Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File:                     pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier:          xEcr9iOTGh6tbLSSAF4W6OMBf5djtswTxBHnbxb661U=
Subject key identifier:   3C:9E:C7:B9:66:CE:AE:C2:37:BD:B1:C8:42:0A:63:3F:20:6D:82:53
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer:       /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial:       019879E3DA438296CB7775002C4E84FCDBCE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number:          161B
Signing time:             Tue 05 Aug 2025 11:00:32 +0000
Manifest this update:     Tue 05 Aug 2025 11:00:32 +0000
Manifest next update:     Wed 06 Aug 2025 11:00:32 +0000
Files and hashes:         1: BFaJClF3p4qT7dCc22lWmwjl7l0.roa (hash: 8kW6E4fmgwFFVui51mNwFwgDzJW114zoN23nienu6x8=)
                          2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: SLpKBfugsginZD1GIFdKCUbOo6Qpr5dNpy+O25t/8A0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 11:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:79:e3:da:43:82:96:cb:77:75:00:2c:4e:84:fc:db:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
        Validity
            Not Before: Aug  5 11:00:32 2025 GMT
            Not After : Aug  6 11:00:32 2025 GMT
        Subject: CN=3c9ec7b966ceaec237bdb1c8420a633f206d8253
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:3f:13:da:77:12:83:1a:22:21:bf:94:ea:05:
                    76:0e:f7:9b:47:fc:ec:05:91:6f:f6:a8:76:df:3a:
                    bd:07:d1:75:87:a8:85:ba:f2:a3:9d:6d:b0:9e:16:
                    8e:62:79:58:67:77:39:09:ac:c1:ab:ce:59:a5:77:
                    7a:77:ab:05:1b:3e:15:f5:f1:24:00:6a:81:d0:7a:
                    b1:22:5f:c5:71:eb:28:04:f8:8b:c9:4e:f5:a7:a9:
                    cf:a5:3b:6d:da:d1:5a:57:a7:5f:b0:bc:30:64:92:
                    6e:47:a2:62:ee:7e:41:84:76:5d:dd:6d:d2:1a:37:
                    76:a3:06:60:1d:e7:84:ba:34:63:d1:b4:3a:af:4c:
                    16:05:63:17:89:9b:88:fc:8a:b8:e4:a4:11:36:a1:
                    ae:cf:2a:42:58:58:03:61:75:15:07:75:3a:c0:e2:
                    cd:4a:8e:5c:c7:b9:df:c3:df:24:39:7d:65:fa:b3:
                    5d:d8:56:3f:94:dd:70:1c:28:2e:2c:d1:dd:e1:9b:
                    ce:00:46:52:21:c0:20:a4:68:b9:8b:bf:b9:95:40:
                    fd:28:87:9e:01:91:93:25:88:4e:d2:04:28:bc:d4:
                    7d:29:66:7c:e9:75:ea:19:0f:77:57:f6:f5:78:f5:
                    3e:4f:e1:7b:ab:f0:c2:98:78:e7:72:ab:f6:e6:06:
                    a5:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:9E:C7:B9:66:CE:AE:C2:37:BD:B1:C8:42:0A:63:3F:20:6D:82:53
            X509v3 Authority Key Identifier:
                keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         be:c8:8d:de:6b:e0:6c:82:e0:01:28:89:44:df:be:05:d1:bc:
         b7:74:3c:bf:4e:8b:e8:32:f1:45:45:01:6a:e9:06:f3:ca:fb:
         a9:2f:4e:7d:7a:48:8c:d7:42:72:b1:22:bb:f7:71:fd:8e:2c:
         2b:e4:96:81:08:69:cf:39:b5:e2:5c:65:f8:cc:64:c4:fc:11:
         45:89:05:10:f7:a1:51:cc:33:81:75:fc:64:46:b8:97:88:28:
         7b:ca:88:a7:e4:3f:ca:f0:b4:c3:20:d9:b7:2e:4a:34:42:4b:
         9c:39:83:2b:55:83:cd:c3:04:66:4f:61:cb:f9:6a:fa:e3:7b:
         aa:b9:3c:b1:9f:26:3d:6f:f0:b4:56:20:9a:be:31:00:ac:11:
         1f:9e:43:27:8c:2a:9f:95:da:4d:c7:c1:54:a4:98:23:c1:d5:
         5f:bb:08:6f:fa:17:a4:1a:99:34:48:63:45:ea:29:0d:35:fb:
         65:1a:66:96:60:de:d1:91:d0:6e:e8:e9:53:17:ee:95:59:d1:
         06:82:d9:56:c9:ca:e7:e0:39:68:f1:bf:3c:6c:09:e2:3e:0c:
         a3:96:19:70:31:fb:dd:4d:2c:82:ab:16:a1:3f:9b:5f:25:ac:
         65:51:8e:ec:2d:dd:ee:b7:0d:33:e0:8b:a8:dc:35:e5:aa:bf:
         9f:1b:ab:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:28:13 2025 by rpki-client