Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
File:                     KMID1l3y1lvbzzyINELdq1WjvN4.mft (raw, json)
Hash identifier:          ijwv/hcOUP4nCvuYHcUyMLnwVbesJmT49smJfnutDFA=
Subject key identifier:   60:C8:98:28:01:F8:B7:A5:9F:1D:65:A7:CF:C1:5A:B1:A0:88:17:89
Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
Certificate issuer:       /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Certificate serial:       01988B4596ADFB889A94194ECE0E357D1568
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
Manifest number:          0C11
Signing time:             Fri 08 Aug 2025 20:00:50 +0000
Manifest this update:     Fri 08 Aug 2025 20:00:50 +0000
Manifest next update:     Sat 09 Aug 2025 20:00:50 +0000
Files and hashes:         1: KMID1l3y1lvbzzyINELdq1WjvN4.crl (hash: 82f4le4Z5W5l1Mlgy5ugL9zs7N7JxWZ7vPpHwY9skLY=)
                          2: eEe-w2donDCxX-tAzaEpFb0UtVY.roa (hash: g2d5FELl0EWl1pKF09WRuqqNzRt0N8/ZzyiwDHce4Xk=)
                          3: kA_OSzYdIA2vmO2YYor5kHVNHTQ.roa (hash: na+fNS4+KPnZVKtvI9VPkmEDxvmlZJBhohUxDwUJWbE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:45:96:ad:fb:88:9a:94:19:4e:ce:0e:35:7d:15:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
        Validity
            Not Before: Aug  8 20:00:50 2025 GMT
            Not After : Aug  9 20:00:50 2025 GMT
        Subject: CN=60c8982801f8b7a59f1d65a7cfc15ab1a0881789
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:19:a7:59:b4:83:84:e0:83:3a:88:a8:cd:0a:
                    d6:5a:b7:b8:e0:8e:32:19:b8:1c:00:73:21:de:84:
                    ec:a1:41:1b:83:7f:81:65:fe:0e:2c:1d:23:db:2e:
                    b7:a5:29:3e:ab:0e:36:76:30:fd:e1:04:5f:a7:5a:
                    f6:cf:84:ff:1c:ad:74:16:d5:4a:22:a3:99:85:ff:
                    e1:f7:f7:f4:a3:42:d9:f1:28:9d:18:65:0e:5a:5d:
                    59:95:58:ab:3e:4c:0d:7e:be:08:9d:16:ca:8a:73:
                    cd:ed:93:84:93:d2:ee:f8:1b:a7:66:44:3a:43:31:
                    50:e2:ec:c4:70:fe:0f:89:e2:18:c6:b5:ae:e4:5d:
                    06:1b:32:a6:5a:41:ae:0c:c4:e5:20:07:df:da:39:
                    69:48:ba:9f:d1:55:b9:50:b6:0f:bd:26:44:db:65:
                    bf:3f:90:52:dc:cb:fd:87:a8:a2:c7:20:43:48:49:
                    bc:6f:71:8b:bc:17:c5:8e:d1:1f:7d:24:7f:44:08:
                    02:17:f7:4f:2b:bc:db:e3:1d:4b:df:74:6a:2c:98:
                    f9:cd:34:d0:c2:c1:ab:46:df:5e:42:19:f9:6e:91:
                    80:1c:25:f0:42:f6:34:9c:ba:66:68:c0:bd:44:7a:
                    10:46:74:5d:d2:48:39:d3:a7:03:90:6b:cb:73:18:
                    59:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:C8:98:28:01:F8:B7:A5:9F:1D:65:A7:CF:C1:5A:B1:A0:88:17:89
            X509v3 Authority Key Identifier:
                keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:ad:2c:b2:ca:92:49:35:12:fa:cd:2d:7a:d6:60:85:d6:24:
         53:83:03:18:cd:74:4d:83:cd:37:fb:9c:d1:ed:12:19:34:dd:
         42:19:6c:df:83:6d:36:cf:af:01:8f:d3:21:d8:d8:c0:8f:f8:
         33:fb:19:3d:27:4f:3a:d4:dd:c8:2e:7e:02:0d:f1:db:57:6a:
         8f:be:43:37:34:ba:70:52:14:95:52:9c:0c:63:08:5b:88:1b:
         8a:f5:92:be:20:a6:fe:91:71:fd:ac:61:28:55:0b:f8:59:a3:
         37:60:45:9f:ac:72:b6:60:d8:e0:ef:9d:34:74:c8:01:18:34:
         e0:c1:2b:8d:e7:ff:a6:fa:fa:2c:d9:9e:0b:ce:ed:9d:fa:13:
         1e:c4:6a:a5:be:22:d1:fa:e8:8e:52:18:5d:5f:79:01:ae:3c:
         a4:90:0c:ec:e9:c7:8a:26:2d:2c:68:d6:54:a2:bd:c7:99:97:
         63:3e:07:1b:f6:1e:99:d8:28:13:26:60:77:21:e0:25:57:a1:
         06:56:53:dd:00:c2:ee:fd:a0:64:66:8b:aa:17:fe:c0:95:10:
         50:ab:c4:72:d0:af:ba:bf:92:e1:16:b8:a8:e1:88:75:7f:64:
         c0:e3:38:59:8a:04:48:03:1c:42:f2:74:bb:e7:02:19:52:75:
         45:8c:8b:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLRZat+4ialBlOzg41fRVoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YzIwM2Q2NWRmMmQ2NWJkYmNmM2M4ODM0NDJkZGFiNTVh
M2JjZGUwHhcNMjUwODA4MjAwMDUwWhcNMjUwODA5MjAwMDUwWjAzMTEwLwYDVQQD
Eyg2MGM4OTgyODAxZjhiN2E1OWYxZDY1YTdjZmMxNWFiMWEwODgxNzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxmnWbSDhOCDOoiozQrWWre44I4y
GbgcAHMh3oTsoUEbg3+BZf4OLB0j2y63pSk+qw42djD94QRfp1r2z4T/HK10FtVK
IqOZhf/h9/f0o0LZ8SidGGUOWl1ZlVirPkwNfr4InRbKinPN7ZOEk9Lu+BunZkQ6
QzFQ4uzEcP4PieIYxrWu5F0GGzKmWkGuDMTlIAff2jlpSLqf0VW5ULYPvSZE22W/
P5BS3Mv9h6iixyBDSEm8b3GLvBfFjtEffSR/RAgCF/dPK7zb4x1L33RqLJj5zTTQ
wsGrRt9eQhn5bpGAHCXwQvY0nLpmaMC9RHoQRnRd0kg506cDkGvLcxhZCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGDImCgB+Lelnx1lp8/BWrGgiBeJMB8GA1UdIwQY
MBaAFCjCA9Zd8tZb2888iDRC3atVo7zeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmIt
ODg1OTIwNDMwMjZmLzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmItODg1OTIwNDMwMjZm
LzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfq0sssqS
STUS+s0tetZghdYkU4MDGM10TYPNN/uc0e0SGTTdQhls34NtNs+vAY/TIdjYwI/4
M/sZPSdPOtTdyC5+Ag3x21dqj75DNzS6cFIUlVKcDGMIW4gbivWSviCm/pFx/axh
KFUL+FmjN2BFn6xytmDY4O+dNHTIARg04MErjef/pvr6LNmeC87tnfoTHsRqpb4i
0frojlIYXV95Aa48pJAM7OnHiiYtLGjWVKK9x5mXYz4HG/YemdgoEyZgdyHgJVeh
BlZT3QDC7v2gZGaLqhf+wJUQUKvEctCvur+S4Ra4qOGIdX9kwOM4WYoESAMcQvJ0
u+cCGVJ1RYyLoA==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:37 2025 by rpki-client