Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
File:                     rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json)
Hash identifier:          atyNyxGHmub6OhC6rEIQd2czbi/P9DtjeuQaV+Hp2cA=
Subject key identifier:   32:B8:A9:EF:A8:BF:2F:8E:D4:06:65:97:84:10:8F:4E:A4:7F:C2:F7
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Certificate issuer:       /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial:       01991C5371313F39EC23489F27DAFE428F81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
Manifest number:          168F
Signing time:             Sat 06 Sep 2025 00:00:54 +0000
Manifest this update:     Sat 06 Sep 2025 00:00:54 +0000
Manifest next update:     Sun 07 Sep 2025 00:00:54 +0000
Files and hashes:         1: 2FhEmcxYfTh9K3J3avRiCdDc75E.roa (hash: tOhuHX2KWyFG2B0a0se5O81lEiJFRABFP38mxTII8TU=)
                          2: 8nUvj8lY7CMTGbwnkVwsxBWh6aw.roa (hash: Aix9ab5boOQSnVduDf/PzYb3KHZGbO4bW6Ul5fxfzk8=)
                          3: bdkHO-cMRs9yWZFdjBV-qe9nYgE.roa (hash: qubjkKMt0NactOF0nXU7jk7H1UZ/exx8oL0CEz67yU4=)
                          4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: c4/1Yv1KRK4F+7lmGTz7vPZh2Bl11RhE3CIUURNv/Xo=)
                          5: yT5ungE9NAr5a95GJEQ0WzC2bc4.roa (hash: 3Q09eXeA/SVTTdlEZBa1ZfiKoZceB51s1iopXPbgTXw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 07 Sep 2025 00:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:1c:53:71:31:3f:39:ec:23:48:9f:27:da:fe:42:8f:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
        Validity
            Not Before: Sep  6 00:00:54 2025 GMT
            Not After : Sep  7 00:00:54 2025 GMT
        Subject: CN=32b8a9efa8bf2f8ed406659784108f4ea47fc2f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:84:91:ab:20:43:53:ef:05:e7:5b:e4:76:c0:
                    a2:a2:b1:1d:2d:a7:be:c5:02:51:95:3a:c2:ea:11:
                    ce:67:d0:e9:88:78:6a:ca:f4:02:92:ee:9d:e3:93:
                    15:20:0f:0c:da:69:0c:3e:ab:17:7c:3f:e1:02:ea:
                    15:3a:7c:c9:3c:e8:12:18:6f:d6:da:cc:95:6a:59:
                    5a:94:6a:07:f5:91:60:53:07:d7:44:bf:44:27:06:
                    0a:0e:d6:8e:92:aa:16:42:fc:38:e2:22:23:97:23:
                    98:4a:ce:39:c8:72:f5:2f:f7:ef:5a:ed:e3:f9:c9:
                    2c:74:fa:e8:26:60:82:55:f3:de:59:e6:ea:03:a3:
                    ca:f1:cc:87:a3:e3:0e:c9:79:00:41:b6:23:15:51:
                    3f:fd:e7:fb:54:da:a4:d3:a4:e4:76:f8:b2:ab:d3:
                    8e:da:bd:cf:37:47:09:4d:2f:80:d2:ef:f8:2c:58:
                    ea:17:3d:79:a8:c9:65:8e:69:49:13:c2:c7:30:a3:
                    1a:30:6f:8a:1f:95:aa:7c:92:91:fa:b7:83:ae:d1:
                    aa:30:38:86:47:0a:a7:f4:5e:fc:9e:e1:ea:e3:71:
                    a3:28:26:4b:e0:d6:81:87:20:b4:78:1d:3c:a1:17:
                    04:26:fd:2d:bc:a8:58:d3:1a:86:a6:0a:af:38:68:
                    12:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:B8:A9:EF:A8:BF:2F:8E:D4:06:65:97:84:10:8F:4E:A4:7F:C2:F7
            X509v3 Authority Key Identifier:
                keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:7e:29:7e:ab:6b:74:ef:43:62:de:a9:23:bb:21:89:f7:e1:
         6e:f3:da:75:b8:17:5b:30:fa:b4:ec:e8:59:8f:2b:ea:80:a5:
         d6:2d:fa:ea:68:83:fd:8d:b7:a8:6c:ce:fe:94:63:f4:53:d9:
         9d:6d:5c:7f:f0:2e:54:bc:54:01:6b:0b:da:67:ac:36:cd:8e:
         86:41:35:44:a0:4a:1a:46:83:5d:e4:7f:4c:5a:d3:74:8a:45:
         10:a2:0a:cf:b8:5d:65:83:cb:7b:84:05:3f:9b:21:59:eb:13:
         67:0c:e3:78:ff:41:48:00:d3:43:83:4f:dd:ee:4d:62:7b:90:
         ef:62:41:e2:b8:5f:ee:29:3b:f9:cb:35:d7:44:4d:3f:d2:c8:
         78:3c:59:66:7e:a5:af:30:52:62:87:c6:d5:72:e2:d7:3c:8a:
         c5:a7:90:de:e7:51:95:07:e4:2a:3e:c7:bf:c8:f0:78:4a:9e:
         f7:ee:71:d6:a0:80:18:d6:ec:43:3a:76:c8:5d:9f:5c:6e:cd:
         b3:80:4b:bb:4d:7c:e1:62:6b:13:fa:98:95:6f:02:48:24:f4:
         ba:c9:c2:59:95:bd:bf:3e:e2:0a:a8:e1:7c:77:4a:f0:d5:9d:
         d2:02:13:80:ae:b6:b3:50:b7:35:c8:3f:73:12:6c:e3:19:12:
         d3:8f:19:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkcU3ExPznsI0ifJ9r+Qo+BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZDM1MzkzMzY3NGE1NjA4ZjZkMWVlMmRhYjRmNjRjOGJm
ZjhmMzkwHhcNMjUwOTA2MDAwMDU0WhcNMjUwOTA3MDAwMDU0WjAzMTEwLwYDVQQD
EygzMmI4YTllZmE4YmYyZjhlZDQwNjY1OTc4NDEwOGY0ZWE0N2ZjMmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4SRqyBDU+8F51vkdsCiorEdLae+
xQJRlTrC6hHOZ9DpiHhqyvQCku6d45MVIA8M2mkMPqsXfD/hAuoVOnzJPOgSGG/W
2syVallalGoH9ZFgUwfXRL9EJwYKDtaOkqoWQvw44iIjlyOYSs45yHL1L/fvWu3j
+cksdProJmCCVfPeWebqA6PK8cyHo+MOyXkAQbYjFVE//ef7VNqk06Tkdviyq9OO
2r3PN0cJTS+A0u/4LFjqFz15qMlljmlJE8LHMKMaMG+KH5WqfJKR+reDrtGqMDiG
Rwqn9F78nuHq43GjKCZL4NaBhyC0eB08oRcEJv0tvKhY0xqGpgqvOGgSvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDK4qe+ovy+O1AZll4QQj06kf8L3MB8GA1UdIwQY
MBaAFK3TU5M2dKVgj20e4tq09kyL/485MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgt
NzJjODMxMjg3NjFiLzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgtNzJjODMxMjg3NjFi
LzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY34pfqtr
dO9DYt6pI7shiffhbvPadbgXWzD6tOzoWY8r6oCl1i366miD/Y23qGzO/pRj9FPZ
nW1cf/AuVLxUAWsL2mesNs2OhkE1RKBKGkaDXeR/TFrTdIpFEKIKz7hdZYPLe4QF
P5shWesTZwzjeP9BSADTQ4NP3e5NYnuQ72JB4rhf7ik7+cs110RNP9LIeDxZZn6l
rzBSYofG1XLi1zyKxaeQ3udRlQfkKj7Hv8jweEqe9+5x1qCAGNbsQzp2yF2fXG7N
s4BLu0184WJrE/qYlW8CSCT0usnCWZW9vz7iCqjhfHdK8NWd0gITgK62s1C3Ncg/
cxJs4xkS048Zrg==
-----END CERTIFICATE-----
Generated at Sat Sep 6 08:15:06 2025 by rpki-client