Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File:                     hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier:          kpwj5iSAXFS3iWuddUhECQuR2LZ+H6nXs6nvmVVSpto=
Subject key identifier:   75:E3:53:BA:F3:E7:F4:21:A8:56:D7:E6:13:17:1F:25:65:D3:71:B0
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer:       /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial:       0198850C303FB42F64D11C2B5B38BA499F41
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number:          12
Signing time:             Thu 07 Aug 2025 15:00:25 +0000
Manifest this update:     Thu 07 Aug 2025 15:00:25 +0000
Manifest next update:     Fri 08 Aug 2025 15:00:25 +0000
Files and hashes:         1: EyJIl9GgE7NEizESEZnZ9ODAHzw.roa (hash: TDhr2Br5ELeOUc6goo8nbxisdzgPRnJxdfCh2qX9VlY=)
                          2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: WujnyycNIA7g5fe03rxZEnYzXXB5q6kEwkUvqqVHp5Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 15:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:85:0c:30:3f:b4:2f:64:d1:1c:2b:5b:38:ba:49:9f:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
        Validity
            Not Before: Aug  7 15:00:25 2025 GMT
            Not After : Aug  8 15:00:25 2025 GMT
        Subject: CN=75e353baf3e7f421a856d7e613171f2565d371b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:84:8d:24:1d:ee:f1:ed:bf:15:55:61:60:f5:
                    1b:63:ee:56:95:8f:98:bd:ef:81:03:44:3b:14:a8:
                    25:d8:8c:dc:cd:ab:49:4c:94:8b:17:e4:22:e5:7e:
                    ef:0f:d0:d3:b0:18:bb:4e:0a:83:00:78:9d:54:e0:
                    ac:2a:aa:44:b5:74:c0:84:d4:e1:cb:d5:0f:69:90:
                    1b:5e:ae:7e:fb:d2:45:f1:e8:c0:5b:82:75:76:dc:
                    26:8e:86:e5:45:9a:32:90:ee:00:9f:8e:94:cf:18:
                    00:cd:72:d8:c5:3f:7a:97:b1:73:70:2c:ae:3c:c5:
                    1e:ed:43:87:a5:8c:60:67:cf:df:8f:00:bd:b2:0e:
                    0a:1c:ba:cc:f1:51:e5:aa:76:26:d9:3d:0c:71:5e:
                    a2:52:a8:6b:fb:fa:ad:80:27:29:d0:b3:e9:20:10:
                    93:02:a4:4e:16:ad:20:7b:ad:0e:5d:f0:69:ca:d6:
                    0b:c9:c8:f4:37:3b:74:e9:8f:af:e8:54:12:37:cf:
                    77:3f:1b:c3:7c:73:42:61:c4:d9:33:61:a8:ce:7b:
                    c9:80:02:1e:d2:2c:5b:17:00:bd:54:2f:43:23:11:
                    b4:0b:a0:32:f9:01:c5:b9:e4:6e:72:de:f5:82:b1:
                    d1:5b:db:f3:7f:2c:74:98:d0:d8:7b:d8:51:98:89:
                    38:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:E3:53:BA:F3:E7:F4:21:A8:56:D7:E6:13:17:1F:25:65:D3:71:B0
            X509v3 Authority Key Identifier:
                keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:52:19:93:42:39:39:ac:47:37:05:64:3d:24:f6:33:45:82:
         f7:64:f9:f3:5a:4c:25:68:86:29:da:af:6c:dd:37:0d:aa:62:
         32:02:f1:f8:fb:dc:5d:df:b9:0a:cd:f1:ea:1e:66:f4:d6:e6:
         af:5d:f0:8c:dd:85:a4:60:db:69:a1:d8:ab:dd:d8:ca:0f:ed:
         df:34:ae:45:74:42:1a:8d:9d:9c:d4:3c:a6:1a:e1:cf:b1:6f:
         d1:cb:61:f0:71:77:ab:44:fe:23:26:8b:dc:3e:ef:c4:2e:4b:
         dd:7a:41:38:2f:74:1f:59:05:eb:6b:90:3c:a8:b4:c8:89:8a:
         4c:50:fc:00:8e:d1:c6:9e:2a:c3:29:cd:ee:67:b2:fb:80:91:
         a6:17:5d:67:9d:52:13:7b:db:03:3f:21:cc:6a:1b:c3:ff:82:
         a0:e7:09:1e:3c:3c:32:ba:3e:23:9f:17:7b:7e:4b:ef:d4:7c:
         8c:ab:c0:39:1e:dd:e8:68:80:01:06:40:6a:36:09:93:b3:32:
         ae:b7:89:fe:34:7b:44:09:5d:53:c5:4d:f0:a3:b0:29:8f:11:
         6a:29:82:8e:fe:23:33:14:21:ca:d6:51:b9:10:b7:74:2b:93:
         3a:6a:90:1f:1b:10:ae:e0:26:cc:1d:71:5c:15:fc:5c:e0:42:
         0e:2e:55:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 20:16:02 2025 by rpki-client