Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
File:                     NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft (raw, json)
Hash identifier:          VNz4SvMyzmo1aNS1eFQCXZV8E1jG47TA0CSOIPVT2+Y=
Subject key identifier:   0A:91:E9:A3:5E:A0:79:4A:BA:96:5B:11:AC:20:35:F5:04:CA:C9:54
Authority key identifier: 34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76
Certificate issuer:       /CN=34803a2cf290b0bdc69addc003d564a234aa4f76
Certificate serial:       01988AA0FE78104D1EBC40B614FF1C910ECF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
Manifest number:          10B8
Signing time:             Fri 08 Aug 2025 17:01:03 +0000
Manifest this update:     Fri 08 Aug 2025 17:01:03 +0000
Manifest next update:     Sat 09 Aug 2025 17:01:03 +0000
Files and hashes:         1: JscmxGl_L2E7JnV0mfv32RHUpNw.roa (hash: 8j6EFW05T3ckFd0k6CAkZlDvS05KieVcVNbYKlWGlos=)
                          2: NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl (hash: +Ym75KWZqjJ6YWp9/zQRh4RVwGbRFsS4C7gaMfjgTEk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 17:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8a:a0:fe:78:10:4d:1e:bc:40:b6:14:ff:1c:91:0e:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=34803a2cf290b0bdc69addc003d564a234aa4f76
        Validity
            Not Before: Aug  8 17:01:03 2025 GMT
            Not After : Aug  9 17:01:03 2025 GMT
        Subject: CN=0a91e9a35ea0794aba965b11ac2035f504cac954
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:58:f8:3b:8b:ea:03:fe:7a:b6:12:a7:55:27:
                    64:94:a5:1f:ed:8f:d5:ba:9f:b9:31:2b:56:ab:70:
                    95:4e:30:80:5e:75:01:e4:3b:b6:fd:58:9c:1e:4d:
                    b3:dc:85:98:9c:1a:a8:b7:9b:e1:23:2a:ab:c3:86:
                    3a:99:c7:1e:94:ab:16:4a:f5:8f:0b:35:cb:3f:db:
                    e5:2d:7e:1f:5b:9d:30:29:fd:f2:c9:02:b6:5c:7d:
                    1a:88:1d:01:06:12:0e:43:85:34:bb:19:d2:88:49:
                    48:08:05:a2:59:b3:f3:06:ca:e1:3b:4f:1d:c4:d5:
                    5c:7e:f5:8f:2e:bf:ec:5b:59:5f:a8:5a:5d:5d:97:
                    74:d0:12:f7:28:66:96:c3:7c:66:6b:04:7c:f6:f9:
                    a5:d8:b3:32:80:62:9a:55:d2:7f:6d:71:bb:1e:d6:
                    ed:a4:c9:7a:3b:f6:30:94:ed:56:cd:e2:2d:99:81:
                    9f:5a:5b:cd:fe:92:5d:f0:43:e0:6a:c6:92:15:28:
                    6e:30:81:eb:ca:dc:53:6a:b1:6d:91:96:12:c5:b0:
                    be:e8:ef:91:11:19:54:64:8f:fc:2a:7e:d6:de:04:
                    d7:dd:3f:d3:63:66:f6:9b:b5:c4:6b:94:2d:27:fc:
                    da:78:db:21:20:93:fa:82:98:0e:09:8f:ee:dc:58:
                    3b:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:91:E9:A3:5E:A0:79:4A:BA:96:5B:11:AC:20:35:F5:04:CA:C9:54
            X509v3 Authority Key Identifier:
                keyid:34:80:3A:2C:F2:90:B0:BD:C6:9A:DD:C0:03:D5:64:A2:34:AA:4F:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/fe6234-6437-4967-ba63-85c3fa79ebc1/1/NIA6LPKQsL3Gmt3AA9VkojSqT3Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:2a:44:7f:61:fa:f2:d4:a1:53:ad:dd:d2:e9:8d:d6:d3:ca:
         60:7a:1e:68:24:fa:68:1f:b6:64:f0:22:f3:f4:f1:11:e4:4e:
         7b:e6:11:2a:73:fc:c7:ed:15:a6:43:9b:01:ab:c3:02:e0:9a:
         da:71:d6:42:44:d3:8e:7f:91:32:1b:81:8e:8c:47:56:66:d9:
         00:c2:bf:5f:5e:82:bd:52:0f:73:a8:91:16:c4:f8:65:ad:41:
         f7:5c:ca:42:fe:4a:ab:93:ac:ae:e3:41:73:16:66:da:82:49:
         4c:5c:ae:6a:c4:a6:23:f0:1c:4f:8b:d7:75:00:fd:61:dd:1a:
         ea:3b:f5:e4:b7:43:ce:0d:7d:a2:fc:df:ec:de:b3:a4:55:b0:
         55:cb:5c:5b:c8:b8:9b:f0:e9:dc:89:5f:b8:43:a8:c7:68:88:
         92:a5:e5:09:b5:78:a1:1c:b4:00:57:4e:e9:6c:9b:aa:7b:9c:
         42:99:41:12:e3:03:2d:f2:ad:25:b1:3f:91:23:fe:29:f4:cd:
         b1:1f:22:57:e4:4e:7c:e4:85:1c:f7:57:71:f6:6c:a4:cf:44:
         6c:c3:5e:dd:9c:1f:58:73:d8:90:58:ed:85:eb:ab:03:0b:85:
         2a:5c:93:60:f3:ca:58:56:e8:9d:a1:04:b7:87:f3:19:d3:48:
         8b:00:f4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:22:58 2025 by rpki-client