Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File:                     1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier:          7wGL2OPKujmdJTNXIrdltpBeMsMQSSzGGod1cP/1cmM=
Subject key identifier:   F5:6D:49:05:44:50:08:23:34:A9:45:DA:27:C8:F7:D4:E4:C9:DB:18
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer:       /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial:       019883FA637BACD35C5556DB33F081F2C2F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number:          10EB
Signing time:             Thu 07 Aug 2025 10:01:21 +0000
Manifest this update:     Thu 07 Aug 2025 10:01:21 +0000
Manifest next update:     Fri 08 Aug 2025 10:01:21 +0000
Files and hashes:         1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: 4vlaY6FuhFysUf/eFVtZs5dcNZuNzEjMKMlLtan6axQ=)
                          2: QgExJsLM6ckB_bwe9qRnk4o5HhA.roa (hash: P6xf+cz+/i4pkIjOYnliYy5pmyQWXuehaFAXXoyCR5k=)
                          3: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 10:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:83:fa:63:7b:ac:d3:5c:55:56:db:33:f0:81:f2:c2:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
        Validity
            Not Before: Aug  7 10:01:21 2025 GMT
            Not After : Aug  8 10:01:21 2025 GMT
        Subject: CN=f56d49054450082334a945da27c8f7d4e4c9db18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:d0:62:90:80:9f:9a:af:40:92:b0:69:ce:b2:
                    93:15:fb:c3:88:a0:bc:e1:30:fa:8f:56:57:da:67:
                    db:8b:98:8e:7c:3f:13:7b:ab:f5:88:b2:0f:25:96:
                    34:69:45:5a:f1:3b:e2:8f:78:13:d6:3d:23:a2:8d:
                    8a:19:77:6a:c5:23:d9:bf:b9:19:b9:2e:d4:3e:c8:
                    58:60:57:0f:be:52:9e:8e:24:da:ce:2c:fb:06:8a:
                    15:b9:1f:e7:ee:b6:e4:71:12:01:08:c1:1b:51:ca:
                    2a:dc:44:c5:6f:2f:c3:9b:76:01:d7:ab:3f:1f:fa:
                    5a:d2:90:56:6f:3f:08:c7:2c:c8:21:dc:11:c7:5c:
                    22:5f:a9:c3:5f:aa:e0:07:0a:7b:dd:2b:e7:0d:99:
                    d3:a0:e8:21:e4:99:5e:86:db:0f:83:e6:84:95:90:
                    80:6f:ac:ef:99:d0:e7:46:e3:03:cc:3f:d4:fc:a2:
                    06:83:40:a9:86:c3:8e:e7:00:5c:41:06:ff:31:d6:
                    cf:05:5b:70:14:ae:82:c6:8a:13:d9:20:6b:dc:92:
                    7e:f5:f6:22:8c:b7:3d:d0:06:9c:8c:5b:eb:bd:cf:
                    02:a2:33:7f:ab:f8:d9:a5:6f:b0:d3:80:5c:58:da:
                    64:f3:6f:74:e8:02:50:0b:77:83:a6:66:46:ed:68:
                    c8:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:6D:49:05:44:50:08:23:34:A9:45:DA:27:C8:F7:D4:E4:C9:DB:18
            X509v3 Authority Key Identifier:
                keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:a2:b0:67:34:fc:1f:7f:89:38:fc:a0:99:53:33:27:42:ed:
         18:b1:e0:c1:c3:3a:99:be:23:60:02:7d:6c:6f:7c:84:d2:a2:
         eb:d8:f5:65:69:ba:f7:28:75:f4:28:c4:11:75:ff:e0:c9:f8:
         d0:f6:9a:b6:c3:ab:a2:58:86:59:cb:e4:18:50:a3:e2:72:54:
         e1:47:d1:9d:44:d6:43:18:19:79:6d:20:c7:14:f4:7b:fa:5f:
         9d:67:95:35:f9:de:9c:de:14:98:75:f0:57:e1:7c:d4:04:90:
         5f:7d:a8:1f:ec:24:0f:e6:c5:78:18:a7:a6:82:d5:8f:2f:f2:
         42:5b:58:df:64:05:52:d5:20:fa:95:a3:0a:75:cd:08:ca:38:
         42:cc:43:b6:44:fe:cd:e4:10:72:55:c3:de:23:f7:d1:1d:83:
         52:58:5b:bf:94:f9:0c:6b:11:72:a6:5a:1d:e2:3e:7e:7a:f2:
         2b:28:3d:95:41:26:d0:43:71:4a:74:40:79:b2:39:c4:05:d4:
         be:29:43:98:57:e3:00:d7:60:17:e7:d9:38:45:1e:0a:64:47:
         b1:2f:6e:ab:90:b5:ff:8a:f6:ca:57:e6:52:05:8b:1c:44:c4:
         eb:e4:dc:ca:b5:2f:b1:60:49:62:95:14:c5:15:62:e2:39:3f:
         6c:0d:f0:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiD+mN7rNNcVVbbM/CB8sL1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDk2MjAzNWM1ZTk1MTAxM2NhMDY3MGNhNTY5ZTc5Zjhk
NjNjMTUwHhcNMjUwODA3MTAwMTIxWhcNMjUwODA4MTAwMTIxWjAzMTEwLwYDVQQD
EyhmNTZkNDkwNTQ0NTAwODIzMzRhOTQ1ZGEyN2M4ZjdkNGU0YzlkYjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutBikICfmq9AkrBpzrKTFfvDiKC8
4TD6j1ZX2mfbi5iOfD8Te6v1iLIPJZY0aUVa8Tvij3gT1j0joo2KGXdqxSPZv7kZ
uS7UPshYYFcPvlKejiTaziz7BooVuR/n7rbkcRIBCMEbUcoq3ETFby/Dm3YB16s/
H/pa0pBWbz8IxyzIIdwRx1wiX6nDX6rgBwp73SvnDZnToOgh5JlehtsPg+aElZCA
b6zvmdDnRuMDzD/U/KIGg0CphsOO5wBcQQb/MdbPBVtwFK6CxooT2SBr3JJ+9fYi
jLc90AacjFvrvc8CojN/q/jZpW+w04BcWNpk82906AJQC3eDpmZG7WjILQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPVtSQVEUAgjNKlF2ifI99TkydsYMB8GA1UdIwQY
MBaAFNUJYgNcXpUQE8oGcMpWnnn41jwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTIt
MDU0YTM2MzExNWY1LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTItMDU0YTM2MzExNWY1
LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoaKwZzT8
H3+JOPygmVMzJ0LtGLHgwcM6mb4jYAJ9bG98hNKi69j1ZWm69yh19CjEEXX/4Mn4
0PaatsOroliGWcvkGFCj4nJU4UfRnUTWQxgZeW0gxxT0e/pfnWeVNfnenN4UmHXw
V+F81ASQX32oH+wkD+bFeBinpoLVjy/yQltY32QFUtUg+pWjCnXNCMo4QsxDtkT+
zeQQclXD3iP30R2DUlhbv5T5DGsRcqZaHeI+fnryKyg9lUEm0ENxSnRAebI5xAXU
vilDmFfjANdgF+fZOEUeCmRHsS9uq5C1/4r2ylfmUgWLHETE6+TcyrUvsWBJYpUU
xRVi4jk/bA3wgA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 20:15:46 2025 by rpki-client