Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File:                     t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier:          BBSd7wCq1Z3MWFch8/epct9k1bNbrhRr0tiqnuukqp8=
Subject key identifier:   FD:8D:99:EC:D8:89:A5:C3:44:4B:49:CF:1A:DE:55:79:56:7A:C1:D8
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer:       /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial:       019921E7C80609157465AF94BD94BC9D8015
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number:          1675
Signing time:             Sun 07 Sep 2025 02:01:02 +0000
Manifest this update:     Sun 07 Sep 2025 02:01:02 +0000
Manifest next update:     Mon 08 Sep 2025 02:01:02 +0000
Files and hashes:         1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=)
                          2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=)
                          3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=)
                          4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: LsJ00ETTjGqcy8/PGsmI6P3/endT2JqrJjTEHdkjTZk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 02:01:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:e7:c8:06:09:15:74:65:af:94:bd:94:bc:9d:80:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
        Validity
            Not Before: Sep  7 02:01:02 2025 GMT
            Not After : Sep  8 02:01:02 2025 GMT
        Subject: CN=fd8d99ecd889a5c3444b49cf1ade5579567ac1d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:8d:92:f9:09:07:82:72:85:55:87:fc:e0:c4:
                    f3:a8:65:73:fc:5b:24:46:ca:3e:30:f8:2a:34:19:
                    b4:c3:57:56:5c:8e:4d:00:d6:1f:74:f1:da:43:e5:
                    66:3b:c1:e6:4f:4a:ac:93:77:59:1c:c6:2e:c6:f5:
                    c1:49:cc:16:e4:15:41:d6:2a:a5:21:fe:59:8a:7c:
                    d6:68:83:05:32:5e:70:81:83:3e:a1:1a:2b:16:22:
                    a1:c4:12:ba:20:1a:e4:2c:6d:84:3c:6b:1a:23:14:
                    a7:b9:89:3f:4d:db:62:c5:96:76:e1:03:30:87:94:
                    64:1d:72:b6:6a:12:05:34:20:8f:17:35:1f:d9:35:
                    e4:dd:76:bd:42:cf:ef:26:d7:51:17:ee:0f:51:da:
                    ec:78:d2:32:db:6e:f0:f0:1e:95:53:06:3f:fe:1e:
                    50:16:3b:c3:4f:57:a0:48:95:14:67:e1:d6:41:4a:
                    ba:57:00:72:08:58:b4:89:de:04:dd:cf:22:fb:37:
                    1c:c6:b7:49:ed:45:46:3b:70:d3:be:2e:73:aa:bb:
                    be:e7:88:ca:0a:ff:34:92:0a:32:b9:81:ce:0b:59:
                    0e:60:b1:22:d6:eb:bd:34:97:5a:cc:46:3d:c5:4f:
                    f3:0a:52:48:95:93:f4:1f:75:53:f7:0d:12:5b:92:
                    7e:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:8D:99:EC:D8:89:A5:C3:44:4B:49:CF:1A:DE:55:79:56:7A:C1:D8
            X509v3 Authority Key Identifier:
                keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:29:dd:ad:50:c4:71:81:47:31:d1:a9:d1:c0:96:0d:66:b5:
         c0:a0:57:ee:f2:bf:ab:dd:b9:23:a1:b1:c1:2f:16:5a:ef:fa:
         8e:85:f8:e2:06:8b:1d:ed:e5:0c:15:e6:50:95:e2:0a:ef:69:
         ea:e2:12:cb:86:76:69:54:44:77:23:e6:5f:e3:77:a6:3d:24:
         59:28:dc:ee:ea:36:03:78:10:73:80:9e:01:20:18:90:cc:30:
         4c:3d:b2:15:8b:f1:2f:af:df:06:09:e9:0d:68:ee:02:b8:1c:
         09:6f:b8:7c:eb:52:cb:2b:4a:59:89:29:49:f9:86:7b:b2:44:
         62:33:c2:24:5a:c2:e6:1b:aa:93:68:c8:b8:65:69:dd:56:ea:
         f3:38:ba:ac:c5:42:7e:2c:fb:ba:6b:ee:80:3d:be:d6:df:c2:
         91:46:69:43:55:22:96:7f:6b:6f:d5:e0:f1:3b:10:f7:0d:76:
         4f:bf:6f:08:bc:32:9e:11:30:c7:67:6a:51:29:20:e9:31:eb:
         6a:a3:eb:21:8a:65:60:ae:12:e5:a8:c9:a2:d2:92:10:e2:f0:
         48:80:d5:59:41:29:17:7d:2e:8b:6c:10:39:8d:78:89:d8:be:
         c2:7a:b7:4c:0a:d8:ba:f1:f0:15:03:2d:10:21:db:a9:4c:59:
         ff:f7:d0:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:23:05 2025 by rpki-client