Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
File:                     RK3etuoTlfaY9C51Qa70kkJiX2I.mft (raw, json)
Hash identifier:          oqmMaC/sZ+Fkml9ZboxiSNr7Tzh1QVj0LYNUbDpFX4A=
Subject key identifier:   87:18:0E:BF:94:03:B1:42:5E:22:C2:1C:B6:8A:01:D0:F6:00:52:A0
Authority key identifier: 44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
Certificate issuer:       /CN=44addeb6ea1395f698f42e7541aef49242625f62
Certificate serial:       01987F78764C1F2F850B5E45994873A1B589
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
Manifest number:          161A
Signing time:             Wed 06 Aug 2025 13:00:57 +0000
Manifest this update:     Wed 06 Aug 2025 13:00:57 +0000
Manifest next update:     Thu 07 Aug 2025 13:00:57 +0000
Files and hashes:         1: RK3etuoTlfaY9C51Qa70kkJiX2I.crl (hash: ZOA1k/TAmgDBxqCYazpbtdtuJcvXLZhVQN0Kqn3LbzQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 13:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7f:78:76:4c:1f:2f:85:0b:5e:45:99:48:73:a1:b5:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44addeb6ea1395f698f42e7541aef49242625f62
        Validity
            Not Before: Aug  6 13:00:57 2025 GMT
            Not After : Aug  7 13:00:57 2025 GMT
        Subject: CN=87180ebf9403b1425e22c21cb68a01d0f60052a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:d2:ec:2b:38:ff:bc:be:8b:f7:f0:7a:33:05:
                    4a:32:ef:ad:df:0a:cb:28:d4:62:45:a2:71:9f:a0:
                    1a:32:ce:ca:00:38:aa:5a:b3:ef:e9:ee:d1:6a:4e:
                    79:00:12:d3:74:58:d1:bb:f2:a2:5c:c2:90:cd:09:
                    9a:2c:a9:fd:d3:52:df:55:48:88:fb:2c:b8:0c:b4:
                    86:f6:d2:5e:02:ad:21:e8:ed:29:13:de:73:81:c0:
                    fc:35:5d:13:3b:56:0c:18:fe:98:25:f4:45:d2:76:
                    99:51:ab:13:9b:3a:0a:a5:d1:2b:f2:56:e7:12:da:
                    d2:5f:47:47:65:e7:72:45:e5:3e:a0:c9:c8:c3:13:
                    a5:9c:c0:74:e9:8e:e6:3a:bb:2a:08:95:0a:94:ec:
                    2f:e2:37:51:bd:b3:53:81:76:7b:bd:43:6b:13:99:
                    04:fe:7c:66:6b:c8:f6:6c:b7:9f:a5:f9:2d:b7:81:
                    70:95:40:4f:4d:38:20:e9:4f:eb:7c:14:02:69:75:
                    1e:1b:37:c3:19:80:48:23:3a:d0:e7:67:e2:95:dd:
                    81:08:fd:a3:30:d2:4e:b2:f0:2d:13:e0:19:45:d4:
                    42:0e:f9:98:26:77:d6:5d:7f:fc:18:46:6a:4f:55:
                    85:1e:c6:c2:68:d3:9c:96:be:ee:23:cb:96:41:c2:
                    0e:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:18:0E:BF:94:03:B1:42:5E:22:C2:1C:B6:8A:01:D0:F6:00:52:A0
            X509v3 Authority Key Identifier:
                keyid:44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:87:74:f3:a7:d1:01:24:37:ee:32:71:d6:0b:89:0b:0e:cc:
         8e:a7:9e:82:63:05:6c:8a:36:38:dd:2e:6f:3f:7b:0c:80:2c:
         53:41:ba:79:b7:59:78:0e:e0:f8:9f:9e:95:5c:99:42:dc:90:
         c7:8d:f7:5e:94:15:51:fc:5d:8f:6d:a7:00:85:95:63:fd:14:
         2c:e6:09:a1:d5:82:e5:a4:c2:2b:e8:a5:0a:cd:e3:95:d8:71:
         cc:d9:f5:fe:ac:0f:02:6b:bf:fa:4f:26:08:96:4b:bd:a5:57:
         b8:4f:fa:c7:27:21:e5:d3:b3:7f:e4:e1:3a:90:fe:3d:90:03:
         ec:16:5b:e1:f9:4e:46:e9:5d:51:65:bd:85:25:15:95:8c:35:
         37:b0:dc:17:61:56:f7:38:03:e0:65:71:9b:ea:f6:83:74:13:
         d7:ec:56:b0:b1:a9:cc:72:91:3e:59:ef:cd:16:dc:d9:43:ec:
         bd:4c:cc:84:61:08:f9:78:9b:80:d7:ff:66:79:43:a8:4a:9e:
         55:66:f7:27:c4:d1:98:df:ce:f5:18:3d:71:30:a9:f5:ec:77:
         c3:02:50:98:28:a9:42:00:a3:29:3c:f4:20:f4:d0:8a:be:da:
         62:c7:84:64:37:66:25:ec:85:91:55:ac:e4:f9:63:18:f4:ca:
         af:1e:ad:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh/eHZMHy+FC15FmUhzobWJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0YWRkZWI2ZWExMzk1ZjY5OGY0MmU3NTQxYWVmNDkyNDI2
MjVmNjIwHhcNMjUwODA2MTMwMDU3WhcNMjUwODA3MTMwMDU3WjAzMTEwLwYDVQQD
Eyg4NzE4MGViZjk0MDNiMTQyNWUyMmMyMWNiNjhhMDFkMGY2MDA1MmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdLsKzj/vL6L9/B6MwVKMu+t3wrL
KNRiRaJxn6AaMs7KADiqWrPv6e7Rak55ABLTdFjRu/KiXMKQzQmaLKn901LfVUiI
+yy4DLSG9tJeAq0h6O0pE95zgcD8NV0TO1YMGP6YJfRF0naZUasTmzoKpdEr8lbn
EtrSX0dHZedyReU+oMnIwxOlnMB06Y7mOrsqCJUKlOwv4jdRvbNTgXZ7vUNrE5kE
/nxma8j2bLefpfktt4FwlUBPTTgg6U/rfBQCaXUeGzfDGYBIIzrQ52fild2BCP2j
MNJOsvAtE+AZRdRCDvmYJnfWXX/8GEZqT1WFHsbCaNOclr7uI8uWQcIOlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIcYDr+UA7FCXiLCHLaKAdD2AFKgMB8GA1UdIwQY
MBaAFESt3rbqE5X2mPQudUGu9JJCYl9iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkszZXR1b1RsZmFZOUM1MVFhNzBra0ppWDJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80YTZlZjEtYjRlZS00YTE0LTkzODQt
NDcxNGY5NzFiNzhiLzEvUkszZXR1b1RsZmFZOUM1MVFhNzBra0ppWDJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC80YTZlZjEtYjRlZS00YTE0LTkzODQtNDcxNGY5NzFiNzhi
LzEvUkszZXR1b1RsZmFZOUM1MVFhNzBra0ppWDJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWYd086fR
ASQ37jJx1guJCw7MjqeegmMFbIo2ON0ubz97DIAsU0G6ebdZeA7g+J+elVyZQtyQ
x433XpQVUfxdj22nAIWVY/0ULOYJodWC5aTCK+ilCs3jldhxzNn1/qwPAmu/+k8m
CJZLvaVXuE/6xych5dOzf+ThOpD+PZAD7BZb4flORuldUWW9hSUVlYw1N7DcF2FW
9zgD4GVxm+r2g3QT1+xWsLGpzHKRPlnvzRbc2UPsvUzMhGEI+XibgNf/ZnlDqEqe
VWb3J8TRmN/O9Rg9cTCp9ex3wwJQmCipQgCjKTz0IPTQir7aYseEZDdmJeyFkVWs
5PljGPTKrx6tDg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 16:21:11 2025 by rpki-client