Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
File:                     7qq8oRa05zqZRKuXAs-YZleANYA.mft (raw, json)
Hash identifier:          LJy8f0vRfEE9hbhLoOdtFQIqrZwW6g+cDzVSfOseYOE=
Subject key identifier:   1F:72:8D:05:1E:5F:83:E6:2D:9B:17:B9:EE:72:84:55:77:B6:3C:F0
Authority key identifier: EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
Certificate issuer:       /CN=eeaabca116b4e73a9944ab9702cf986657803580
Certificate serial:       01987A88E0A06C4274F658C530F9CC857EEB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
Manifest number:          0263
Signing time:             Tue 05 Aug 2025 14:00:47 +0000
Manifest this update:     Tue 05 Aug 2025 14:00:47 +0000
Manifest next update:     Wed 06 Aug 2025 14:00:47 +0000
Files and hashes:         1: 7qq8oRa05zqZRKuXAs-YZleANYA.crl (hash: MLC9vH44cN+EF0OQRg2DXFswhH55HRbZ2yuBQiLwyjY=)
                          2: 87MujmzYjqiHmvGtUQfVum9xgYI.roa (hash: wh9UFynd+k4p6PBt8Z51e5f4u9WZiYuFkQCOx8EtepA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 14:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7a:88:e0:a0:6c:42:74:f6:58:c5:30:f9:cc:85:7e:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=eeaabca116b4e73a9944ab9702cf986657803580
        Validity
            Not Before: Aug  5 14:00:47 2025 GMT
            Not After : Aug  6 14:00:47 2025 GMT
        Subject: CN=1f728d051e5f83e62d9b17b9ee72845577b63cf0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:c1:eb:c1:97:c8:de:65:66:76:31:a7:11:fc:
                    21:d1:b4:c9:99:31:4b:e7:e2:7e:71:07:cf:45:a0:
                    89:be:6f:17:77:fc:91:41:29:38:47:ef:d7:58:12:
                    9b:f1:c6:9f:a4:5d:0f:fe:bf:0f:c8:46:45:46:80:
                    1a:cf:29:0f:3a:a5:9c:52:f9:a5:f8:33:bf:be:ec:
                    e5:b7:08:14:ec:ae:57:0b:41:54:3f:b2:8b:10:d8:
                    b1:fe:d1:ee:3c:f1:50:c0:55:91:83:a9:e5:10:c6:
                    02:97:6f:53:a1:bb:fe:b8:8a:e0:92:25:e6:74:dc:
                    7c:a6:5f:02:ed:18:42:68:a9:10:ba:61:c2:43:9c:
                    37:52:bd:db:5a:18:03:45:25:2a:fd:d4:a2:cf:6d:
                    55:26:79:2a:e3:5a:31:75:00:6b:82:15:2a:af:e3:
                    af:2d:5a:e4:ff:71:d3:8a:d0:33:6d:4e:1e:5b:6d:
                    f7:b7:e7:ac:22:c6:bd:67:4e:13:b8:9f:fa:71:23:
                    a6:33:28:e4:3a:21:84:25:08:25:ec:d0:6d:33:57:
                    54:6a:8d:d0:95:51:f3:e0:68:16:89:cd:04:ae:b4:
                    a2:a4:94:88:d5:e0:f6:17:84:be:e6:f8:c5:d5:48:
                    0a:f5:39:46:8b:e1:53:6f:ae:ea:2d:be:91:0b:7d:
                    f2:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:72:8D:05:1E:5F:83:E6:2D:9B:17:B9:EE:72:84:55:77:B6:3C:F0
            X509v3 Authority Key Identifier:
                keyid:EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:b8:e0:5f:0a:c7:86:f0:0d:4b:aa:03:d4:12:1d:ef:59:30:
         a8:3a:58:7b:e7:17:65:f0:72:8e:89:f7:0e:be:f0:95:84:28:
         32:6b:64:d0:60:e9:85:da:20:d6:41:22:cf:f5:0f:bc:c8:c4:
         a2:65:22:52:92:e9:c5:fc:fd:ae:fc:8a:f3:e3:72:e2:68:d9:
         53:36:43:02:1c:32:68:b7:b9:c7:c4:b5:22:7d:30:37:b8:fd:
         95:1c:0c:20:06:4c:b8:72:c4:93:9e:4c:b7:cf:4c:b9:ae:91:
         43:64:32:77:d2:44:1a:9a:61:9f:3b:ed:fe:2a:2a:96:d0:ca:
         d0:f7:61:be:64:a3:c4:d0:e1:45:3a:20:a0:69:0a:f0:19:33:
         19:d5:d3:f7:9a:ba:3e:23:a8:88:03:87:c5:7e:64:d1:db:ee:
         87:b5:a4:f3:03:69:ca:cf:61:4b:88:01:52:d0:69:62:93:67:
         5e:1d:3f:2d:4f:c0:8b:f4:75:fa:bf:31:5f:3a:3e:73:23:cc:
         67:5d:8c:cf:df:3c:8e:0a:14:b7:4a:7e:b5:84:59:ea:f0:74:
         e3:02:12:88:7f:21:59:15:bf:05:50:1a:d3:0c:81:a5:c8:c1:
         f9:87:e1:a3:76:94:46:ae:f8:9e:57:26:f7:66:e7:a5:4a:3e:
         4e:ef:04:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:06:20 2025 by rpki-client