Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
File:                     uqWupvGAqaitmEU17S5kvPyz_ho.mft (raw, json)
Hash identifier:          XYjpGZh4ye4LpkdLDX9ufNkq79u00ZvK2gSj3N8WSig=
Subject key identifier:   D5:19:5D:BE:81:D1:FE:82:68:B7:11:DF:27:76:AD:92:50:13:88:16
Authority key identifier: BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
Certificate issuer:       /CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Certificate serial:       01987486A00E62BAFEDFDAB87DB803A7B32B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
Manifest number:          0E0B
Signing time:             Mon 04 Aug 2025 10:00:36 +0000
Manifest this update:     Mon 04 Aug 2025 10:00:36 +0000
Manifest next update:     Tue 05 Aug 2025 10:00:36 +0000
Files and hashes:         1: CsvQEVK-EVJUj9O9Oyr9a1ZVDj8.roa (hash: KNjghiY6hSTnyBcRx4J/plbhEv6EisGMOlJT9AxkWNs=)
                          2: uqWupvGAqaitmEU17S5kvPyz_ho.crl (hash: frb/htOn9kvwJs9X29+QtV9eJGOitVDkvoHuA8h8N2Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 10:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:86:a0:0e:62:ba:fe:df:da:b8:7d:b8:03:a7:b3:2b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
        Validity
            Not Before: Aug  4 10:00:36 2025 GMT
            Not After : Aug  5 10:00:36 2025 GMT
        Subject: CN=d5195dbe81d1fe8268b711df2776ad9250138816
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:72:e3:4e:53:b3:b7:69:16:e8:a7:78:15:ec:
                    2b:8e:be:c4:f3:e0:42:9f:00:e0:27:3c:db:97:09:
                    d6:9e:af:bc:82:16:16:fa:80:33:3f:12:86:1e:b2:
                    f1:c3:6a:bd:9d:93:5b:8b:76:ee:86:66:a0:a4:14:
                    6d:d4:28:04:3c:bf:d6:8f:ee:2d:64:a4:f0:8b:43:
                    c7:27:67:97:3a:0b:98:e7:b2:94:c4:30:7f:56:3d:
                    8c:15:c9:a4:8a:1d:e6:c5:b1:8a:3b:d1:c3:ed:95:
                    21:b7:c1:91:85:60:5c:39:44:a8:87:ec:80:d7:49:
                    10:a1:db:e2:4b:f5:00:8a:90:28:fd:1a:75:56:3d:
                    4e:2b:96:53:0c:50:1e:4b:e4:ac:48:6a:60:4b:97:
                    50:94:f3:e3:bd:1e:7c:11:bb:c4:26:f2:fc:b7:83:
                    ac:1b:cf:60:38:d5:37:06:7e:11:21:10:1e:00:02:
                    65:59:bc:46:82:dc:8e:cf:54:9d:17:a3:51:25:77:
                    63:87:b6:fc:c6:96:13:1a:c4:56:23:83:01:54:5f:
                    a3:2d:27:9f:d8:3a:26:f8:ab:9e:0d:90:74:d3:2c:
                    a4:02:a4:92:dc:ea:ef:dd:aa:b6:28:81:bd:f0:2c:
                    fc:e8:0b:75:cd:df:60:cd:07:b6:a2:25:6c:6a:13:
                    a7:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:19:5D:BE:81:D1:FE:82:68:B7:11:DF:27:76:AD:92:50:13:88:16
            X509v3 Authority Key Identifier:
                keyid:BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:e4:e2:10:58:26:79:06:7a:0a:11:75:7a:51:23:e6:32:e0:
         3b:96:91:45:f2:06:52:26:1f:c5:c1:c4:81:a9:46:e7:6f:9b:
         a7:ce:73:9c:11:fb:af:f2:9f:b9:15:1f:50:1e:29:6b:fb:94:
         6d:2b:2d:48:12:7d:62:2e:70:cb:a1:8f:d6:87:9f:5c:90:da:
         b7:9d:f2:d1:b3:53:31:0f:fe:0f:46:ba:15:01:e7:09:4f:50:
         52:da:35:91:19:78:14:86:47:d3:a6:3a:a4:26:b7:06:dd:9c:
         61:6e:0b:b4:83:cb:51:0c:b4:38:09:38:3e:b6:8a:ab:fd:17:
         4b:01:6a:dc:cf:2a:93:01:ca:43:ff:47:81:b9:c3:ca:14:dd:
         2a:50:f3:7f:d4:2f:a6:0a:61:26:f2:06:8d:84:6e:ec:8f:55:
         95:fe:95:4a:59:63:aa:3f:77:36:0d:30:d4:f2:68:26:a9:f0:
         db:81:11:11:5f:4f:5d:a1:3d:38:f0:13:b4:fd:3d:6c:65:0e:
         20:c2:40:f0:82:9b:46:da:fc:1a:fd:4f:55:29:36:6c:d1:4a:
         7b:3b:62:1c:50:54:21:16:53:6e:59:87:4c:6a:37:7e:31:5d:
         36:eb:db:f1:11:46:c4:5b:2c:cb:bc:97:df:83:b1:ef:44:00:
         50:ec:92:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:56:43 2025 by rpki-client