Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File:                     xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier:          Neho2PlqFw5alrgvLr5T5KE/+vKquWlooz/gczSuNMQ=
Subject key identifier:   4B:CB:A7:09:86:68:CA:FE:34:77:62:D9:6C:7B:22:F1:0B:FD:FE:2D
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer:       /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial:       01987A896E6B6C4CD77F0602D6737F6C1E19
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number:          0A52
Signing time:             Tue 05 Aug 2025 14:01:23 +0000
Manifest this update:     Tue 05 Aug 2025 14:01:23 +0000
Manifest next update:     Wed 06 Aug 2025 14:01:23 +0000
Files and hashes:         1: IzmeYXYlO_xmlW74WeQyL7gffpE.roa (hash: Z5XX/V/bAHCE8fRhzNUzhUtEMOMQ14B1YoCinHSL1lM=)
                          2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: DkjBvb9kcPxpIlkaqzBat+0jw9slZqG6qi8vACbQh+A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 14:01:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7a:89:6e:6b:6c:4c:d7:7f:06:02:d6:73:7f:6c:1e:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
        Validity
            Not Before: Aug  5 14:01:23 2025 GMT
            Not After : Aug  6 14:01:23 2025 GMT
        Subject: CN=4bcba7098668cafe347762d96c7b22f10bfdfe2d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:cc:b0:d6:3e:00:e3:47:d1:35:92:d4:78:9a:
                    10:8b:f5:b0:27:8c:f3:ca:09:49:36:85:f9:7d:2d:
                    33:11:f6:eb:f3:3b:09:4b:9b:43:ad:89:77:5f:9f:
                    0c:0a:94:e1:3f:d1:e9:c2:12:93:54:57:08:18:3c:
                    4c:3f:28:08:96:76:1f:f1:70:f8:d2:fa:2c:34:d6:
                    2c:0d:f0:e5:68:ee:8d:f5:70:14:80:37:81:b2:cc:
                    b5:cf:de:49:fe:f5:3f:80:1b:39:28:e4:df:92:a1:
                    a9:b3:90:d7:9e:ad:4c:c0:dc:a6:3b:df:5d:c7:e4:
                    7f:88:3d:ae:60:af:57:4a:2b:77:b3:ce:81:41:aa:
                    73:a8:b4:ad:ff:ba:50:64:fb:0e:af:b1:bc:b5:50:
                    d2:66:69:6d:c0:77:0b:2a:16:3e:6e:e3:5e:66:54:
                    2a:06:1d:9c:45:d9:80:56:13:79:59:2b:e8:f4:c4:
                    73:78:b3:39:21:0d:7f:66:e3:95:89:d6:62:42:d8:
                    00:21:27:4b:81:2c:6b:eb:4c:2e:59:2c:5a:1d:55:
                    f9:bc:b7:65:b5:d7:c3:a4:3f:a3:58:45:d0:df:f0:
                    fe:e7:22:cc:78:91:bd:35:54:92:f4:90:bd:2c:1c:
                    b5:c6:b4:ef:37:37:8f:d6:d9:0a:bb:b2:47:55:29:
                    4a:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:CB:A7:09:86:68:CA:FE:34:77:62:D9:6C:7B:22:F1:0B:FD:FE:2D
            X509v3 Authority Key Identifier:
                keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:3f:fb:ee:6c:a3:53:97:6b:c0:e8:ec:76:d2:9e:df:fa:57:
         64:69:ea:41:88:13:41:ef:3c:37:f1:6d:a3:b3:b5:da:d1:38:
         c8:e9:1e:f7:29:57:00:5b:ad:ae:85:84:78:43:37:1b:7f:18:
         62:b4:05:4b:96:51:0b:b7:08:3f:e4:db:d8:a5:1e:04:2b:66:
         7b:eb:e1:1e:d9:d9:42:cd:fe:ed:88:f8:29:48:39:b0:bd:8e:
         4e:e7:c6:70:60:25:29:a0:c9:64:c0:96:92:b8:e0:45:33:c1:
         d4:84:2a:92:a2:78:ab:a8:b5:ef:59:e9:48:f5:53:a8:d9:44:
         a1:e8:1a:55:3c:ab:b7:1d:c9:27:ec:ea:d9:2a:64:cc:c0:16:
         9a:22:8a:b2:11:f0:3c:79:9b:31:bd:e8:19:11:e7:75:fd:df:
         6d:0b:d7:ce:64:60:7e:61:62:af:9e:58:11:4f:ad:f5:cd:d6:
         79:c7:39:78:ff:e6:44:3b:68:06:da:c1:4c:ea:20:a9:6d:c8:
         7e:b6:48:61:87:b8:7e:47:cc:ea:4a:d8:02:9a:d5:36:50:30:
         43:2c:ab:29:1b:48:72:9a:d7:13:c1:72:9f:4c:95:d0:63:26:
         fd:61:59:05:8d:4f:66:e1:8d:86:75:f5:b5:7c:93:b2:87:52:
         ad:30:6b:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6iW5rbEzXfwYC1nN/bB4ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YmZhNzFhNTExM2ZlZDgyNDY0Nzc2YzE0MzcxNTE0Yzky
MThlZjUwHhcNMjUwODA1MTQwMTIzWhcNMjUwODA2MTQwMTIzWjAzMTEwLwYDVQQD
Eyg0YmNiYTcwOTg2NjhjYWZlMzQ3NzYyZDk2YzdiMjJmMTBiZmRmZTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssyw1j4A40fRNZLUeJoQi/WwJ4zz
yglJNoX5fS0zEfbr8zsJS5tDrYl3X58MCpThP9HpwhKTVFcIGDxMPygIlnYf8XD4
0vosNNYsDfDlaO6N9XAUgDeBssy1z95J/vU/gBs5KOTfkqGps5DXnq1MwNymO99d
x+R/iD2uYK9XSit3s86BQapzqLSt/7pQZPsOr7G8tVDSZmltwHcLKhY+buNeZlQq
Bh2cRdmAVhN5WSvo9MRzeLM5IQ1/ZuOVidZiQtgAISdLgSxr60wuWSxaHVX5vLdl
tdfDpD+jWEXQ3/D+5yLMeJG9NVSS9JC9LBy1xrTvNzeP1tkKu7JHVSlK+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEvLpwmGaMr+NHdi2Wx7IvEL/f4tMB8GA1UdIwQY
MBaAFMW/pxpRE/7YJGR3bBQ3FRTJIY71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGItbkdsRVRfdGdrWkhkc0ZEY1ZGTWtoanZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC82N2M4ZmItMDI1Ny00ZDYwLWEwZGYt
NmZjZTAzMzI1YjNmLzEveGItbkdsRVRfdGdrWkhkc0ZEY1ZGTWtoanZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC82N2M4ZmItMDI1Ny00ZDYwLWEwZGYtNmZjZTAzMzI1YjNm
LzEveGItbkdsRVRfdGdrWkhkc0ZEY1ZGTWtoanZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALj/77myj
U5drwOjsdtKe3/pXZGnqQYgTQe88N/Fto7O12tE4yOke9ylXAFutroWEeEM3G38Y
YrQFS5ZRC7cIP+Tb2KUeBCtme+vhHtnZQs3+7Yj4KUg5sL2OTufGcGAlKaDJZMCW
krjgRTPB1IQqkqJ4q6i171npSPVTqNlEoegaVTyrtx3JJ+zq2SpkzMAWmiKKshHw
PHmbMb3oGRHndf3fbQvXzmRgfmFir55YEU+t9c3Wecc5eP/mRDtoBtrBTOogqW3I
frZIYYe4fkfM6krYAprVNlAwQyyrKRtIcprXE8Fyn0yV0GMm/WFZBY1PZuGNhnX1
tXyTsodSrTBrBA==
-----END CERTIFICATE-----
Generated at Tue Aug 5 23:10:13 2025 by rpki-client