Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File:                     Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier:          6Ht9RxC2wmu7GwNXP0/OmtmTPioZN6/CPYz0oGIIhS8=
Subject key identifier:   46:55:A7:4D:38:28:2C:98:89:0D:60:9B:D6:56:69:FC:60:D1:71:9E
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer:       /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial:       01988BB33430533E3A97E39E56BFC106D6CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number:          1636
Signing time:             Fri 08 Aug 2025 22:00:34 +0000
Manifest this update:     Fri 08 Aug 2025 22:00:34 +0000
Manifest next update:     Sat 09 Aug 2025 22:00:34 +0000
Files and hashes:         1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=)
                          2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=)
                          3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=)
                          4: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: Rkoz5VBCQ4GclQ9LgLSVr3k3UzcHUy1RPMjYoQQUz6A=)
                          5: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=)
                          6: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:b3:34:30:53:3e:3a:97:e3:9e:56:bf:c1:06:d6:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
        Validity
            Not Before: Aug  8 22:00:34 2025 GMT
            Not After : Aug  9 22:00:34 2025 GMT
        Subject: CN=4655a74d38282c98890d609bd65669fc60d1719e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b0:c2:a8:9c:84:b5:f9:e1:66:f1:58:bc:18:
                    2d:1f:08:bc:37:5e:4e:a1:1a:93:59:c3:3f:da:70:
                    1e:6d:15:3c:31:30:96:c6:08:78:b2:fa:3d:40:27:
                    76:29:2b:d3:8a:04:57:0b:24:7e:20:3b:a8:6a:f4:
                    50:1d:00:24:42:94:80:e6:1b:62:0f:a2:48:86:fc:
                    a5:d0:48:90:6f:5a:fc:23:b1:d3:ca:81:4c:76:70:
                    90:2d:e4:a1:3b:19:1f:11:21:f7:9c:db:b5:f6:14:
                    3b:48:ee:97:79:5a:ff:0b:7f:ba:94:3e:da:41:fc:
                    eb:d6:9e:2b:e1:94:dd:15:4d:ed:f7:33:b1:79:8f:
                    3e:a8:f2:06:e9:e0:24:92:cd:12:57:25:a6:1d:3b:
                    93:23:d5:19:68:01:84:bf:f2:03:04:ba:43:59:cb:
                    16:56:e5:7e:0c:3f:79:9d:9b:eb:96:bd:22:27:ed:
                    91:e1:ad:5b:25:81:ab:69:9d:ce:da:55:0a:18:56:
                    1e:60:d6:d1:95:2e:af:c5:e8:44:89:1e:f4:ba:15:
                    34:8e:b4:c1:d6:2a:ab:52:c5:81:37:22:41:a8:ab:
                    17:4c:a1:0b:64:a9:24:2b:c1:fd:bd:c3:9c:c9:a7:
                    5a:2f:4d:74:86:de:38:3f:a8:14:24:31:ba:3b:cc:
                    03:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:55:A7:4D:38:28:2C:98:89:0D:60:9B:D6:56:69:FC:60:D1:71:9E
            X509v3 Authority Key Identifier:
                keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:54:94:80:c6:b6:52:3b:96:1f:7a:53:f5:5d:f7:36:7d:f6:
         1e:b6:c8:5b:b1:9a:cd:95:89:99:d4:1b:18:fc:73:7b:86:da:
         a1:19:b0:be:21:12:3a:d6:37:91:c1:6c:80:de:2e:56:8b:35:
         2a:fb:ee:b4:31:fb:f8:cb:0f:83:41:79:19:c7:7c:ca:21:78:
         34:d6:62:3e:f3:89:e9:74:9e:b7:8c:3e:f9:1b:39:8d:c2:dd:
         1a:67:c8:9b:2b:64:2a:8b:1d:70:56:e1:a8:df:22:1d:28:cc:
         7e:f0:6d:3f:91:1e:f0:f5:e4:64:5e:8d:96:3e:92:85:67:b5:
         08:7d:74:9e:fe:70:83:0f:34:8a:53:0b:b2:8c:12:14:cb:8a:
         93:75:c8:20:b4:55:3a:21:f8:04:e2:78:94:ec:c5:31:86:da:
         70:8f:6e:42:f3:f4:43:34:a9:37:09:c0:9c:8a:5e:b2:82:87:
         bc:b3:fa:46:20:4c:36:8f:c0:45:3e:82:b7:2e:a5:77:33:1d:
         80:48:a7:c7:c6:b9:fc:e1:e5:06:7b:73:74:4e:62:89:65:73:
         ec:e9:47:f4:1a:33:3e:80:97:a7:7a:11:26:64:b7:c1:89:51:
         44:f3:d2:d6:93:a0:55:21:8f:5d:d8:27:c9:fe:19:a5:ea:56:
         45:5d:52:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:22:12 2025 by rpki-client