Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File:                     D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier:          WA9y8tS/3XbSlLaQO25bpxH/RRWGFYH2WxmFEnbRgqE=
Subject key identifier:   8D:5E:93:30:C6:4B:AA:1F:21:EF:0F:8A:17:20:60:CB:A4:4F:4C:21
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer:       /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial:       01988B7CBA310CC7DE0E34A9A21FB6A1E5F0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number:          101E
Signing time:             Fri 08 Aug 2025 21:01:03 +0000
Manifest this update:     Fri 08 Aug 2025 21:01:03 +0000
Manifest next update:     Sat 09 Aug 2025 21:01:03 +0000
Files and hashes:         1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: tvPwnpE3H7r7heAHOsSOuG9y6oSFrQovobjTfdcmc2Q=)
                          2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:7c:ba:31:0c:c7:de:0e:34:a9:a2:1f:b6:a1:e5:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
        Validity
            Not Before: Aug  8 21:01:03 2025 GMT
            Not After : Aug  9 21:01:03 2025 GMT
        Subject: CN=8d5e9330c64baa1f21ef0f8a172060cba44f4c21
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:25:47:34:5a:1f:d3:2c:aa:c4:18:1f:db:57:
                    69:ce:be:f1:30:10:db:7a:20:c2:90:6b:c9:61:bc:
                    6b:ca:de:4c:a9:64:69:7c:36:15:a2:3f:2c:39:4b:
                    7c:de:bd:47:0b:da:1c:56:27:cf:0e:f8:28:94:7d:
                    52:7b:d3:f5:24:e9:50:13:fc:3f:b0:6d:0e:ac:7e:
                    dc:97:2e:79:07:c9:3b:59:5d:43:bb:c1:f9:82:01:
                    a0:48:72:dd:72:3d:31:62:6d:55:c0:41:80:45:e4:
                    e5:87:0a:af:60:65:61:be:6b:5b:50:7e:cc:b9:6c:
                    55:c3:8f:5f:02:c7:17:c6:ff:15:7b:d6:28:e4:cf:
                    1a:ff:5c:98:84:88:8c:c1:d6:5f:49:02:0b:30:44:
                    c2:a5:df:7a:2c:47:89:e5:93:0d:42:73:e1:04:7c:
                    f4:e6:eb:49:3b:13:c5:5e:9f:56:9f:66:f7:20:37:
                    9b:df:df:3b:a6:a1:0e:4b:25:ce:e3:1f:78:d8:ef:
                    4e:42:db:8b:f8:76:bb:9b:c2:cf:f8:3e:af:93:89:
                    49:e7:9d:cd:27:52:77:35:51:cd:33:c3:66:fe:37:
                    77:ef:b6:a4:5e:09:91:0b:f1:48:4d:a4:cb:cf:bb:
                    67:e3:2e:51:a9:54:7c:c6:6d:69:6f:e0:eb:23:72:
                    bb:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:5E:93:30:C6:4B:AA:1F:21:EF:0F:8A:17:20:60:CB:A4:4F:4C:21
            X509v3 Authority Key Identifier:
                keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:3d:63:b8:d8:26:9c:71:b9:2a:3b:06:93:fb:a7:2c:40:05:
         57:26:e5:2a:4d:31:43:2d:25:e6:65:e0:26:2c:d2:47:ab:70:
         77:30:e9:b1:bf:ec:ca:d9:35:e3:32:85:d1:5b:a6:ad:40:bd:
         13:67:84:cd:12:18:4f:24:41:1d:dc:2f:66:9e:03:34:4e:79:
         24:37:6c:f8:be:10:4e:29:8b:f0:f8:21:ff:b7:12:1a:b6:5b:
         08:fc:b1:3c:79:0e:06:4f:1c:e5:dc:6e:24:c1:4b:4c:dd:9b:
         1b:7e:b9:1b:23:0d:d4:a6:f2:96:f9:9f:de:83:5c:7f:00:43:
         f1:b7:97:d8:6f:ba:a1:ff:dd:a9:68:f0:e1:fa:2c:bf:b7:21:
         02:76:4c:09:ad:42:02:ab:96:1b:80:14:eb:83:5c:8e:d2:46:
         19:07:3b:42:b8:98:67:1a:ce:ea:09:56:b9:3f:f5:4d:1d:a8:
         b7:85:c2:a4:66:e6:c1:b0:f8:ed:86:b0:38:88:3c:5c:dc:6f:
         de:4b:e0:a5:c7:a8:6d:15:a1:0d:e9:ea:d6:9b:54:26:e8:62:
         ce:ed:01:0a:ed:25:7c:4f:7f:67:a2:88:3f:d0:18:e9:5b:02:
         42:f4:67:ec:e6:fc:77:e6:5f:fb:01:83:9f:df:60:8e:02:ba:
         1d:ca:09:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLfLoxDMfeDjSpoh+2oeXwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZGVlNzk0NGFjNGRhMzExMTI5NWQ4MWUyOWRlYmEwMGMx
NjNhOTYwHhcNMjUwODA4MjEwMTAzWhcNMjUwODA5MjEwMTAzWjAzMTEwLwYDVQQD
Eyg4ZDVlOTMzMGM2NGJhYTFmMjFlZjBmOGExNzIwNjBjYmE0NGY0YzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniVHNFof0yyqxBgf21dpzr7xMBDb
eiDCkGvJYbxryt5MqWRpfDYVoj8sOUt83r1HC9ocVifPDvgolH1Se9P1JOlQE/w/
sG0OrH7cly55B8k7WV1Du8H5ggGgSHLdcj0xYm1VwEGAReTlhwqvYGVhvmtbUH7M
uWxVw49fAscXxv8Ve9Yo5M8a/1yYhIiMwdZfSQILMETCpd96LEeJ5ZMNQnPhBHz0
5utJOxPFXp9Wn2b3IDeb3987pqEOSyXO4x942O9OQtuL+Ha7m8LP+D6vk4lJ553N
J1J3NVHNM8Nm/jd377akXgmRC/FITaTLz7tn4y5RqVR8xm1pb+DrI3K7wQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1ekzDGS6ofIe8PihcgYMukT0whMB8GA1UdIwQY
MBaAFA/e55RKxNoxESldgeKd66AMFjqWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS81NDRiZWEtZjFlYy00NjY2LTgxYzAt
NzhhNGQ2NTY5M2ZlLzEvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS81NDRiZWEtZjFlYy00NjY2LTgxYzAtNzhhNGQ2NTY5M2Zl
LzEvRDk3bmxFckUyakVSS1YyQjRwM3JvQXdXT3BZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASD1juNgm
nHG5KjsGk/unLEAFVyblKk0xQy0l5mXgJizSR6twdzDpsb/sytk14zKF0VumrUC9
E2eEzRIYTyRBHdwvZp4DNE55JDds+L4QTimL8Pgh/7cSGrZbCPyxPHkOBk8c5dxu
JMFLTN2bG365GyMN1Kbylvmf3oNcfwBD8beX2G+6of/dqWjw4fosv7chAnZMCa1C
AquWG4AU64NcjtJGGQc7QriYZxrO6glWuT/1TR2ot4XCpGbmwbD47YawOIg8XNxv
3kvgpceobRWhDenq1ptUJuhizu0BCu0lfE9/Z6KIP9AY6VsCQvRn7Ob8d+Zf+wGD
n99gjgK6HcoJjg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:22:45 2025 by rpki-client