Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
File:                     hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json)
Hash identifier:          wd5tRaM7k4+/GgLaQZBshoR2/bVQs33VvVPPL+0phWg=
Subject key identifier:   AF:BD:59:6A:BF:65:92:EE:84:3C:35:17:51:E8:7E:BC:01:90:AB:39
Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
Certificate issuer:       /CN=8466a5dde27f911da8be73c261ff55b5881198a9
Certificate serial:       0199FDDA38983975A99E66EE1228A2D749CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
Manifest number:          16E3
Signing time:             Sun 19 Oct 2025 19:02:40 +0000
Manifest this update:     Sun 19 Oct 2025 19:02:40 +0000
Manifest next update:     Mon 20 Oct 2025 19:02:40 +0000
Files and hashes:         1: P7kra4ub5VF3YEJjz3ym8CwbAXA.roa (hash: AJEYR0xnzVy6utllNh8R4LIoanjGY6stnMXm+hMmUEo=)
                          2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: tuXt5YT8KJ1W28lXOM8MhxxuHyunVsWQysrpeQREjLE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:da:38:98:39:75:a9:9e:66:ee:12:28:a2:d7:49:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9
        Validity
            Not Before: Oct 19 19:02:40 2025 GMT
            Not After : Oct 20 19:02:40 2025 GMT
        Subject: CN=afbd596abf6592ee843c351751e87ebc0190ab39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:07:15:00:41:d4:f4:74:1a:db:8d:22:ea:66:
                    fb:40:e0:6e:b3:48:78:ac:62:33:b4:c8:d0:3b:0b:
                    20:2d:68:e8:18:7f:1c:07:f2:6f:71:59:e7:e3:f3:
                    80:b8:22:a3:e2:29:ae:00:e0:e5:45:ca:8c:2c:c4:
                    1c:b5:af:f6:8c:cd:63:50:05:6e:93:c3:f4:1a:ea:
                    58:50:c1:53:65:3d:56:5b:06:de:48:df:72:35:05:
                    1f:89:6c:02:09:67:60:e5:dc:6a:40:76:76:ec:76:
                    b8:ee:13:89:18:af:5e:c8:71:ec:fd:2c:41:a8:3a:
                    d7:c4:26:c8:f8:e7:23:19:7e:17:ab:0d:23:37:f0:
                    19:c6:5b:49:ac:fb:39:65:fd:7b:7b:9c:35:8c:a1:
                    2a:0a:5f:3d:80:a4:82:37:2d:cd:a7:ea:ff:30:54:
                    14:61:c1:77:70:a0:90:68:cb:d8:64:7f:11:7e:23:
                    01:41:db:67:0a:25:98:81:2a:05:e9:64:e5:a4:89:
                    85:e3:2f:76:15:58:ec:6f:c2:e1:c6:90:54:e4:e1:
                    0e:73:7d:36:eb:f2:ed:92:96:ad:7f:3e:23:c6:74:
                    c1:fa:46:9d:40:b0:e6:20:e2:07:97:94:ef:e8:05:
                    1c:6d:2f:6e:15:3d:2f:e1:7c:cc:40:a7:e3:99:a5:
                    1e:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:BD:59:6A:BF:65:92:EE:84:3C:35:17:51:E8:7E:BC:01:90:AB:39
            X509v3 Authority Key Identifier:
                keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:42:eb:d8:4f:ce:74:fa:51:a6:11:d4:b6:00:f3:d3:29:da:
         c5:fb:db:20:ff:a8:14:e3:bb:9a:54:24:01:d7:5d:d5:17:90:
         2c:7d:12:df:82:b1:ea:8c:0b:05:7e:bf:b3:d0:3f:0a:e4:5a:
         a4:12:c1:64:61:66:3d:b5:2e:68:b5:0d:e1:45:59:dd:3f:9d:
         ff:52:4a:a1:f0:ff:7f:75:c4:eb:6b:60:8a:30:83:26:47:0a:
         6d:1f:81:06:97:b6:d9:98:77:98:e9:4d:4f:2e:ac:e0:d8:d1:
         83:46:38:f8:10:cb:db:d0:9f:9a:1e:41:01:d3:f8:24:0b:3c:
         24:26:98:94:0a:3c:2d:80:b9:55:88:75:d7:c1:6b:e1:10:f4:
         c1:1a:ff:ce:49:b9:f0:f0:b7:c0:44:c2:4c:62:44:fc:42:7a:
         0c:ab:23:5c:c5:1b:f3:1a:47:1d:8e:3a:15:8c:73:5b:2a:25:
         66:82:35:b9:45:cb:ba:21:76:29:c0:2d:d1:6e:1e:df:8e:31:
         c0:20:01:ad:9a:58:1f:31:f9:d2:08:e5:3a:0b:6c:db:70:75:
         e5:a3:3f:43:67:88:24:94:4f:fd:96:5b:52:d8:6f:56:80:5d:
         de:a3:6d:50:d1:59:ae:fb:5b:71:d3:21:96:76:e1:99:28:1e:
         e3:f2:16:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:44:34 2025 by rpki-client