Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
File:                     Fzn5ZM1In80lALN2gdWEedVTyKs.mft (raw, json)
Hash identifier:          CAejpU4fdqKkp3z0LzRbp59GQkTsj/N/s3EIyOeTWu4=
Subject key identifier:   88:C1:9C:39:58:D3:34:74:EB:8C:66:71:A4:3C:4C:58:C6:EA:9F:0D
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Certificate issuer:       /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial:       019873E1C54858C041D9F1C2F3643E21BAD0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
Manifest number:          10B5
Signing time:             Mon 04 Aug 2025 07:00:32 +0000
Manifest this update:     Mon 04 Aug 2025 07:00:32 +0000
Manifest next update:     Tue 05 Aug 2025 07:00:32 +0000
Files and hashes:         1: E7khi_dy64NAplQCGIYWONm6XWs.roa (hash: B7pDURftKO1TVaIjuNJYi/KUiJRc83FFsiFwUHpeKCw=)
                          2: Fzn5ZM1In80lALN2gdWEedVTyKs.crl (hash: Pbdl4HOKslMmElcryuwvBg9nuGiUhn2KhaJOCCSO4/k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 07:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e1:c5:48:58:c0:41:d9:f1:c2:f3:64:3e:21:ba:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
        Validity
            Not Before: Aug  4 07:00:32 2025 GMT
            Not After : Aug  5 07:00:32 2025 GMT
        Subject: CN=88c19c3958d33474eb8c6671a43c4c58c6ea9f0d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:48:97:0f:19:22:00:d9:a0:1a:88:f2:a1:37:
                    52:7d:f3:95:df:ac:5b:c8:d2:5a:4b:5b:db:ef:b1:
                    48:e1:78:26:a8:89:c2:0e:51:0d:b6:c0:c6:48:50:
                    50:18:c8:7f:79:db:53:a4:fc:52:c1:8a:e4:4e:cc:
                    de:17:f1:d1:0a:52:ff:07:94:82:0a:86:21:0f:13:
                    4a:11:7c:de:ed:21:3d:05:e3:c8:19:b3:3b:17:c8:
                    15:54:30:3f:e4:b7:67:c4:c0:f0:6a:da:7f:e7:e6:
                    de:54:8c:38:4d:5a:e5:ae:0a:72:4e:fb:ca:6c:7b:
                    94:aa:d4:3b:82:a4:4a:ae:cf:07:92:c3:0c:cf:d2:
                    99:4c:81:18:3f:de:1f:82:69:2c:04:c4:0a:dd:b4:
                    63:7b:9e:30:e0:38:a4:83:fd:e5:a7:23:43:bb:e1:
                    42:a8:cf:ca:fd:83:c2:e4:2c:88:8d:58:89:c3:ab:
                    13:fd:07:29:a3:8f:1a:20:bc:6a:02:c5:63:ef:00:
                    ef:9c:37:6f:b2:b0:85:31:dd:87:0d:8e:88:86:17:
                    8f:e4:e9:d5:d0:bb:31:cf:62:65:b2:c5:97:f8:4c:
                    84:3e:f1:bd:f1:fb:03:60:7c:3c:16:85:62:c9:b4:
                    84:ef:87:4b:7c:ca:db:3b:1d:d3:21:41:6f:7f:0e:
                    e4:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:C1:9C:39:58:D3:34:74:EB:8C:66:71:A4:3C:4C:58:C6:EA:9F:0D
            X509v3 Authority Key Identifier:
                keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:0c:ef:b7:57:53:79:0a:9a:8f:63:3c:ce:05:87:ca:a9:0c:
         44:4f:dd:12:cc:ac:89:1c:d1:ce:5e:17:d9:a5:42:b3:7d:94:
         a5:da:bc:33:5e:90:0c:a5:6d:0d:87:5c:7e:7b:a9:dc:cb:6a:
         ae:ce:dd:bf:d8:c8:f3:3c:51:0a:99:2d:0c:1f:b2:2a:10:e5:
         ec:91:33:09:7d:bc:9f:16:c9:86:18:66:b0:22:bc:c9:20:e0:
         ea:dc:78:2c:19:41:ce:02:ca:d6:3e:1c:d5:4d:cf:aa:e1:11:
         e8:2b:20:3f:9b:ef:8b:56:e7:7e:c1:62:d6:2b:af:95:46:33:
         bc:7e:ba:df:d3:cc:ee:f5:9c:6f:23:4d:4d:e2:dd:02:dc:64:
         b6:bc:18:36:d0:cd:35:92:6c:9c:65:e5:a1:c4:9e:54:34:1b:
         82:c5:26:99:36:69:fa:a4:8b:5e:62:83:c7:27:7e:b5:b9:a5:
         b9:b4:93:65:48:81:8a:4d:79:a4:ed:ec:b0:54:ea:45:71:b9:
         09:7a:88:1f:70:79:64:93:cd:61:d4:6f:72:f9:df:da:f3:89:
         41:69:ab:bf:78:b9:04:e8:b3:54:ee:b5:7b:66:59:af:a0:6f:
         73:3f:e4:16:3c:06:49:08:57:ce:1f:43:30:58:e7:a2:5a:19:
         f1:ed:b2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:02 2025 by rpki-client