Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
File:                     vPnwsJRzjFKC-_SzBnDsX9y1id8.mft (raw, json)
Hash identifier:          iyzQHNw6iM+SnIcEA5P3ER7bI+rtG+yzPozuaRz7Szw=
Subject key identifier:   4D:A0:27:02:FD:76:57:1E:9A:D7:97:9F:55:60:A1:BC:7C:11:55:E0
Authority key identifier: BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
Certificate issuer:       /CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Certificate serial:       01988167BA4805EC99C27D780082F0084E09
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
Manifest number:          161C
Signing time:             Wed 06 Aug 2025 22:01:55 +0000
Manifest this update:     Wed 06 Aug 2025 22:01:55 +0000
Manifest next update:     Thu 07 Aug 2025 22:01:55 +0000
Files and hashes:         1: GcXZXurTGrAnFXKjvUHU9XD_YyQ.roa (hash: CVqER74xo0XyQrFlwwf0CdK9BC9SAVXvCBJxlFB4CBw=)
                          2: vPnwsJRzjFKC-_SzBnDsX9y1id8.crl (hash: wV95BQK6PaUirZm4iepb3P7Zl2AHHGOGD6/xu4soNPc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:67:ba:48:05:ec:99:c2:7d:78:00:82:f0:08:4e:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
        Validity
            Not Before: Aug  6 22:01:55 2025 GMT
            Not After : Aug  7 22:01:55 2025 GMT
        Subject: CN=4da02702fd76571e9ad7979f5560a1bc7c1155e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:3e:c5:e8:7c:88:a6:98:07:ea:da:63:81:c7:
                    fa:59:ae:b7:97:cc:f9:f9:1c:08:87:d5:d9:5a:69:
                    d4:5b:7e:c6:82:18:cf:19:70:6c:f6:55:8b:58:11:
                    93:8e:a2:b1:c8:bb:72:70:e1:b9:a0:2c:5f:d8:0a:
                    87:ef:d4:e5:91:d5:ff:c5:c4:de:ba:08:3f:2c:8b:
                    e7:15:4e:20:f4:3b:b1:c9:ca:d4:8e:5d:ed:b0:7b:
                    18:bf:56:38:f0:04:ce:23:6a:81:67:4a:87:84:61:
                    22:1a:01:45:6c:3a:bd:ad:96:de:2a:e8:17:8b:48:
                    50:ca:9a:39:92:fe:5e:f0:04:b8:43:65:79:b7:d2:
                    c0:63:ac:2e:f2:6b:7f:1f:90:c3:ac:78:4f:1b:71:
                    0d:f5:6d:a7:40:4e:c0:9b:53:e5:e5:92:95:54:d7:
                    ce:d5:3a:c6:4d:b3:78:65:de:f9:7a:6f:26:4c:7f:
                    d0:f4:8c:d4:64:9a:8a:8c:7d:96:7e:cb:15:5a:25:
                    96:ee:2e:9c:f1:6a:d9:d4:c9:d6:cf:d0:cf:00:f9:
                    0e:1e:84:11:bd:27:ad:dc:0f:72:76:f6:bc:d1:de:
                    93:ac:2b:e3:9f:ce:09:a6:37:5a:b4:41:f3:a5:1b:
                    8e:55:90:8d:68:8f:f1:d1:01:38:86:dc:05:ef:f3:
                    44:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:A0:27:02:FD:76:57:1E:9A:D7:97:9F:55:60:A1:BC:7C:11:55:E0
            X509v3 Authority Key Identifier:
                keyid:BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:a9:5f:d3:66:1d:ba:32:ad:15:95:8a:b3:af:32:68:7b:86:
         db:c4:f6:f9:ee:78:86:cd:28:26:a4:21:cc:4d:57:d6:86:08:
         50:b3:15:5e:30:bc:48:ae:6e:9a:61:62:55:6c:05:c3:da:53:
         ef:bd:64:24:1d:c1:3a:89:73:eb:85:19:16:c8:24:3b:30:d9:
         a7:a2:b4:1c:58:9a:9e:4d:6f:c6:5d:e7:b4:2b:d3:9d:3c:db:
         53:4b:23:8b:9e:d7:7c:73:e3:94:6e:a5:30:02:3d:64:5d:4d:
         98:27:7e:70:97:69:70:1d:a4:06:ee:f9:54:2c:6f:f0:f1:c3:
         e5:97:02:d0:41:ed:e3:46:12:57:1e:a5:85:57:7a:0a:06:89:
         f3:6c:c4:d8:82:1b:8d:cf:f2:f6:4a:1f:17:79:72:6c:08:01:
         fd:22:ff:91:6f:ed:df:c6:b1:c5:cb:20:b9:e9:96:be:44:6c:
         11:d2:d2:13:1e:af:c7:bb:22:01:16:80:d4:14:f9:4a:8d:03:
         94:70:9c:63:44:88:7c:1e:2b:76:b9:3e:3a:3d:84:28:b6:e8:
         d9:b4:ce:14:30:e2:1c:98:a1:16:60:d7:b2:79:61:95:b6:4f:
         1b:b2:11:e7:ba:a5:52:11:72:8a:b3:60:89:5a:95:63:aa:5d:
         ce:d0:d8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:33:10 2025 by rpki-client