Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File:                     noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier:          a/DiBVgIrT4J1IKz1vBQxDFnt+tpCzmDyQnUMC1NpDg=
Subject key identifier:   57:25:59:C1:A9:53:88:E7:C0:19:91:C9:01:4D:B6:F0:3F:F0:6D:C7
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer:       /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial:       01984AAEDCA3AB24D0246A9DC53685D59516
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number:          1602
Signing time:             Sun 27 Jul 2025 07:00:30 +0000
Manifest this update:     Sun 27 Jul 2025 07:00:30 +0000
Manifest next update:     Mon 28 Jul 2025 07:00:30 +0000
Files and hashes:         1: 4r39zvWrkYP2asO0kOUkjIaBE5M.roa (hash: v58EqYlL6LzlpEJ1F9DVvqr5mbMv8/9nhYAa/WADapg=)
                          2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: f+9WYEEf8wJSZWU7+1k/X2gcxyiWvPSz7iqiVaJJkXI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 00:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:4a:ae:dc:a3:ab:24:d0:24:6a:9d:c5:36:85:d5:95:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
        Validity
            Not Before: Jul 27 07:00:30 2025 GMT
            Not After : Jul 28 07:00:30 2025 GMT
        Subject: CN=572559c1a95388e7c01991c9014db6f03ff06dc7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:b6:ae:f0:fe:a3:4c:a2:63:d9:a6:33:00:31:
                    41:49:f9:6b:0c:7b:f9:ae:b4:08:e4:4b:92:e0:82:
                    9a:8e:4a:7d:10:8d:ba:8a:9c:36:dd:7b:3e:37:9b:
                    bd:0a:ec:8f:ff:20:57:86:16:b0:a8:8a:33:47:1d:
                    f3:c9:22:41:e6:1f:48:eb:10:33:80:47:96:cb:e5:
                    9d:76:f9:06:a7:bb:e9:9f:63:0e:41:e2:e7:93:fa:
                    b6:15:89:a8:43:ac:5e:3b:3a:4e:47:bf:70:06:03:
                    f6:1f:8d:b4:6e:0e:95:ba:d6:47:26:ca:a7:9e:e1:
                    e5:9a:8a:e3:e2:bf:a8:d5:b3:d0:26:c1:4c:82:4b:
                    d8:10:5f:38:5e:4a:df:21:b3:d2:ba:25:5e:4e:93:
                    d1:73:a0:e8:9f:78:62:d9:f6:f3:d4:78:0e:c1:3c:
                    e8:2c:c5:0a:17:38:82:d8:5c:86:69:ec:c8:51:f1:
                    f0:7d:b2:12:e2:2d:ee:bf:44:a1:e0:55:fb:e0:21:
                    55:c8:e9:f7:29:ae:48:74:f4:81:6f:33:1c:47:9b:
                    59:03:b7:4f:4d:d9:67:e3:e5:9a:52:9d:04:36:98:
                    cc:82:ea:04:83:fd:7d:05:94:b5:52:15:df:41:e8:
                    24:0c:88:8c:c6:c6:a1:72:e0:1d:4f:18:46:b5:cf:
                    a2:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:25:59:C1:A9:53:88:E7:C0:19:91:C9:01:4D:B6:F0:3F:F0:6D:C7
            X509v3 Authority Key Identifier:
                keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:26:5a:8b:0a:d9:5a:e8:cd:d3:47:5b:f2:f2:77:59:a1:ca:
         c7:6b:21:13:53:74:1a:9f:80:c5:af:7f:d5:76:c3:8e:8d:9a:
         12:60:5f:1a:43:fa:a0:2a:2e:2d:b0:26:cd:cc:09:08:87:89:
         85:c9:f6:01:d9:5d:50:3c:75:99:82:ab:c1:ee:cd:05:a7:69:
         3b:11:1d:bc:50:47:29:9c:9b:1e:98:9e:ba:5a:cb:6f:56:40:
         f3:02:60:b8:00:50:fd:0a:b5:3b:ff:dd:12:11:79:19:21:d5:
         3d:da:4b:45:6a:26:b6:03:67:ce:d3:76:3d:e6:f8:aa:ed:04:
         2f:ea:70:c3:69:1a:21:61:8d:a2:e8:b1:fb:83:89:a5:b0:a3:
         a4:c6:49:27:61:a1:1a:7d:2d:38:ad:97:01:39:1b:8e:8d:80:
         b2:61:4c:e0:fe:2b:97:ec:27:1b:29:8a:e0:e3:80:ea:35:92:
         e5:16:36:91:bd:72:63:0a:f5:df:fe:7d:43:c6:b6:54:a0:43:
         57:0f:c5:5a:02:3d:c4:07:85:84:e8:a9:ac:88:97:7b:1d:35:
         64:12:e1:28:ce:df:12:90:e1:46:ff:15:b1:21:9f:b8:ee:70:
         14:f4:3f:aa:c9:98:ba:4d:4f:4a:28:9d:1c:74:d3:73:ec:79:
         78:d4:1f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 09:20:30 2025 by rpki-client