Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
File:                     SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json)
Hash identifier:          WBlzj/u2o8a97VGAAmb0X9saNsX4hTI4iHeivuSFhGA=
Subject key identifier:   09:64:C5:BA:75:91:AC:AD:A9:6B:A8:22:14:55:93:86:CC:B1:F4:07
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Certificate issuer:       /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial:       0199FD6AE62A67A7309DBF0D733DA697D880
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
Manifest number:          0802
Signing time:             Sun 19 Oct 2025 17:01:05 +0000
Manifest this update:     Sun 19 Oct 2025 17:01:05 +0000
Manifest next update:     Mon 20 Oct 2025 17:01:05 +0000
Files and hashes:         1: 1-EZfm36xDgODSAJSHjoDKqosl0A.roa (hash: YJXvTARkaZsNuPWx3R0tfgZi43JI9omATgYJzudFfVw=)
                          2: 3EzuBFNcE3-Y9EKRZTTEJ-hJ0r0.roa (hash: c7Qo95/rDIGaWw+UtmeeU76uTMOHrZiqKPmI6hQSOzo=)
                          3: 8wPWU2vG9yor96syg0xci6OMavk.roa (hash: 58okY/hMSnPqb+2am85BaYPbNkOmLTFbAoYMmjPkzSM=)
                          4: A8u38dlgw8e8wVBstLEUX0BIwKA.roa (hash: wMifdjJKZOKPZclZ2LTT2h1hBhv48+8C1YSb4m0Dn8w=)
                          5: MjYi-LSjoIJQHulT2C8hiHI7HD8.roa (hash: dC5UZCibXUg9xVnIxopZdKZtoheRYoCMgnJyaeHGfKM=)
                          6: O442f9rKCameMmZGS2am4On1RJE.roa (hash: Tjn+0NJyIaKfDErYElD/Vnb1U5GiOqlQwXo7lUYpajU=)
                          7: OYN3165s9Ipm3JZkmY2YoXxPwXc.roa (hash: cpcbNpWtjSyDgdmGg67sZ/aJK/DRgTol1F8VTQooe2I=)
                          8: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: 9XEnz/DZDUhzbzBpRtBNTJCIe4d/n0zkDTn8VeiGsfA=)
                          9: XhNIRKox72ceLxS-HicNdteAlnc.roa (hash: QNRbEve8iPmaf5PJ3d4wKSJFvAQJTgfZsNNYbZDbIlc=)
                          10: gcyVEfl2Y641X6JyrJ5gHsnWGHM.roa (hash: 4fScV3KfjcgkIMTXmX6XzXUXdZUkt2FHTuue2HpZKoE=)
                          11: i0xOZ9Jhra30YZPBjOHXbYaWfqk.roa (hash: 037VXUJZVI+mWu72PU8YPxD3JLA/Q6+4Wqo2f8ZWqyE=)
                          12: kTJsplmwURGCaPzG4ayo6wcNo7A.roa (hash: l/8qlEM8+mm6CRnvB68H+M19y+bDF0JqtLE1zP1nToE=)
                          13: oX3OGzwxfpoj75NeGxUgbWj5Nag.roa (hash: AUpPKp6STpZ3+I37dxgfx0DnwlKN78RdnPEKRCGUs1k=)
                          14: pSBQwLUPyYWO99fSCGOORj9giws.roa (hash: JkOzR+BpOFLVw+DBFx5vd7D/7xkaT2h6VtCqnTT04N4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 17:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:6a:e6:2a:67:a7:30:9d:bf:0d:73:3d:a6:97:d8:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
        Validity
            Not Before: Oct 19 17:01:05 2025 GMT
            Not After : Oct 20 17:01:05 2025 GMT
        Subject: CN=0964c5ba7591acada96ba82214559386ccb1f407
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:b0:60:81:be:04:12:68:6b:de:4c:08:fa:e7:
                    ed:af:85:b0:15:bf:97:3b:af:f0:53:56:e0:23:c0:
                    7e:37:58:94:c6:14:82:81:17:d0:37:3d:32:95:42:
                    42:2a:00:c1:68:4d:2e:e6:91:93:26:cc:a4:e5:2c:
                    32:56:55:a7:e2:86:f9:81:c3:2b:d0:44:23:be:d0:
                    1b:8b:c4:5f:40:ab:e1:79:a5:ea:51:f2:f9:a7:0d:
                    c4:9b:ea:93:6a:d3:af:03:28:ac:5c:9b:20:44:ab:
                    f2:9c:67:9e:a0:ec:8e:5e:8c:d9:91:4a:22:63:33:
                    f2:c1:a5:b8:fb:23:07:96:28:d3:dd:4c:74:f3:c1:
                    df:03:7c:a8:92:35:63:12:9a:8f:7c:83:b7:b7:e1:
                    16:a7:22:e5:aa:a2:22:4d:c6:6f:91:db:58:08:2b:
                    33:83:ea:d0:c7:b4:b2:b1:94:b2:8a:c7:0b:fe:94:
                    6c:9a:7b:0f:a0:41:fa:8c:3a:a7:f3:92:00:a9:25:
                    16:09:a1:98:2c:1e:f1:15:3d:67:2e:54:e6:54:a7:
                    14:e7:b2:2f:0a:01:d5:8c:bd:e2:a4:58:70:ba:8e:
                    cc:50:8f:fc:71:84:3f:d5:6c:25:24:62:77:76:51:
                    ae:76:5c:d5:f6:30:14:52:d4:5f:07:ce:96:6f:78:
                    fc:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:64:C5:BA:75:91:AC:AD:A9:6B:A8:22:14:55:93:86:CC:B1:F4:07
            X509v3 Authority Key Identifier:
                keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:05:28:f7:7a:c0:ec:fc:f3:f0:84:7a:8e:bd:bf:39:24:dc:
         49:a9:fd:b9:e4:8a:b9:d2:45:be:df:85:28:3f:03:08:9b:c8:
         b9:07:cc:bc:75:b5:5f:35:ea:40:66:de:b3:5b:cb:ed:9d:5d:
         db:24:f9:27:90:ff:31:2c:27:a8:71:6c:79:59:20:00:31:74:
         2b:9b:e3:a2:40:ae:12:78:6e:c3:14:61:8f:e5:c3:65:0b:23:
         9f:f2:73:7c:c1:c5:60:bc:9b:32:5b:ae:d0:f3:fa:38:47:bd:
         70:1a:99:a8:73:a5:f0:5b:42:0e:62:21:fa:0a:10:0d:8a:22:
         0a:14:2e:f7:d7:87:3b:21:9e:a3:f4:e8:73:76:78:f3:30:61:
         b6:49:c2:58:79:cb:c6:2e:25:90:7d:c3:52:4a:7e:2a:5f:e0:
         ab:78:17:da:0f:c2:3a:43:7a:02:60:9d:bb:89:ac:98:e8:e6:
         cd:94:8e:0d:32:4c:cb:af:3d:95:3a:bd:69:18:52:da:a2:0e:
         5c:f8:2a:1f:c1:73:e5:d3:bf:3b:2c:63:23:6c:70:fc:04:74:
         e0:a2:89:c3:4a:51:28:d2:91:0a:b1:c0:0a:0c:96:ed:ac:29:
         ec:2c:5c:e9:fd:e8:3b:52:ef:bd:f4:91:bf:ba:fd:93:63:f9:
         c5:02:e4:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:31:03 2025 by rpki-client