Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File:                     fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier:          SfkJc7kxPUwcmbDE+7huEJUAlwkz/10CntRD0oZuBes=
Subject key identifier:   F2:35:BC:A8:92:77:E6:A8:24:BE:CB:17:BA:46:E5:21:71:49:61:16
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer:       /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial:       019881680CCCAC370EE7E2326276870EC14E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number:          01FB
Signing time:             Wed 06 Aug 2025 22:02:16 +0000
Manifest this update:     Wed 06 Aug 2025 22:02:16 +0000
Manifest next update:     Thu 07 Aug 2025 22:02:16 +0000
Files and hashes:         1: KHa9mVj-WNELt7pSCK9ooFTGrNA.roa (hash: UqMuiUZn2GrnQQZzSZEJPEZOfxeCUD81uoCK7byK2Vc=)
                          2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: Qc0nUoH7CS7zpZCPuJs52SgfFJTgvoaib252JAnjy2M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:68:0c:cc:ac:37:0e:e7:e2:32:62:76:87:0e:c1:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
        Validity
            Not Before: Aug  6 22:02:16 2025 GMT
            Not After : Aug  7 22:02:16 2025 GMT
        Subject: CN=f235bca89277e6a824becb17ba46e52171496116
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b0:33:e2:89:cc:a5:e7:e6:f2:92:c9:12:a5:
                    d1:89:df:59:76:a4:3d:8b:ea:bb:0e:3a:67:05:40:
                    89:ac:9f:5b:87:d9:00:e0:5c:f2:a0:4b:b7:7d:72:
                    7b:7d:6a:3d:03:f4:f4:c2:9d:58:c6:09:ac:d7:e1:
                    21:74:34:f0:5a:81:ff:ea:ae:28:01:22:25:cf:0c:
                    bb:39:96:0a:4f:8e:e8:38:6e:64:73:cb:40:d1:ea:
                    ca:7d:c8:7d:9f:a4:fd:2a:91:db:09:3c:4a:8c:a1:
                    32:03:7f:fc:ed:09:bc:b4:d1:d2:79:7a:50:5d:0e:
                    0b:19:05:97:df:f3:62:99:1b:22:06:d8:a0:19:b9:
                    58:cb:18:12:cc:a6:f5:cc:07:18:d9:9e:88:2d:19:
                    03:71:a0:8c:74:08:09:43:da:3e:21:1f:b7:f5:4a:
                    35:33:52:1f:36:95:09:a6:fb:f7:e5:2e:85:3f:f3:
                    95:4a:49:5b:ec:96:4f:72:71:15:95:67:5e:a0:20:
                    bd:ac:a7:c6:f1:4a:f7:b2:1a:ca:5b:40:ec:14:ea:
                    0d:0d:d6:7c:eb:0f:77:82:4e:a6:fd:08:91:13:20:
                    b7:1a:9f:a1:b6:d4:19:a7:43:e7:1e:53:10:40:34:
                    43:75:7c:94:85:fe:5c:8c:1c:84:a6:0f:02:db:81:
                    4e:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:35:BC:A8:92:77:E6:A8:24:BE:CB:17:BA:46:E5:21:71:49:61:16
            X509v3 Authority Key Identifier:
                keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:e4:03:40:b7:53:24:18:05:72:22:ab:f9:c1:c1:1a:05:0d:
         85:9d:27:92:73:a5:9c:dc:d2:5a:d7:c8:ed:fd:ec:90:fa:e8:
         d6:5d:b3:c7:47:d1:c6:16:cd:a2:fa:d2:f0:69:68:69:c0:02:
         15:3e:df:b0:ff:28:55:a6:a5:ad:e5:6f:cc:be:a0:cf:07:18:
         83:40:cc:31:cb:ca:76:c4:6a:2a:e5:24:da:75:a5:31:60:0c:
         d9:63:56:8d:a0:c2:e1:fe:b8:be:5f:1f:cc:d6:67:9f:f0:c8:
         d8:de:15:5b:c4:57:5b:83:70:85:72:cc:82:72:57:de:33:79:
         50:37:25:7d:29:25:ea:b1:90:5b:de:7d:8b:12:4c:c4:8a:e7:
         c3:ab:9a:88:7a:72:b2:18:6e:6b:dc:5b:38:75:2e:d8:d7:3b:
         77:33:9d:03:8d:2a:11:12:0c:8b:57:99:b1:4c:52:b1:92:8c:
         f1:bb:1e:8e:5d:fc:70:5c:87:67:51:09:7a:88:03:26:17:f8:
         d5:0f:c0:2a:57:29:72:64:4b:6a:d3:12:bc:93:87:71:9b:22:
         f9:31:90:a0:d2:74:42:87:a2:56:e7:6b:86:6c:c4:e2:9f:df:
         14:f9:1f:99:9a:6e:b6:bc:c4:dc:b7:00:4e:62:a7:35:9e:95:
         92:11:02:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:28:25 2025 by rpki-client