Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
File:                     gNZ6hECc7boCLusDW9itYg1oPqc.mft (raw, json)
Hash identifier:          zVaUrrKPIN6EvGkSZZwLH9+XamyAWBnTOo0y6q/qCes=
Subject key identifier:   20:56:A9:4A:81:08:4C:50:56:63:55:BA:9A:13:E8:B8:44:74:3D:8B
Authority key identifier: 80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
Certificate issuer:       /CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Certificate serial:       01987F795DC80E1F0F3E8688A63079D289D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
Manifest number:          15B2
Signing time:             Wed 06 Aug 2025 13:01:56 +0000
Manifest this update:     Wed 06 Aug 2025 13:01:56 +0000
Manifest next update:     Thu 07 Aug 2025 13:01:56 +0000
Files and hashes:         1: HckIWldHWwqX0CJ7X-XU88JAoY8.roa (hash: 0kYehz1g3idStzqPQ6DNbC0IwoRnTc8QtqRoQ8JJZs8=)
                          2: gNZ6hECc7boCLusDW9itYg1oPqc.crl (hash: TALO6p9gnNIMUhhivM/QUZscpgEvMmaDLo5ICU4AfLQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 13:01:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7f:79:5d:c8:0e:1f:0f:3e:86:88:a6:30:79:d2:89:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80d67a84409cedba022eeb035bd8ad620d683ea7
        Validity
            Not Before: Aug  6 13:01:56 2025 GMT
            Not After : Aug  7 13:01:56 2025 GMT
        Subject: CN=2056a94a81084c50566355ba9a13e8b844743d8b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:20:26:85:73:82:65:7c:68:5a:3e:2d:a9:84:
                    3d:fd:d4:46:c6:7e:7b:9f:0c:69:19:9b:58:c5:b7:
                    13:6a:55:d4:4c:bb:3f:1a:1d:94:79:d3:36:25:53:
                    ef:13:f9:38:69:ae:5c:55:e5:fe:a4:5b:47:fa:89:
                    56:e4:7c:cb:58:97:9c:57:cd:2d:83:db:3b:b2:bd:
                    4e:d1:4b:a1:f3:11:49:e3:44:85:51:b1:f9:6e:69:
                    2a:8b:a9:36:3e:5d:06:40:74:2a:67:2e:10:ac:05:
                    3f:2a:90:0d:de:26:49:51:36:4e:9e:6c:82:8b:cd:
                    3e:ed:b8:89:69:85:bf:79:cc:ae:b6:57:9f:04:01:
                    d5:bc:02:f8:f3:d6:04:56:2a:88:7a:78:d5:1e:f7:
                    6e:54:cd:75:36:f2:8e:fc:26:db:89:a9:a9:11:f4:
                    e9:ed:37:b0:71:00:e5:1f:04:03:b3:f5:50:99:27:
                    34:da:82:cc:05:6a:31:ea:19:b1:c1:9f:f5:34:83:
                    02:92:cf:6a:37:70:54:16:db:61:b5:6f:4d:1c:ea:
                    eb:07:33:bf:1a:39:99:6b:57:e9:29:23:a8:3d:d7:
                    7e:50:26:a0:cb:51:9d:1f:f4:6c:ae:f9:a1:ae:c5:
                    67:44:af:83:8f:e7:8e:95:7a:99:86:46:56:ef:1a:
                    6b:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:56:A9:4A:81:08:4C:50:56:63:55:BA:9A:13:E8:B8:44:74:3D:8B
            X509v3 Authority Key Identifier:
                keyid:80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:0b:31:fa:0f:5a:75:50:74:06:42:b1:03:c0:0a:b2:41:ec:
         53:b4:10:6a:93:18:85:4a:a7:fa:df:2f:8d:12:e1:ad:92:b3:
         47:fe:12:ed:a0:19:97:b4:2d:3f:dd:81:6f:4e:92:30:02:ca:
         cd:e9:89:8a:48:1d:ea:82:38:47:2a:6f:40:08:26:96:75:b6:
         2c:93:2c:f2:49:d1:33:c6:16:15:9b:b4:7f:82:29:ff:1c:11:
         a8:0a:f6:ae:e9:c1:c0:de:51:f5:ef:a7:15:8a:81:73:c3:be:
         65:e3:e8:38:98:ad:06:3d:c1:b8:2e:5d:5c:d1:2d:27:f1:2d:
         eb:b7:65:ae:ec:03:2f:ea:67:25:92:f4:cd:37:91:0e:6f:3f:
         da:44:3d:d3:5e:b3:0c:54:d2:df:d3:18:09:ea:43:79:46:ee:
         e2:4d:38:f8:8f:9e:aa:dd:7e:79:f9:5b:6a:af:7e:b0:c3:ca:
         03:fd:2d:88:05:35:07:8b:70:9e:4d:6c:2f:06:9b:51:46:2b:
         d6:3e:a3:42:38:e0:70:3f:a0:6e:2d:7e:11:cf:bc:67:4b:cc:
         78:ed:da:df:96:47:ec:6b:92:be:0b:86:c6:6f:9a:45:59:5f:
         6f:2c:18:e7:98:09:bd:7f:7c:ef:53:3e:c9:e8:0e:48:39:33:
         57:28:25:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:23:58 2025 by rpki-client