Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File:                     QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier:          EZ3S7R3O6vf4OcHy5v0wXdVoRKL66IzUHZFFFbtM3aQ=
Subject key identifier:   91:F9:27:93:76:95:84:74:B9:46:86:45:79:19:12:40:3E:FD:17:6B
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer:       /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial:       01988BB3AB9B48B34FE14F5A77819594A4C4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number:          1514
Signing time:             Fri 08 Aug 2025 22:01:04 +0000
Manifest this update:     Fri 08 Aug 2025 22:01:04 +0000
Manifest next update:     Sat 09 Aug 2025 22:01:04 +0000
Files and hashes:         1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: 8Ex9YTEbZxBFUGJ9XKIXdMmVi6mRo65SaG8GzF59IOs=)
                          2: hyIZ79qkrdHzxjA2nqjpWKRJazw.roa (hash: uN3TIUn6uJGV9mne7uVtH2Vshh9cYXISPUulyaHzlUE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:b3:ab:9b:48:b3:4f:e1:4f:5a:77:81:95:94:a4:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
        Validity
            Not Before: Aug  8 22:01:04 2025 GMT
            Not After : Aug  9 22:01:04 2025 GMT
        Subject: CN=91f9279376958474b9468645791912403efd176b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:0e:24:11:61:32:ae:b5:3b:6a:25:fa:81:a7:
                    4b:04:ec:97:4e:3b:27:3a:5a:5c:02:1b:3e:5f:fc:
                    79:f4:77:22:ff:c1:97:ad:a0:d3:ac:43:99:8a:c1:
                    d0:e1:90:d5:30:ae:ea:d8:e3:25:7b:89:81:92:70:
                    09:52:0c:aa:fc:dd:d0:89:0a:9c:40:2a:6f:9f:f1:
                    ab:bf:ee:b6:26:ef:4a:35:76:e3:8e:f8:7d:78:6c:
                    51:38:04:a2:98:88:1c:4e:e7:74:cc:b6:cc:93:90:
                    04:53:46:a7:3e:04:3e:99:1c:2e:34:d5:72:76:f6:
                    28:9c:1e:c6:f8:a7:7f:f1:64:a8:de:02:50:00:f2:
                    5e:fa:f8:24:58:5a:ba:fc:67:83:fc:d3:e5:0a:5f:
                    02:48:e9:25:dd:06:8e:f9:09:fd:b2:75:88:a4:2c:
                    41:8c:45:0d:19:f4:e1:2a:d2:e8:38:a1:9f:8a:ca:
                    19:cb:0b:5d:0e:ba:14:f4:78:a8:4c:cc:20:5b:20:
                    b4:85:dc:c9:a7:0c:9f:7e:2a:9d:7e:fc:81:fb:bb:
                    ad:f0:cf:d6:2d:6e:b8:1f:f4:b0:37:89:e1:8a:ce:
                    62:24:54:e1:7f:ef:37:f7:5f:bd:10:84:9c:90:8f:
                    8b:0a:05:f9:09:53:74:d3:0a:ef:42:7b:00:41:72:
                    d9:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:F9:27:93:76:95:84:74:B9:46:86:45:79:19:12:40:3E:FD:17:6B
            X509v3 Authority Key Identifier:
                keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:3e:01:a1:be:02:80:b2:0e:d8:99:e5:04:71:86:52:2b:8c:
         54:e5:27:70:84:39:59:a6:57:50:f8:f6:c8:b9:eb:56:cd:76:
         a2:89:65:77:00:62:fe:97:fc:6a:36:7d:c3:9c:f8:64:ac:3b:
         b3:7d:aa:82:e5:3a:75:ba:84:00:ef:55:ef:78:d2:e6:ce:a4:
         b6:1b:c6:c9:d9:84:ad:22:42:2c:bb:a0:d3:e8:b1:ff:05:79:
         4d:e3:47:c0:9c:70:df:32:6f:ad:ba:70:3b:36:7f:be:a9:99:
         2e:af:d1:27:04:1c:0c:7a:08:71:5a:87:8f:66:23:92:55:ab:
         5a:38:9d:8a:e4:bb:85:57:d5:5e:9b:b0:b8:22:0a:e5:ba:ef:
         87:65:c2:07:9b:6c:ea:0f:4e:92:1e:4f:5d:98:a1:db:ad:80:
         a0:53:7d:74:13:35:26:62:3a:33:29:f9:11:a4:28:42:29:60:
         40:5d:4a:48:d8:82:cb:b2:e6:4b:d5:b1:2f:73:88:6c:c1:ba:
         16:41:91:02:04:64:77:2d:59:ff:84:6b:dd:a3:a9:cc:b6:f7:
         dc:c9:03:e1:5c:83:0f:71:4e:45:41:75:08:bf:63:fc:1e:22:
         bc:54:79:53:10:f5:a4:c2:53:3b:21:6f:21:71:44:66:c8:32:
         c4:d5:4c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:35 2025 by rpki-client