Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
File:                     sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json)
Hash identifier:          34oVDQNsDDNuHOCdotqvgf1FvOPAx0fY87+SvfDvXkA=
Subject key identifier:   ED:80:35:2E:0A:B9:6D:AB:85:1F:6A:AA:CC:8A:7B:7D:97:A1:99:8A
Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
Certificate issuer:       /CN=b0fa0c7abc10796915e335ba19780e473e027969
Certificate serial:       0199FAA0D47FAB2F79B0FC452A38C83EAA57
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
Manifest number:          11D3
Signing time:             Sun 19 Oct 2025 04:01:08 +0000
Manifest this update:     Sun 19 Oct 2025 04:01:08 +0000
Manifest next update:     Mon 20 Oct 2025 04:01:08 +0000
Files and hashes:         1: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (hash: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=)
                          2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: tE3qkvUXKjAYWcd+tXcV5rVJZgEDnZ2unIz+rHy9IUY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 04:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:a0:d4:7f:ab:2f:79:b0:fc:45:2a:38:c8:3e:aa:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969
        Validity
            Not Before: Oct 19 04:01:08 2025 GMT
            Not After : Oct 20 04:01:08 2025 GMT
        Subject: CN=ed80352e0ab96dab851f6aaacc8a7b7d97a1998a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:cf:09:81:04:24:8c:23:7e:a2:16:b4:a2:51:
                    4f:e9:7b:d3:2f:ba:59:b6:f4:c2:99:0b:fc:f7:c0:
                    9c:e4:76:e8:e4:76:fb:18:af:3f:3c:fc:4a:32:3a:
                    30:42:5e:66:bd:69:9b:0e:cc:37:70:3a:a6:ea:a1:
                    c9:2c:86:7f:e0:34:a5:30:fc:33:e4:e7:76:a6:1a:
                    3e:32:06:91:7c:7a:80:26:4b:d9:92:46:29:f4:f2:
                    ec:29:2d:82:55:4b:c1:ff:9a:ac:ed:ed:07:0d:6e:
                    3f:a5:a4:6c:68:34:25:2d:7d:ab:a2:97:6d:2e:fc:
                    da:00:7e:52:46:54:55:43:f3:df:2e:a1:25:8c:bd:
                    85:44:e5:a9:59:3a:e9:36:fe:d2:b9:3e:b0:38:67:
                    18:63:54:fb:17:ee:5a:fb:dc:6b:32:e6:e7:97:e3:
                    42:d0:bc:07:f2:5c:26:cd:d6:bb:36:50:81:79:ed:
                    43:cc:fc:ca:b0:61:89:36:4c:19:7a:76:c2:b2:78:
                    9b:9d:1c:02:cc:88:ea:15:16:e5:03:ec:d8:6b:1b:
                    fe:d7:5b:86:bf:ba:64:2c:19:bf:89:84:45:7d:6e:
                    8b:48:d6:46:f6:a8:2a:43:1c:98:88:4c:d3:51:14:
                    9d:59:25:07:66:35:fe:32:b2:da:47:e0:b3:01:de:
                    94:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:80:35:2E:0A:B9:6D:AB:85:1F:6A:AA:CC:8A:7B:7D:97:A1:99:8A
            X509v3 Authority Key Identifier:
                keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:e0:e3:25:f5:ed:d0:50:cf:5e:12:dd:ef:f2:de:5b:bc:d7:
         2d:97:d7:a2:a1:b7:30:94:db:a7:e7:dd:76:54:a7:c6:ee:c9:
         11:1b:e2:72:0a:34:68:3e:45:f9:c1:04:e3:04:fe:75:f1:0f:
         06:f1:f7:71:62:6d:76:70:35:4a:94:26:2b:4d:2b:a4:cf:a2:
         30:21:f6:03:53:2d:20:fe:88:6e:c8:8f:6d:d4:23:68:b1:c7:
         09:e4:fc:0b:ed:57:c9:63:29:31:2f:ec:57:14:5e:71:92:f0:
         6d:e2:9d:2b:bf:9c:40:14:4d:3d:33:f2:45:ad:84:ff:e0:6f:
         5f:ef:e4:22:09:31:9d:f7:98:74:da:45:7b:ea:33:a1:10:77:
         14:ea:9e:22:eb:8f:16:77:78:e3:b6:fc:cb:7a:97:07:0b:2d:
         9e:d5:0d:9f:26:0f:bb:54:1b:6f:33:0c:cb:4c:ec:35:f6:e9:
         e9:fe:80:63:d1:67:aa:08:7e:b3:a3:ac:bb:e8:4c:42:84:1e:
         61:0c:1c:d9:f5:cc:fd:d6:b8:ef:2b:ef:8f:f1:6f:69:78:77:
         36:43:16:5b:d3:f6:fb:2b:2d:50:e4:e2:9e:1b:c9:61:78:5a:
         18:f5:0e:50:c3:9a:85:7c:04:16:7c:42:2d:5b:0e:26:cc:7c:
         9f:47:14:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:07:00 2025 by rpki-client