Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
File:                     2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json)
Hash identifier:          kh/fqfXENDChpXM7wglAqrkZoDXK0sIwOF8msxC+bQc=
Subject key identifier:   21:89:42:0B:ED:5C:CE:C2:37:7B:AB:FB:73:65:10:1F:3C:E7:F0:83
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Certificate issuer:       /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial:       019875D1233AAA399F92262B98734564DEF1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
Manifest number:          1293
Signing time:             Mon 04 Aug 2025 16:01:36 +0000
Manifest this update:     Mon 04 Aug 2025 16:01:36 +0000
Manifest next update:     Tue 05 Aug 2025 16:01:36 +0000
Files and hashes:         1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: kffDjYRxG70zVuMS+ulPQpKoTTiC2ihdmvZVu9btBaI=)
                          2: Jfj9dSZw93m0LgWLC-5cHZtQPbI.roa (hash: oiCigciFJOGI1kCvszmmuaaLh0TPamcLgyxjc9J3FC4=)
                          3: M_Z-VhDZc2uLCtQfe10yHlwcSGg.roa (hash: AB/qLdUMcV196Xzj3vZ4mE4S8cay+jmGliBEUDalnEc=)
                          4: f_1g2Z_O5AiL3yW6mcyUEsXnVQ8.roa (hash: d0LuTF/iwiSUpGBh2NLV29ONLEQ7pXLVwvq/UHuDiNA=)
                          5: m7iDzlCGf343P9LUMQ7CzCNMpq8.roa (hash: 25V4vL1hxRuT+EiKGjaMOxdCAH/Rao4IMyItMWn6Kn4=)
                          6: wuWM0Bqfn2DOTXAQfUUvKBidXpo.roa (hash: m6fPdbSddi0hJ1qwurB1jCC8tnof8GXCRJUIPf5vVWk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:75:d1:23:3a:aa:39:9f:92:26:2b:98:73:45:64:de:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
        Validity
            Not Before: Aug  4 16:01:36 2025 GMT
            Not After : Aug  5 16:01:36 2025 GMT
        Subject: CN=2189420bed5ccec2377babfb7365101f3ce7f083
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:86:66:58:c1:b4:a0:56:c2:2a:50:c8:d4:36:
                    68:ed:1c:50:62:ba:38:8a:b6:a2:e3:b5:fb:f0:37:
                    7f:3a:98:1f:f3:10:39:0a:a1:d7:64:44:4e:0d:39:
                    a5:40:28:d6:27:87:93:5b:e6:83:f5:72:c2:18:52:
                    b6:72:6e:ef:56:9d:30:ed:77:27:80:75:e2:ce:75:
                    7c:b5:3a:be:98:ee:0b:80:14:ab:dd:e0:de:a1:45:
                    cb:03:36:c0:e6:3d:e8:b2:92:a1:c6:6d:66:a4:2d:
                    45:8c:2a:c8:47:5f:9e:de:0c:92:08:ce:22:b5:23:
                    0b:db:98:0b:9e:cc:56:52:1b:9e:74:17:ba:4d:2b:
                    36:c8:8a:ed:5a:c9:0f:a4:c6:e6:c9:a1:c1:dc:7c:
                    18:8b:66:4b:7f:22:f6:81:a6:c9:e9:95:74:7a:0f:
                    fa:5c:5f:54:f0:2b:b0:d9:39:dc:c9:bb:8c:33:30:
                    2c:da:d3:3a:43:cd:01:08:3b:15:44:1a:e9:f6:f9:
                    7c:9d:6f:85:d2:bf:a4:b2:6a:cf:2c:e2:ee:45:0e:
                    73:fa:30:17:54:54:a9:d2:2a:39:2d:eb:f3:b0:7a:
                    a9:b4:92:6a:27:fe:7d:a0:d7:86:93:67:9e:f1:5c:
                    b5:8d:79:f7:95:f2:34:e4:bc:37:e9:04:4c:2f:2f:
                    31:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:89:42:0B:ED:5C:CE:C2:37:7B:AB:FB:73:65:10:1F:3C:E7:F0:83
            X509v3 Authority Key Identifier:
                keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:f2:7a:97:94:6d:ff:1e:a8:66:c3:ca:90:0f:f5:b9:ba:4a:
         f5:aa:3c:fd:d1:e7:c4:20:ea:2a:19:35:4f:1b:e7:63:93:9e:
         7f:a4:19:19:55:7c:34:09:30:fb:cd:61:1c:d0:5b:f1:98:7d:
         f8:e9:1f:03:e3:27:1d:64:d5:66:79:e0:fd:b4:f3:6c:83:5b:
         07:ae:b9:cd:63:59:c5:2a:06:65:f2:b0:f7:83:87:aa:1b:25:
         82:95:70:4d:9e:c6:fb:e0:1e:57:5b:d7:71:21:e2:43:b0:4a:
         05:d9:9e:27:a8:d6:9d:da:d0:77:ca:3c:83:c6:23:3e:40:78:
         dd:8d:28:1d:bd:ac:81:4b:74:ac:80:85:27:8d:d1:d5:c2:51:
         4c:61:ce:2d:ef:11:fb:35:c9:e1:55:e8:c3:31:42:7f:85:60:
         9f:43:0f:c7:dd:eb:69:c4:a5:b7:74:02:d3:c2:ce:97:e5:ee:
         1c:68:78:1f:16:2f:00:97:e7:a1:91:26:04:91:c8:b3:a4:49:
         89:14:90:a6:eb:ae:16:ff:a8:ea:b0:b6:19:cb:3b:89:9c:d8:
         aa:37:8c:ce:ee:f3:c5:6a:5a:fc:0e:c7:a7:31:6e:67:03:35:
         1e:5a:bd:f4:3d:8a:f7:93:d1:f9:81:8d:da:b2:94:a9:10:8b:
         51:3c:44:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh10SM6qjmfkiYrmHNFZN7xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZDYzMTU2YzE4MzZmMTZjM2I0MzBlZmZiYjcyYWM2OTkz
MmVhOWIwHhcNMjUwODA0MTYwMTM2WhcNMjUwODA1MTYwMTM2WjAzMTEwLwYDVQQD
EygyMTg5NDIwYmVkNWNjZWMyMzc3YmFiZmI3MzY1MTAxZjNjZTdmMDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYZmWMG0oFbCKlDI1DZo7RxQYro4
irai47X78Dd/Opgf8xA5CqHXZERODTmlQCjWJ4eTW+aD9XLCGFK2cm7vVp0w7Xcn
gHXiznV8tTq+mO4LgBSr3eDeoUXLAzbA5j3ospKhxm1mpC1FjCrIR1+e3gySCM4i
tSML25gLnsxWUhuedBe6TSs2yIrtWskPpMbmyaHB3HwYi2ZLfyL2gabJ6ZV0eg/6
XF9U8Cuw2TncybuMMzAs2tM6Q80BCDsVRBrp9vl8nW+F0r+ksmrPLOLuRQ5z+jAX
VFSp0io5LevzsHqptJJqJ/59oNeGk2ee8Vy1jXn3lfI05Lw36QRMLy8xbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCGJQgvtXM7CN3ur+3NlEB885/CDMB8GA1UdIwQY
MBaAFNnWMVbBg28Ww7Qw7/u3KsaZMuqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMt
ZmRhMDExZTVjOTcyLzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMtZmRhMDExZTVjOTcy
LzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU/J6l5Rt
/x6oZsPKkA/1ubpK9ao8/dHnxCDqKhk1TxvnY5Oef6QZGVV8NAkw+81hHNBb8Zh9
+OkfA+MnHWTVZnng/bTzbINbB665zWNZxSoGZfKw94OHqhslgpVwTZ7G++AeV1vX
cSHiQ7BKBdmeJ6jWndrQd8o8g8YjPkB43Y0oHb2sgUt0rICFJ43R1cJRTGHOLe8R
+zXJ4VXowzFCf4Vgn0MPx93racSlt3QC08LOl+XuHGh4HxYvAJfnoZEmBJHIs6RJ
iRSQpuuuFv+o6rC2Gcs7iZzYqjeMzu7zxWpa/A7HpzFuZwM1Hlq99D2K95PR+YGN
2rKUqRCLUTxEtA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 19:04:38 2025 by rpki-client