Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
File:                     QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft (raw, json)
Hash identifier:          qRENgmkNVe63WJ8ygOIO4fzpbz6HWrRPvjWztPTA7ic=
Subject key identifier:   75:7D:BC:27:39:E7:1B:24:14:8A:EE:4D:28:80:AE:15:DB:46:7F:4E
Authority key identifier: 40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
Certificate issuer:       /CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Certificate serial:       01988279C0D302A16807BD546B8957F689E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
Manifest number:          0DAF
Signing time:             Thu 07 Aug 2025 03:01:13 +0000
Manifest this update:     Thu 07 Aug 2025 03:01:13 +0000
Manifest next update:     Fri 08 Aug 2025 03:01:13 +0000
Files and hashes:         1: GQOl6LTvNyPMyG3KjW9Ajp0Bvpw.roa (hash: eZX/fpaYpvDnXloavaVJKtIU2XKfpzNfzwR74TFia7o=)
                          2: QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl (hash: 0Xpq1P9i9vnEQ95oVLQQ4Xh8F1c1RDEnNp9ZyL9By2o=)
                          3: b5Ug6NPJo2XtezY8UVzxnmPE-i0.roa (hash: VB+B1HYKvDBDwa8bPpxYYXoTuHADEZJRpgBpaSqbPu4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 23:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:82:79:c0:d3:02:a1:68:07:bd:54:6b:89:57:f6:89:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=407c7083460e1a4c72c4bc4276313d3a85944a87
        Validity
            Not Before: Aug  7 03:01:13 2025 GMT
            Not After : Aug  8 03:01:13 2025 GMT
        Subject: CN=757dbc2739e71b24148aee4d2880ae15db467f4e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:11:a9:0d:7c:07:41:d3:4c:23:a1:bb:53:56:
                    6b:0e:8f:98:40:72:8e:16:c8:63:3a:cf:36:72:74:
                    02:f2:31:8f:c6:8d:52:be:8c:8e:27:8e:9a:dc:b0:
                    ad:e0:a7:21:bf:03:fa:25:9d:7a:26:95:06:09:ec:
                    c2:bf:f0:db:bb:00:ce:84:15:1f:73:45:d6:fc:ff:
                    72:97:69:dd:68:c5:19:9f:ac:e0:6d:f3:82:6b:5b:
                    98:a8:7c:89:65:db:ce:2a:b3:03:f7:ea:69:e9:84:
                    97:2c:1b:d5:26:83:d6:17:17:7e:45:7d:37:bb:fe:
                    ca:f3:c4:55:0d:45:44:95:9d:0f:86:b2:5f:53:d5:
                    44:6f:5e:d2:4f:40:68:88:26:62:a9:7d:ca:aa:99:
                    16:79:f0:58:99:bd:4d:2a:94:8b:9e:0c:82:86:ca:
                    b6:d7:77:07:6a:af:4c:a4:d6:5d:b1:3a:87:bf:6b:
                    c2:78:84:44:c4:f1:75:7a:b1:bc:50:fd:42:aa:b5:
                    97:fa:c1:4a:cf:16:06:95:03:f6:15:ce:6f:11:12:
                    9c:71:bb:a3:04:a5:3e:7d:9e:da:1c:30:fb:8c:b4:
                    4f:00:d9:ab:e6:7b:3c:19:da:3f:80:59:b5:c8:56:
                    3f:96:97:54:26:35:92:67:78:88:42:46:e5:81:a9:
                    d1:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:7D:BC:27:39:E7:1B:24:14:8A:EE:4D:28:80:AE:15:DB:46:7F:4E
            X509v3 Authority Key Identifier:
                keyid:40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:28:f2:d7:b8:6d:c4:44:5c:4e:3b:db:26:bf:4e:7b:4f:24:
         e2:6a:c4:bc:ba:9c:1b:69:b5:ce:98:36:17:27:ca:11:3f:b3:
         62:ae:9e:23:19:47:80:3c:d7:b8:6c:6a:ea:38:87:53:98:7e:
         25:42:35:aa:97:11:30:66:e9:7a:08:a3:74:0b:c0:44:1e:b3:
         7a:73:c9:aa:36:55:1b:3c:db:e7:af:2a:05:ed:ca:b1:83:57:
         a8:5a:b7:e3:06:3c:7d:42:91:7c:93:94:f4:fa:8f:5a:f2:49:
         93:3d:b1:82:2d:a9:7a:ee:f2:8e:c3:aa:05:d6:1a:6a:06:3f:
         31:de:af:bf:7c:21:ff:44:3e:e8:2b:1e:1c:d1:87:0f:8a:b4:
         59:4b:2d:3a:05:36:33:c8:ef:cc:19:e3:ca:b0:c9:44:06:71:
         db:bb:61:86:d7:02:19:57:7d:fa:6d:7e:df:ba:a6:af:b9:ce:
         68:1f:50:dd:a4:f6:90:4b:1b:d8:fc:09:d4:ed:e2:6c:7d:ea:
         8c:f2:97:ab:18:66:db:77:36:ff:bb:2e:3a:ff:9a:1f:fd:3f:
         71:88:7a:21:a0:a2:f1:f0:65:4c:70:68:77:32:a1:e8:b6:11:
         34:81:d2:76:cc:47:a9:db:17:55:35:37:04:d5:19:ee:09:57:
         32:89:e7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:21:35 2025 by rpki-client