Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File:                     A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier:          kCqW0pt9rHXe9ijcc3oNaKCQpzIclHfVcNIMaF3NsCs=
Subject key identifier:   D5:10:83:93:6A:87:EF:E8:10:6C:2C:F1:18:A3:3F:A5:B1:30:5E:55
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer:       /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial:       01988B7D31B813981B184F6245C261B79ED7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number:          0856
Signing time:             Fri 08 Aug 2025 21:01:34 +0000
Manifest this update:     Fri 08 Aug 2025 21:01:34 +0000
Manifest next update:     Sat 09 Aug 2025 21:01:34 +0000
Files and hashes:         1: 2v75CPULcI9CQTgUgKA7wOOjUHs.roa (hash: 4skO2m890CCoH5bzrMskMd9FJwnSr2evwgk4W1zKGP4=)
                          2: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: aohFLPKvcj8bRl/GJ3tLSjAipasFgsc1mvYy+wn/pBI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:7d:31:b8:13:98:1b:18:4f:62:45:c2:61:b7:9e:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
        Validity
            Not Before: Aug  8 21:01:34 2025 GMT
            Not After : Aug  9 21:01:34 2025 GMT
        Subject: CN=d51083936a87efe8106c2cf118a33fa5b1305e55
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ca:40:5f:be:ad:6f:a7:68:45:de:16:6c:f6:
                    34:5d:ba:72:9b:a4:da:21:6e:6b:10:97:29:4b:93:
                    95:85:d3:35:e9:25:90:c3:d1:31:c3:66:a8:a5:59:
                    0b:2e:a6:d9:fb:78:e3:ff:0b:f3:5d:fb:24:ae:49:
                    08:da:5b:14:7c:4c:de:7a:56:a3:7a:0f:5f:d7:e5:
                    73:de:82:34:26:9f:58:37:7a:48:f8:75:2d:43:b5:
                    dc:75:19:ee:8d:bd:6f:ad:15:19:9c:14:32:c0:88:
                    07:20:bc:33:67:d2:2e:62:f3:b3:49:4d:c6:3d:df:
                    8f:07:9f:b3:5a:39:23:22:a6:4d:fa:6f:c0:3c:8c:
                    22:78:60:6c:22:4e:84:e4:1f:04:68:26:c2:ea:a5:
                    0f:67:6e:d6:f7:b1:b0:d7:27:16:dd:31:6d:0e:7d:
                    5d:8c:dc:b4:01:41:aa:27:dd:11:ac:f6:a3:b9:b5:
                    63:fa:5b:7c:79:e8:f3:2a:86:f7:82:46:be:2b:97:
                    1f:e9:74:7b:b1:91:ec:97:47:b2:2c:0d:4d:69:8e:
                    c3:7d:f0:4c:44:d1:08:4e:1d:b7:b3:1c:3a:a0:13:
                    f2:1f:bc:4a:ab:96:f2:d9:80:c5:e7:0a:2b:ff:60:
                    1e:72:62:0c:e7:bb:ef:54:15:43:2b:3c:6b:3f:46:
                    f6:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:10:83:93:6A:87:EF:E8:10:6C:2C:F1:18:A3:3F:A5:B1:30:5E:55
            X509v3 Authority Key Identifier:
                keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:50:eb:3a:9f:2b:96:33:8c:21:82:0f:2f:43:b6:83:48:88:
         1d:b7:df:49:55:3a:9a:19:88:a2:a7:69:66:24:06:46:9b:a8:
         96:48:f4:08:53:60:cf:ea:6f:00:c6:63:5b:98:07:e0:23:f5:
         e0:68:fc:f8:33:23:85:e3:39:75:fc:d3:52:3d:f9:51:59:3e:
         8b:12:d7:a2:3d:1f:d5:f5:00:9c:c6:90:40:42:12:ce:81:0b:
         6d:ff:35:6f:75:ff:43:53:0c:78:d5:a8:f4:44:4a:ea:42:2b:
         c5:b2:db:0a:02:aa:ff:c2:a6:72:79:90:01:6b:e4:83:24:91:
         07:80:7d:73:c1:40:b8:1c:00:cb:d0:7e:30:5e:4d:71:ec:8a:
         8d:68:0e:44:e8:11:c7:f5:c3:3f:fc:53:c3:6f:f8:4a:94:a9:
         a2:22:a2:45:79:58:e6:ca:6e:de:58:de:af:b3:e5:0f:77:ea:
         06:c0:87:96:48:e8:67:0e:a9:e4:6b:11:2f:e0:89:9d:01:0d:
         d7:75:9c:8a:1a:07:a7:b2:6d:46:7c:2c:fa:20:55:53:c8:57:
         2e:27:d8:b2:8f:16:71:32:7d:2b:43:96:77:0d:09:8a:69:2c:
         bd:5f:1b:a6:32:02:f0:2f:ee:48:64:d6:73:f3:1e:c9:c8:e0:
         1b:7b:9a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:52:42 2025 by rpki-client