Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
File:                     18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json)
Hash identifier:          vUb8TH5v6y4XM2+zO1U5qthlI6NH70W7kZ7kx3d8VQQ=
Subject key identifier:   9D:D2:21:CC:AD:8B:7B:D6:8B:EF:5A:51:CA:1F:72:7B:6D:62:26:85
Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
Certificate issuer:       /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Certificate serial:       019872D01B178A1A3AF0BD59380D7F6DFB01
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
Manifest number:          0D37
Signing time:             Mon 04 Aug 2025 02:01:37 +0000
Manifest this update:     Mon 04 Aug 2025 02:01:37 +0000
Manifest next update:     Tue 05 Aug 2025 02:01:37 +0000
Files and hashes:         1: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: 1NnR3K+5AXxIzLcADQoTQhnYhqKJpYcypJoOubvQkn8=)
                          2: YtwlFDJbdeOHm-szbyMlsHvjfHo.roa (hash: JgRE5cgFBiNbrrghhM3fGudxVJeqa7P1fiqWvm5ea0Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 02:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:d0:1b:17:8a:1a:3a:f0:bd:59:38:0d:7f:6d:fb:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
        Validity
            Not Before: Aug  4 02:01:37 2025 GMT
            Not After : Aug  5 02:01:37 2025 GMT
        Subject: CN=9dd221ccad8b7bd68bef5a51ca1f727b6d622685
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:f9:49:2b:cd:32:76:16:43:71:03:c5:45:38:
                    de:82:b6:0a:2d:8b:c6:2b:f2:9e:6e:51:b8:5d:3d:
                    a0:33:50:09:43:99:dc:1c:07:05:c6:3e:6e:1b:39:
                    32:3a:e4:c1:53:4e:17:66:11:77:22:c9:9b:b5:7a:
                    a5:4e:46:14:eb:50:78:b0:ba:b7:b9:e3:67:02:59:
                    7b:15:62:f1:e1:47:67:53:73:e3:0b:ad:28:a1:1e:
                    9b:39:3f:4b:d8:20:35:5d:e7:00:2b:f5:bf:d2:7e:
                    f5:3d:cd:3c:0e:43:1c:89:5c:7f:2f:16:d4:7e:40:
                    4a:2c:cb:e8:b2:c7:71:28:84:b2:3c:86:4a:87:30:
                    ec:a1:fa:2a:c6:3d:a0:b8:06:a3:46:b2:9d:f7:12:
                    8c:be:d7:25:6f:e4:20:59:08:63:f7:ce:e3:8c:47:
                    2b:07:12:a8:d0:ce:33:61:ce:06:54:30:28:e5:19:
                    be:30:5c:ad:bf:53:57:a9:fa:c4:4f:23:2b:9a:29:
                    38:9f:a2:16:cb:10:60:0b:53:12:49:de:f6:e3:aa:
                    37:17:dd:c9:b3:d8:c9:9e:45:34:d1:38:de:9c:77:
                    9d:47:9a:dc:a3:ea:d2:19:d3:dd:d4:ec:de:9d:d4:
                    7d:e2:8f:ec:52:51:cd:2a:7b:2c:99:29:7f:18:f0:
                    17:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:D2:21:CC:AD:8B:7B:D6:8B:EF:5A:51:CA:1F:72:7B:6D:62:26:85
            X509v3 Authority Key Identifier:
                keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:f2:b1:b3:79:64:3b:98:5d:4a:cb:8d:c1:e5:db:09:de:30:
         87:ba:4c:c2:4f:ab:b2:83:82:e3:08:bb:dc:bb:1e:fe:c9:98:
         b2:10:09:13:7c:fc:2e:91:4d:29:e7:65:53:38:7b:48:41:30:
         44:f1:b5:3b:eb:84:7f:f4:bd:92:68:9c:8e:41:7a:fc:18:8f:
         58:df:10:5c:db:2f:ef:28:49:1e:34:05:d5:23:42:41:50:d9:
         c0:35:8d:53:a4:d3:b7:4f:9d:72:e6:1a:47:cb:dc:00:5f:40:
         03:4d:d2:65:09:90:f5:6c:b6:82:30:bd:53:04:93:c0:89:02:
         c8:c6:30:f7:7d:d0:37:50:bb:1e:f3:46:49:11:07:10:81:4e:
         2e:eb:69:0c:40:f0:1e:a3:9b:15:e9:24:79:5a:ea:8e:0d:23:
         2d:49:39:d0:12:57:1d:8d:11:24:ac:6c:6c:d9:c8:eb:88:6d:
         c6:35:64:12:25:d9:ab:0a:d7:54:1f:21:5c:f3:d2:b4:3f:7f:
         6c:1e:a6:61:61:81:73:27:65:b8:f8:74:ce:63:30:d4:47:62:
         90:f3:e4:17:94:49:a5:88:7d:23:78:c3:71:b3:bb:16:d1:b4:
         8f:ac:f1:12:35:f0:db:4c:97:d8:c5:78:e7:15:51:d1:26:6c:
         4f:46:a3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:45 2025 by rpki-client