Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File:                     bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier:          xKUdUTIH2ElDeYbrjBCFjiuQKQdfZ8jhdHQ8Q29MAx8=
Subject key identifier:   24:06:63:F6:0D:CF:6B:D0:8F:8B:8C:57:86:3F:D9:E2:23:20:2A:2C
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer:       /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial:       01988AA0865B2A993E443AD5154BA781FA82
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number:          1627
Signing time:             Fri 08 Aug 2025 17:00:32 +0000
Manifest this update:     Fri 08 Aug 2025 17:00:32 +0000
Manifest next update:     Sat 09 Aug 2025 17:00:32 +0000
Files and hashes:         1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=)
                          2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: FSX5Vq/W5h+ashFFRr8xJ4faKl1Md0BA9bnvOA45cZU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 17:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8a:a0:86:5b:2a:99:3e:44:3a:d5:15:4b:a7:81:fa:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
        Validity
            Not Before: Aug  8 17:00:32 2025 GMT
            Not After : Aug  9 17:00:32 2025 GMT
        Subject: CN=240663f60dcf6bd08f8b8c57863fd9e223202a2c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:d4:d9:2f:82:74:c9:10:1c:7a:3c:9b:df:e6:
                    db:8f:6d:bb:4a:71:20:c2:09:a6:a7:18:b7:ce:4b:
                    0c:e6:ba:01:48:23:ef:f9:de:24:f2:9c:01:6a:51:
                    10:1c:4f:42:de:86:15:53:3e:09:2a:aa:bf:80:64:
                    be:a7:5b:93:cb:83:32:60:02:9c:dd:3d:24:d6:ff:
                    38:40:77:92:48:7f:da:c3:6e:24:98:9d:9f:22:7b:
                    81:96:29:76:b4:4a:a1:cf:80:75:fc:89:79:25:0c:
                    44:98:2f:8d:d3:f3:cd:56:64:26:96:c3:39:28:12:
                    38:ce:81:ca:14:9d:8a:5f:f0:a4:29:31:1d:81:ba:
                    f2:db:95:23:8e:ac:d6:19:bc:27:38:8b:ff:e3:11:
                    08:7d:2d:24:26:7c:7a:7d:4c:dd:6e:24:84:18:6e:
                    4d:c0:ba:87:95:c5:12:4b:dc:9e:da:c9:e7:55:1c:
                    a0:31:1d:39:92:af:59:53:56:f4:78:18:3e:7e:2e:
                    ca:7f:2a:b8:80:53:0d:61:35:01:52:7e:26:c4:8e:
                    7e:4f:c8:1a:98:31:79:ce:d2:49:be:7f:de:48:e0:
                    08:ff:d8:dc:d0:b1:f5:14:47:aa:a1:58:f8:63:fd:
                    31:e4:a8:8f:fc:58:e1:5f:63:82:56:f5:1d:ff:a4:
                    5b:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:06:63:F6:0D:CF:6B:D0:8F:8B:8C:57:86:3F:D9:E2:23:20:2A:2C
            X509v3 Authority Key Identifier:
                keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:cf:13:ed:77:e2:9e:9b:f0:c9:b6:8e:70:15:7c:8b:71:9c:
         c9:22:4f:76:b5:1b:51:e2:11:a0:45:44:bd:2c:fd:d0:a6:18:
         a9:a4:4c:90:cd:63:cb:09:66:c9:f1:49:06:e3:ca:8d:66:68:
         2f:b9:b0:c9:4d:c7:ab:b5:11:79:39:c6:4d:0d:7d:2c:c3:72:
         84:51:9d:da:be:99:53:ba:63:31:cf:28:ef:6c:34:af:7e:f2:
         98:14:a5:d0:f7:0b:e3:e5:2b:25:9b:80:eb:84:45:9b:3f:73:
         db:f6:cb:dd:2d:45:e2:4f:8c:b4:34:2e:fd:86:1e:cc:5b:c0:
         b8:bd:4c:cb:ca:98:6a:8e:d3:8a:b5:82:47:47:43:66:57:e2:
         c0:1b:11:ff:e2:5d:a0:e6:f3:7e:ca:c8:9d:39:63:2f:24:0d:
         bc:18:63:de:6f:5d:51:c6:32:c6:e3:69:52:d7:19:a8:6b:4c:
         43:cf:70:ac:65:10:a0:2c:3b:d2:cc:04:e2:c6:dd:3c:93:b0:
         67:e6:37:20:18:b8:06:bb:fd:4a:0f:37:39:8f:03:5a:0f:18:
         9f:3f:bf:b0:a3:ce:d8:bc:a6:11:88:a0:12:69:9d:24:11:86:
         45:74:ce:ef:cc:50:f4:3f:03:6b:f0:32:3e:f3:6a:db:79:b3:
         f1:95:91:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:04:46 2025 by rpki-client