Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
File:                     SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json)
Hash identifier:          hhEdYhM1hk3+MjYpCWvW1Fc6N9TPKpuJMiBWeqJ1qhQ=
Subject key identifier:   74:0F:5C:4A:D5:44:EF:74:C4:9D:54:B3:42:9D:EB:EA:5C:C3:48:F7
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Certificate issuer:       /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial:       0199FF59471A4F36D60070CA7126570DE437
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
Manifest number:          0803
Signing time:             Mon 20 Oct 2025 02:01:04 +0000
Manifest this update:     Mon 20 Oct 2025 02:01:04 +0000
Manifest next update:     Tue 21 Oct 2025 02:01:04 +0000
Files and hashes:         1: 1-EZfm36xDgODSAJSHjoDKqosl0A.roa (hash: YJXvTARkaZsNuPWx3R0tfgZi43JI9omATgYJzudFfVw=)
                          2: 3EzuBFNcE3-Y9EKRZTTEJ-hJ0r0.roa (hash: c7Qo95/rDIGaWw+UtmeeU76uTMOHrZiqKPmI6hQSOzo=)
                          3: 8wPWU2vG9yor96syg0xci6OMavk.roa (hash: 58okY/hMSnPqb+2am85BaYPbNkOmLTFbAoYMmjPkzSM=)
                          4: A8u38dlgw8e8wVBstLEUX0BIwKA.roa (hash: wMifdjJKZOKPZclZ2LTT2h1hBhv48+8C1YSb4m0Dn8w=)
                          5: MjYi-LSjoIJQHulT2C8hiHI7HD8.roa (hash: dC5UZCibXUg9xVnIxopZdKZtoheRYoCMgnJyaeHGfKM=)
                          6: O442f9rKCameMmZGS2am4On1RJE.roa (hash: Tjn+0NJyIaKfDErYElD/Vnb1U5GiOqlQwXo7lUYpajU=)
                          7: OYN3165s9Ipm3JZkmY2YoXxPwXc.roa (hash: cpcbNpWtjSyDgdmGg67sZ/aJK/DRgTol1F8VTQooe2I=)
                          8: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: nc6IjFlSCDJnPigxOnmSp7uPimEmfelLQ17bXq0Z8/c=)
                          9: XhNIRKox72ceLxS-HicNdteAlnc.roa (hash: QNRbEve8iPmaf5PJ3d4wKSJFvAQJTgfZsNNYbZDbIlc=)
                          10: gcyVEfl2Y641X6JyrJ5gHsnWGHM.roa (hash: 4fScV3KfjcgkIMTXmX6XzXUXdZUkt2FHTuue2HpZKoE=)
                          11: i0xOZ9Jhra30YZPBjOHXbYaWfqk.roa (hash: 037VXUJZVI+mWu72PU8YPxD3JLA/Q6+4Wqo2f8ZWqyE=)
                          12: kTJsplmwURGCaPzG4ayo6wcNo7A.roa (hash: l/8qlEM8+mm6CRnvB68H+M19y+bDF0JqtLE1zP1nToE=)
                          13: oX3OGzwxfpoj75NeGxUgbWj5Nag.roa (hash: AUpPKp6STpZ3+I37dxgfx0DnwlKN78RdnPEKRCGUs1k=)
                          14: pSBQwLUPyYWO99fSCGOORj9giws.roa (hash: JkOzR+BpOFLVw+DBFx5vd7D/7xkaT2h6VtCqnTT04N4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 00:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:59:47:1a:4f:36:d6:00:70:ca:71:26:57:0d:e4:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
        Validity
            Not Before: Oct 20 02:01:04 2025 GMT
            Not After : Oct 21 02:01:04 2025 GMT
        Subject: CN=740f5c4ad544ef74c49d54b3429debea5cc348f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:69:16:34:4a:66:6f:fa:95:20:34:d6:55:3b:
                    d5:34:a8:b5:3f:7a:24:6e:c6:5a:4e:aa:a6:81:ef:
                    58:48:67:84:31:16:77:f0:11:54:a3:4b:8d:78:b9:
                    7d:74:6b:20:73:eb:66:98:99:37:88:fb:f9:b2:00:
                    26:61:d1:ac:b7:13:b4:26:b7:38:80:a3:d0:68:d4:
                    08:f9:52:06:e7:b5:d7:f5:1a:48:e1:b7:fa:d6:24:
                    06:aa:dc:91:32:d2:d1:3e:64:91:3c:dd:9b:2c:b7:
                    38:e8:80:c8:8f:7e:01:d6:a1:26:f3:14:c0:33:36:
                    34:b2:47:58:c5:9f:34:b4:ca:f8:4c:d1:6a:3b:d4:
                    70:46:b3:85:5d:7f:fe:95:78:6a:3b:92:92:c9:c6:
                    40:ef:77:45:7f:07:1a:76:de:6f:ad:0b:7e:46:65:
                    a3:4b:5e:2d:2c:1a:d1:8b:0f:d7:63:68:27:ea:9c:
                    6a:92:25:97:05:e2:64:5a:32:62:ba:1a:3c:e6:a9:
                    30:6f:1d:65:30:a3:c2:af:3a:67:6e:d0:2a:ee:e5:
                    68:88:04:c2:cb:35:d8:18:47:f0:f6:20:5d:95:7a:
                    ce:aa:86:c3:47:7e:14:3c:47:5a:36:30:a8:2a:e2:
                    ec:30:2c:9c:84:fe:d0:5c:5e:af:dd:1c:31:b5:2e:
                    34:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:0F:5C:4A:D5:44:EF:74:C4:9D:54:B3:42:9D:EB:EA:5C:C3:48:F7
            X509v3 Authority Key Identifier:
                keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:d3:52:70:9e:dc:d5:1d:ba:4d:69:66:83:b0:1d:cd:42:fe:
         2f:c9:c1:75:32:d7:06:a7:1c:82:bc:45:1b:48:79:ce:43:a2:
         44:3d:ea:77:28:7b:c7:07:94:80:37:eb:4f:0f:a7:1f:c1:7b:
         e6:cf:24:a1:79:9b:47:31:67:20:13:6e:ce:2f:14:62:63:c8:
         39:c3:34:01:e2:b7:df:ce:f2:65:e3:55:bd:96:25:ce:86:46:
         49:b4:fa:16:b9:4a:14:72:66:5f:7b:4d:ca:d6:b5:f7:4b:42:
         59:b7:da:2a:7b:31:6e:86:11:a4:62:9c:95:72:08:86:98:d8:
         5f:6d:78:4e:a9:69:a7:6e:ae:2d:01:1d:4f:e0:57:f2:8a:9d:
         b7:c8:b4:7c:2e:b6:87:2e:ca:50:84:3d:b0:97:6c:81:66:7f:
         7d:d1:44:6c:4c:f0:30:f7:c5:83:c8:d9:63:33:b9:58:55:68:
         77:04:5b:ba:79:0d:1a:74:db:64:00:1d:52:3d:15:a6:b0:c2:
         e2:21:97:7f:34:5d:c2:60:ac:c9:57:e4:21:b4:1c:56:74:3a:
         08:17:a4:7c:23:ed:49:b9:fb:51:48:67:36:e7:14:0c:2f:94:
         34:63:d8:3a:f6:09:9f:8b:3d:b9:85:fc:bc:7f:9c:e2:24:0b:
         1f:75:43:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:48:07 2025 by rpki-client