Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
File:                     ylIg5T5PgcoljM_qGHKAKA9fYho.mft (raw, json)
Hash identifier:          dddC46OESK2WhWnf2ZgYAHFw22pAO3qtkEtSL1wZ4Uc=
Subject key identifier:   FB:67:15:FB:18:83:CA:BB:80:36:83:23:38:F7:0D:E3:B7:40:48:2B
Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
Certificate issuer:       /CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Certificate serial:       01988430F36D3D2AB705BD9242C38BDA5B65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
Manifest number:          161D
Signing time:             Thu 07 Aug 2025 11:00:57 +0000
Manifest this update:     Thu 07 Aug 2025 11:00:57 +0000
Manifest next update:     Fri 08 Aug 2025 11:00:57 +0000
Files and hashes:         1: HnblzgjRhv7ohFCku2dgX5Jr7vw.roa (hash: o9K0gGCxUA0R4sGgN9lj9M6IzHoNtSXBjdq46DJlaa4=)
                          2: dem0uBwT7g7YZDZIQsS-aXVQdOI.roa (hash: XISttqO419C7SgkgSmOfFJd6GmXYZpUuMQWw/YZudzA=)
                          3: ylIg5T5PgcoljM_qGHKAKA9fYho.crl (hash: 5plRaBS8ScBSyjdUs7a3uv2Vlz8yCmYSxrymqbg/jZI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 11:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:84:30:f3:6d:3d:2a:b7:05:bd:92:42:c3:8b:da:5b:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a
        Validity
            Not Before: Aug  7 11:00:57 2025 GMT
            Not After : Aug  8 11:00:57 2025 GMT
        Subject: CN=fb6715fb1883cabb8036832338f70de3b740482b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:e7:36:3c:50:18:5b:f9:d9:c7:57:2a:7f:79:
                    bc:22:cd:3c:f9:01:c2:93:e0:81:ad:e8:90:70:56:
                    9d:2e:b1:ab:3b:fd:88:37:31:b1:57:47:a0:96:03:
                    9c:f4:b5:aa:44:42:06:57:95:83:ce:09:3e:8b:be:
                    eb:60:a2:60:9c:bc:05:de:12:f6:ff:5e:c4:db:86:
                    39:67:0d:f2:31:3e:e3:d2:c2:1b:d9:c8:a2:8a:e3:
                    d1:1b:b0:27:93:a5:dd:b3:4b:46:ea:7c:62:72:85:
                    cc:b9:29:ea:0a:6b:46:f0:81:15:5e:e5:11:74:a4:
                    aa:b3:51:63:7e:4b:4b:82:e2:ac:8d:d2:2b:78:df:
                    31:af:a7:2d:8a:20:6e:c7:3a:3b:18:c2:98:2c:da:
                    05:ef:f0:b6:d0:b1:4e:f2:16:58:7a:2b:06:9a:35:
                    ff:9a:ae:03:2e:05:af:3b:61:a2:90:8d:7d:51:e3:
                    31:5e:ee:06:a0:14:0b:1a:10:71:41:6d:47:da:b6:
                    94:74:7b:df:cd:fc:2c:58:2f:c0:30:9b:46:8c:7d:
                    24:c5:22:f4:61:54:d4:ad:b4:c1:58:83:4b:84:b3:
                    45:7d:e0:8c:e5:27:77:4c:ea:2c:5c:2f:1c:e2:95:
                    c5:2b:06:3e:27:7a:85:8a:90:28:28:33:67:46:1c:
                    e0:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:67:15:FB:18:83:CA:BB:80:36:83:23:38:F7:0D:E3:B7:40:48:2B
            X509v3 Authority Key Identifier:
                keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:0e:52:db:0d:f9:93:01:39:31:9b:9f:3a:13:02:08:6a:5a:
         f5:d0:2c:7b:f8:17:4e:72:94:b5:c1:cb:e3:d2:03:7f:20:37:
         46:2d:f1:1c:42:f2:95:5c:14:79:af:5b:50:9b:60:22:83:a8:
         fc:cd:bc:c5:ae:41:ab:1d:61:d5:94:29:58:a8:bc:df:2d:ad:
         31:e8:b1:94:ba:75:22:08:17:e6:1f:d0:5b:01:fb:98:33:e9:
         00:2a:45:59:3a:54:18:29:80:bf:ff:30:6c:30:88:ba:9d:45:
         2d:0e:a4:c8:b9:c6:09:ff:a1:e2:40:7c:26:29:de:0f:07:8b:
         2d:ed:ac:f9:33:6b:5f:68:5e:44:3d:a1:0e:e3:de:cf:f0:af:
         a6:b2:62:f6:07:da:c3:a9:1f:25:d3:37:3e:9a:da:cf:bc:5c:
         5f:88:58:c2:31:23:fa:2b:35:0b:98:cf:cb:4a:93:a2:82:a4:
         f0:45:10:53:e3:04:c8:1f:c4:f7:d6:e1:25:a9:dd:b5:2c:43:
         89:79:c9:d8:f3:3d:3a:e6:fa:56:8b:0f:eb:28:2c:d2:f6:6a:
         88:37:16:38:32:07:49:8f:0a:e5:17:7c:be:5e:97:9d:87:2c:
         9e:dd:67:4a:c7:ea:4d:32:b8:43:b5:69:ba:09:77:5b:6d:40:
         85:27:2a:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiEMPNtPSq3Bb2SQsOL2ltlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTIyMGU1M2U0ZjgxY2EyNThjY2ZlYTE4NzI4MDI4MGY1
ZjYyMWEwHhcNMjUwODA3MTEwMDU3WhcNMjUwODA4MTEwMDU3WjAzMTEwLwYDVQQD
EyhmYjY3MTVmYjE4ODNjYWJiODAzNjgzMjMzOGY3MGRlM2I3NDA0ODJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+c2PFAYW/nZx1cqf3m8Is08+QHC
k+CBreiQcFadLrGrO/2INzGxV0eglgOc9LWqREIGV5WDzgk+i77rYKJgnLwF3hL2
/17E24Y5Zw3yMT7j0sIb2ciiiuPRG7Ank6Xds0tG6nxicoXMuSnqCmtG8IEVXuUR
dKSqs1FjfktLguKsjdIreN8xr6ctiiBuxzo7GMKYLNoF7/C20LFO8hZYeisGmjX/
mq4DLgWvO2GikI19UeMxXu4GoBQLGhBxQW1H2raUdHvfzfwsWC/AMJtGjH0kxSL0
YVTUrbTBWINLhLNFfeCM5Sd3TOosXC8c4pXFKwY+J3qFipAoKDNnRhzgyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPtnFfsYg8q7gDaDIzj3DeO3QEgrMB8GA1UdIwQY
MBaAFMpSIOU+T4HKJYzP6hhygCgPX2IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODkt
ZjIzYzVhNTMxODIzLzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODktZjIzYzVhNTMxODIz
LzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACg5S2w35
kwE5MZufOhMCCGpa9dAse/gXTnKUtcHL49IDfyA3Ri3xHELylVwUea9bUJtgIoOo
/M28xa5Bqx1h1ZQpWKi83y2tMeixlLp1IggX5h/QWwH7mDPpACpFWTpUGCmAv/8w
bDCIup1FLQ6kyLnGCf+h4kB8JineDweLLe2s+TNrX2heRD2hDuPez/CvprJi9gfa
w6kfJdM3Ppraz7xcX4hYwjEj+is1C5jPy0qTooKk8EUQU+MEyB/E99bhJandtSxD
iXnJ2PM9Oub6VosP6ygs0vZqiDcWODIHSY8K5Rd8vl6XnYcsnt1nSsfqTTK4Q7Vp
ugl3W21AhScqKA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 20:27:00 2025 by rpki-client