Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
File:                     hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft (raw, json)
Hash identifier:          AZQLz/OGnUmvw/j5ZnZEtyZrsfkiWLGShOnd5bS4Upo=
Subject key identifier:   8E:85:5F:F8:D6:99:8C:99:04:A7:CD:35:E1:7B:C2:71:35:C4:42:1A
Authority key identifier: 85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
Certificate issuer:       /CN=852bc145c5b22394d6feae996bc0bb25254801c6
Certificate serial:       01987F791202A45FB07868CC8463AB5FAA8E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
Manifest number:          032C
Signing time:             Wed 06 Aug 2025 13:01:37 +0000
Manifest this update:     Wed 06 Aug 2025 13:01:37 +0000
Manifest next update:     Thu 07 Aug 2025 13:01:37 +0000
Files and hashes:         1: UUl9tjMfoZ7A5klfeBDKB274xTs.roa (hash: SBvHQQieYmwuldne0ESh4KLqZuA1XSHveZCrpCqrHvQ=)
                          2: hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl (hash: VVKfyCDKnShOX29gRzHvCh5RTlxM92029U+icK4sZGU=)
                          3: k3kU5aAomwikuRNdsT68Tqjcik4.roa (hash: wCPtZXM9gkCUtgXFEirTaWeSRaiZvXJy0sUEtKPb0ls=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 13:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7f:79:12:02:a4:5f:b0:78:68:cc:84:63:ab:5f:aa:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=852bc145c5b22394d6feae996bc0bb25254801c6
        Validity
            Not Before: Aug  6 13:01:37 2025 GMT
            Not After : Aug  7 13:01:37 2025 GMT
        Subject: CN=8e855ff8d6998c9904a7cd35e17bc27135c4421a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:59:cf:ac:8f:94:a5:98:11:11:3b:39:c1:d2:
                    9a:1f:ad:ec:30:65:39:5c:1b:3c:57:77:12:84:4d:
                    81:81:64:4f:fa:ea:ff:be:9d:d5:fd:84:7c:2b:98:
                    41:44:cd:4d:d1:62:8e:db:90:38:fe:66:d4:95:7b:
                    70:e2:3d:32:01:ae:1d:48:fd:d8:73:cb:82:02:b7:
                    68:73:df:83:55:5f:15:43:95:f5:da:15:25:93:27:
                    6c:13:e2:20:c6:15:4f:ff:2c:00:9c:1e:55:32:fe:
                    21:28:52:d8:84:36:bb:c0:78:d1:3f:06:02:96:52:
                    3d:8d:eb:0f:9e:7f:d1:64:c7:b0:30:a3:8c:7f:d7:
                    c3:7b:f5:29:f7:f3:a7:41:05:66:7b:bc:be:59:58:
                    be:36:29:ce:6c:dc:80:c6:85:7b:9a:14:88:1b:cf:
                    08:68:9d:ee:f2:d9:4b:93:0e:28:65:27:af:32:c6:
                    11:54:89:fd:2e:a4:3e:24:6c:00:6f:9a:99:f4:fb:
                    fa:3f:52:bd:ae:7c:37:27:25:c1:be:85:90:cf:b5:
                    d1:bf:18:d7:9a:8b:34:83:7e:eb:ee:a3:74:6d:9d:
                    96:1e:54:9b:2e:f7:e2:f4:9b:79:cc:05:85:1f:d1:
                    32:72:2a:e8:7a:58:41:1d:e4:10:62:0c:60:76:d8:
                    64:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:85:5F:F8:D6:99:8C:99:04:A7:CD:35:E1:7B:C2:71:35:C4:42:1A
            X509v3 Authority Key Identifier:
                keyid:85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:c1:51:ca:03:a1:e9:ec:22:07:a9:17:91:eb:02:bc:25:cc:
         c2:4a:3d:03:2a:70:b8:ee:c0:e1:cb:fb:f2:0a:2f:f1:8f:58:
         2f:ed:5c:5e:5b:35:50:51:a2:85:99:fc:f0:72:51:c1:be:bc:
         48:9e:48:77:d8:70:c9:e5:18:cc:53:33:c5:75:23:b4:16:1c:
         4b:8d:32:9d:76:40:16:78:04:44:c9:b8:55:c3:a1:0e:0e:76:
         45:1a:f2:e2:6a:0b:ca:aa:4a:00:43:f5:7c:ff:ff:6f:e8:62:
         ad:d0:86:72:af:b5:ea:41:24:91:2f:77:00:d5:33:3f:8e:94:
         e0:09:2a:91:62:0b:3f:19:10:ff:b7:3c:58:08:54:b5:b7:4a:
         0b:f7:87:c6:65:f5:b8:9d:b3:20:99:96:f8:c5:56:90:40:7c:
         ef:ec:92:23:7e:20:f8:33:77:fb:5d:29:46:c4:54:b4:d8:ec:
         b1:45:f5:f4:2e:96:c3:c4:6d:03:15:4c:de:e5:e2:34:66:c4:
         b8:72:de:64:20:ec:5a:fb:f4:32:92:0d:10:cd:46:5d:0d:e4:
         a1:94:b9:bb:de:db:aa:31:b1:e4:64:15:52:fa:9f:ad:ad:e0:
         db:89:0f:56:9d:36:44:c6:73:86:77:fb:63:9c:09:27:3d:65:
         05:64:58:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:37:22 2025 by rpki-client