Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File:                     s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier:          9ta8ync2ELxnDSQlzH4hduX+zmDhC+sppCpJ/SwsHg4=
Subject key identifier:   B5:5E:36:E7:0D:CA:FB:9B:A0:5D:85:82:A3:56:49:BE:0D:1D:CE:81
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer:       /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial:       01988C8F204DB33516AE5E1FE30BE75B3823
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number:          1629
Signing time:             Sat 09 Aug 2025 02:00:46 +0000
Manifest this update:     Sat 09 Aug 2025 02:00:46 +0000
Manifest next update:     Sun 10 Aug 2025 02:00:46 +0000
Files and hashes:         1: SpsqNCwISL1D7YWDs8MOUK4XUcQ.roa (hash: VKTdP32emCO1Alc2phplZ6z5V0MT3UL3VXfP0BBA76I=)
                          2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: YypdS8FXvApmzRT7uFGUMMiVGnmhTZimghvyWTAYmkw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8c:8f:20:4d:b3:35:16:ae:5e:1f:e3:0b:e7:5b:38:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
        Validity
            Not Before: Aug  9 02:00:46 2025 GMT
            Not After : Aug 10 02:00:46 2025 GMT
        Subject: CN=b55e36e70dcafb9ba05d8582a35649be0d1dce81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:79:3f:02:6e:47:cb:3a:40:12:ed:17:12:fa:
                    9e:a3:b2:28:27:66:9f:3c:14:fc:e6:35:62:16:1f:
                    ad:24:96:3e:ab:2a:94:70:3b:5c:ca:6b:40:fd:d0:
                    80:48:4b:f3:b3:32:36:29:c8:9a:4f:75:74:18:d2:
                    0e:fd:ea:d6:c4:2d:3f:01:c7:b0:33:74:d2:c9:a2:
                    54:dd:1d:f5:54:fd:b2:34:ba:73:4d:3a:46:9d:c2:
                    a3:5e:52:76:90:3c:ab:c4:92:ff:10:fd:f7:b9:6a:
                    9e:91:6e:e1:f3:e7:d2:a4:e1:4f:bf:bc:44:c8:8e:
                    a1:f5:13:da:a5:f5:be:e2:a2:1b:d8:21:43:f1:2c:
                    3a:9e:26:db:6c:9a:de:27:af:1c:0c:d6:a4:b4:c7:
                    7d:da:ea:b5:fc:58:2a:a9:65:5d:18:b6:8b:f3:63:
                    91:11:48:5b:1a:26:4f:88:ef:a4:01:44:f0:86:89:
                    fe:83:41:4c:80:89:c6:24:eb:4e:13:75:e5:e5:49:
                    3d:5f:01:0e:76:1c:dd:a5:2a:ad:e7:2b:9a:54:d4:
                    30:0e:21:f9:7c:7b:1f:e9:98:a0:d1:6d:e7:d0:71:
                    1a:79:f6:0f:fa:80:90:84:59:e6:e1:d8:9e:42:d3:
                    e8:3f:2a:63:95:72:90:f6:8e:40:ce:19:d7:db:31:
                    0a:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:5E:36:E7:0D:CA:FB:9B:A0:5D:85:82:A3:56:49:BE:0D:1D:CE:81
            X509v3 Authority Key Identifier:
                keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:2f:79:16:38:b6:55:23:10:7d:fc:4c:c6:17:6f:02:08:43:
         86:65:5d:e2:5e:d3:d7:5e:62:b6:aa:63:b6:25:ed:7d:98:11:
         1e:f0:97:15:8f:82:0c:14:f1:6e:29:56:9f:17:ca:4c:52:25:
         18:f0:1d:ba:5b:5e:34:ba:97:a7:03:80:0e:62:aa:b7:d3:a2:
         53:2a:cc:37:66:98:de:e2:23:c3:ae:e1:c6:e0:9d:b5:e7:b9:
         fb:82:8d:29:0d:f5:2d:1e:4c:9e:b9:e1:db:bb:d0:b8:06:b7:
         ee:57:ab:d7:29:ae:26:b2:7d:3b:2c:04:50:ca:fc:99:e3:bd:
         ec:07:74:2f:bd:c5:36:e0:dd:b0:4e:24:86:e2:f2:89:bb:0a:
         ae:81:2b:a7:cb:fe:52:29:8e:de:ff:b0:e2:ed:c3:fa:56:06:
         9b:9d:e6:45:09:b1:7a:50:cb:60:db:47:20:ac:b7:a9:7a:ee:
         27:2b:df:af:88:24:8d:3c:24:46:2d:7b:c7:de:3f:4f:96:7c:
         2d:f0:c0:4a:6f:f1:70:46:a6:73:37:82:39:c4:2a:17:03:94:
         88:dd:5f:ce:22:27:52:74:b4:0a:77:0c:fb:8c:3f:f9:12:41:
         b8:7c:3d:3e:78:03:83:f4:74:74:fa:a0:c8:bd:16:24:79:60:
         59:52:f6:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:51:48 2025 by rpki-client