Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
File:                     KyJEyKPrSjxtd20EbOkqvwHGwi8.mft (raw, json)
Hash identifier:          I7xYYA7r1ep2mPkOGbLhY1nP9aBKwYWgoB46ORcFGsM=
Subject key identifier:   2D:DA:EA:5C:23:9C:39:AB:8F:0D:FB:F8:C3:CB:28:F3:5D:28:92:DE
Authority key identifier: 2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
Certificate issuer:       /CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Certificate serial:       01989FDF0B71E7A6CEF7D6446C277BFC4FC1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
Manifest number:          162B
Signing time:             Tue 12 Aug 2025 20:00:51 +0000
Manifest this update:     Tue 12 Aug 2025 20:00:51 +0000
Manifest next update:     Wed 13 Aug 2025 20:00:51 +0000
Files and hashes:         1: CWGhSuH7Prq7nBeXCwJSQ8R7MLY.roa (hash: kJD3A5DYARZjtb9aiv1WyX0nnGUXwOPoDx5EHff3F+I=)
                          2: KyJEyKPrSjxtd20EbOkqvwHGwi8.crl (hash: us+ngy87oBNy3Qwfa32okh27Z5+GM+wvFJCWUNucYmU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 20:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:df:0b:71:e7:a6:ce:f7:d6:44:6c:27:7b:fc:4f:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
        Validity
            Not Before: Aug 12 20:00:51 2025 GMT
            Not After : Aug 13 20:00:51 2025 GMT
        Subject: CN=2ddaea5c239c39ab8f0dfbf8c3cb28f35d2892de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:65:3c:cb:70:78:53:e5:c5:29:8d:03:fe:3e:
                    4d:f1:e2:88:69:51:d8:f3:67:91:6f:88:9b:50:16:
                    f7:05:82:4f:bb:10:20:87:aa:a2:7a:99:57:01:46:
                    fa:5b:55:cd:f7:49:be:0d:85:06:86:63:7f:7b:ff:
                    30:f8:11:16:19:65:45:5f:db:79:01:76:44:c7:f7:
                    ba:9d:2e:b8:d6:93:c6:ce:25:f0:4c:7d:96:98:82:
                    91:98:99:6e:94:5c:d1:55:34:18:94:3e:70:2b:1a:
                    67:41:e5:35:08:78:a3:ff:f4:0c:53:99:3b:ce:ec:
                    7e:9c:06:59:7e:f5:a3:a7:8f:6e:b6:88:b8:56:c1:
                    96:f4:95:9f:0d:8e:fd:35:a5:75:31:3b:64:ee:05:
                    91:ef:6d:f5:51:e6:84:58:5a:69:c1:1f:c2:d8:ea:
                    d2:96:23:6d:5d:07:6e:7a:58:e7:79:97:01:3b:7b:
                    a6:55:76:68:c6:da:23:23:9c:6f:69:f9:17:39:e9:
                    1b:c3:f2:b5:cd:da:84:8c:ba:e9:98:74:f4:04:49:
                    66:df:98:92:9e:4f:12:4e:fa:68:68:c4:fc:71:15:
                    59:91:30:58:ba:01:15:06:41:33:bf:e2:b1:d1:05:
                    28:ba:ce:d7:0d:e0:e4:71:5a:12:dd:0e:64:47:d4:
                    9e:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:DA:EA:5C:23:9C:39:AB:8F:0D:FB:F8:C3:CB:28:F3:5D:28:92:DE
            X509v3 Authority Key Identifier:
                keyid:2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:70:4c:2f:c7:07:b7:c9:6f:61:7f:bb:24:bc:cb:86:5f:8d:
         34:64:f0:4f:75:7b:f1:a2:65:4e:14:b5:5d:96:a3:fa:5a:e3:
         53:4c:29:b7:81:8f:88:80:76:da:84:35:12:af:9b:22:9b:43:
         cf:23:47:c8:f5:4a:aa:9d:00:8e:1b:b6:d7:3b:d3:76:08:0b:
         3d:44:cc:a2:fe:45:93:c4:73:94:3a:e8:3f:26:4c:95:85:95:
         ad:5f:f5:c3:c9:d3:f5:8c:14:87:9f:1f:63:72:18:b1:7a:56:
         02:ff:a3:e1:36:46:3a:6d:83:21:98:6e:b8:13:ab:2f:65:17:
         b7:18:09:dd:3e:2d:eb:ed:7c:1e:a2:41:06:2a:2d:1c:88:3e:
         33:2a:bf:6a:2a:16:20:ed:90:61:44:2b:89:6d:a0:2b:ca:67:
         56:f9:cb:51:67:dd:a4:0a:47:13:33:ff:8c:12:e2:ac:d1:18:
         39:64:5f:6b:8c:8e:9b:f4:ea:24:e8:e1:7a:82:d1:30:a1:86:
         2a:01:10:1d:41:5e:95:c7:be:f8:1e:24:a0:3e:f7:7b:0d:64:
         d1:ee:cd:5a:1c:94:38:74:bb:45:93:3c:59:cf:74:ee:36:f2:
         74:ed:35:7c:d3:f0:59:34:b2:7d:6c:e1:56:40:c7:b3:b3:a1:
         d7:b6:63:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:50:20 2025 by rpki-client