSCFl5z40PIyrO3xEb25CwHBy5IMA7dI1+6/ug6LSCXPllWP7j8W0X3lljY
drwq5/njgVAmBizStLi8MFGRpCXm+ernvRxzXrX+mIUhlf0mQ027ecMmdDOwFZoW
yEPcFLPpBh5FOP0GjSSiLLTSe6DoTUByLzcjtszzcclcC1v4NVisYrdo0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEhs462iILZXFB0axid03TFXiMl3MB8GA1UdIwQY
MBaAFIRtRSJc8NT6nGWu6Ihh0iYSA60AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEcxRklsencxUHFjWmE3b2lHSFNKaElEclFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xNjNmNGItZGU1OS00ODdhLTkxMTAt
NDYzNTMxMDQ2YzdmLzEvaEcxRklsencxUHFjWmE3b2lHSFNKaElEclFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8xNjNmNGItZGU1OS00ODdhLTkxMTAtNDYzNTMxMDQ2Yzdm
LzEvaEcxRklsencxUHFjWmE3b2lHSFNKaElEclFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAya6O/3Cn
/TuQzOtPu1zbuAqbWUVD6UFeUjm+nrsSqkSvkMcdFimnnYsHtYQFsBQAwLvGUVnQ
5jYX1KMuOrRA30vTpVUS/LjJ7bV8+3BThGvs1qwql2BfVg80UhTu9yOo8mhLQmhE
14jx3ULDTrYz2O90nU+bAEzckfQpJNFj4nNWoVww/aaZ7nLFMPJaMKk6IfFDxnw6
bIciRkka1+AvuJv/65XRlgVTi6cq3H0gqZsDELn0ed/bW96vUat2WDfTsbVsXQQe
K/brdJDY1bxLDs7POJFtbFDdequyXcVupqC3Rkr5FTrpExHkpUHupLoy+zDTf+az
OjLsCy1t3ivB3w==
-----END CERTIFICATE-----
Generated at Wed Jul 2 19:58:34 2025 by rpki-client