Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
File:                     4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft (raw, json)
Hash identifier:          25/LKhBnh7XWJfnM7ORc6ZKfaoKC5QJpp2HAV4j7IM0=
Subject key identifier:   44:FB:1C:A6:BD:BF:3D:89:F4:EF:37:08:84:F4:C2:DB:E9:B3:0C:44
Authority key identifier: E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
Certificate issuer:       /CN=e334ec393448d83bf1515f4967a448098e55fb43
Certificate serial:       019874191C1E20944DDBE1F2D53AED90D022
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
Manifest number:          1616
Signing time:             Mon 04 Aug 2025 08:00:59 +0000
Manifest this update:     Mon 04 Aug 2025 08:00:59 +0000
Manifest next update:     Tue 05 Aug 2025 08:00:59 +0000
Files and hashes:         1: 3i7bDwmXfkGeboYerA9gz4okFig.roa (hash: fWhHLCsrKiodDbQX5MlZg8yk8IDQZFwIAhXPpQk2VnY=)
                          2: 4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl (hash: MLP4IYSDX/DHeqSBQHzCJqmdoKtJfR8szKsVABH/+J0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:19:1c:1e:20:94:4d:db:e1:f2:d5:3a:ed:90:d0:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e334ec393448d83bf1515f4967a448098e55fb43
        Validity
            Not Before: Aug  4 08:00:59 2025 GMT
            Not After : Aug  5 08:00:59 2025 GMT
        Subject: CN=44fb1ca6bdbf3d89f4ef370884f4c2dbe9b30c44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:4a:67:37:a3:1a:c8:a2:04:54:8d:ea:03:80:
                    1a:96:8d:1f:88:c8:d8:f9:7b:c6:ae:23:96:d4:66:
                    3e:68:3a:6a:b2:55:47:2f:f5:f9:4e:57:e9:a1:31:
                    eb:2b:13:c9:e5:69:d0:5b:33:d0:1d:7f:8e:18:09:
                    26:96:0f:e7:98:ef:60:23:b2:30:5a:12:99:c7:d6:
                    70:96:e8:ae:65:34:f2:8a:8b:ec:60:42:80:3c:d0:
                    cb:6e:6d:1c:63:f0:fe:67:e5:e8:97:a1:72:18:59:
                    0a:83:ce:84:31:3e:85:75:31:9f:69:21:75:50:12:
                    9e:2e:54:4f:d9:a8:bc:04:d3:44:f9:eb:f8:5e:98:
                    b0:78:a2:40:4e:ab:06:99:2d:b9:10:78:af:4c:bb:
                    13:0a:49:a2:8a:2c:3e:5f:71:be:1f:ec:60:03:69:
                    03:2d:6e:43:a7:d7:c2:6e:06:3f:11:ef:82:3b:14:
                    c0:a3:01:00:a8:a9:41:09:a3:0e:06:08:5a:06:f5:
                    2e:66:61:ad:d4:7b:47:c6:31:4e:94:22:44:21:40:
                    8c:a5:d3:e9:49:32:50:cc:e2:da:80:35:be:ab:62:
                    11:58:08:e1:75:9c:e3:0f:13:56:34:d5:8b:82:49:
                    90:0a:a8:84:92:37:fd:e6:a3:23:ef:01:28:35:0a:
                    5e:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:FB:1C:A6:BD:BF:3D:89:F4:EF:37:08:84:F4:C2:DB:E9:B3:0C:44
            X509v3 Authority Key Identifier:
                keyid:E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:59:ae:12:73:5e:0f:b0:c2:8a:37:49:7d:bb:30:7a:8b:27:
         24:a2:62:d6:c6:4b:d9:d0:04:30:25:24:ba:b8:00:c6:53:1b:
         f2:e9:7f:48:13:02:72:e5:18:35:96:29:45:31:4b:de:67:57:
         8e:59:eb:51:66:84:15:66:bb:14:63:cb:e9:ea:d4:a2:0d:5d:
         4d:bf:8a:63:0d:4e:a3:d2:8a:29:4e:0d:a3:3d:16:c9:ef:db:
         fc:94:9d:fe:5c:42:96:23:a6:a2:1c:50:eb:d9:7e:c6:31:bc:
         3a:21:b1:db:8a:32:bf:88:9a:e7:70:b4:45:f3:4d:b2:54:e8:
         0a:6d:d9:48:d3:db:ae:8e:87:0d:bc:db:fe:d1:7a:eb:7a:00:
         c2:1a:03:98:a7:22:5b:f5:6b:4d:da:d3:65:ee:ae:84:cc:b8:
         27:43:1a:4b:b9:2a:7d:2b:49:db:63:7d:fa:93:3c:b0:12:2b:
         be:1f:7b:cf:99:98:2b:cd:b8:ea:25:87:fb:21:1a:4e:e1:9a:
         ab:9d:70:f7:68:d9:2f:40:6b:a4:59:b9:05:37:6b:00:89:87:
         c1:ed:a0:70:b5:8f:3a:1b:2e:42:95:81:0d:5f:9a:40:15:fc:
         dc:9a:7f:40:8c:b7:ae:33:e6:fa:07:0b:c6:16:93:96:cc:77:
         9d:5e:7f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:04 2025 by rpki-client