Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
File:                     nUkl6XatC_tz4JfaaRfoD1vObIw.mft (raw, json)
Hash identifier:          M58w7VJedJ82gRWJukPu+/0aon6yr9Z3wDjqRN2PZq0=
Subject key identifier:   41:97:B8:ED:15:74:09:92:0C:B2:8D:DC:0D:F1:DD:4A:15:80:2A:C8
Authority key identifier: 9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C
Certificate issuer:       /CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
Certificate serial:       019873E3C31907F78AAD6E1808207683511B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
Manifest number:          1075
Signing time:             Mon 04 Aug 2025 07:02:43 +0000
Manifest this update:     Mon 04 Aug 2025 07:02:43 +0000
Manifest next update:     Tue 05 Aug 2025 07:02:43 +0000
Files and hashes:         1: 7Wfm8N_BNNM1ZIAzk65u_y1CoxQ.roa (hash: vGKhwTsZ6bUD5wem1afZhHCNpuoU8y3whIP7i2K9fc8=)
                          2: nUkl6XatC_tz4JfaaRfoD1vObIw.crl (hash: ODyz1HE2PA+UST+TUXPtUysXs4ifOaPn4sum8r9L/gE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e3:c3:19:07:f7:8a:ad:6e:18:08:20:76:83:51:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9d4925e976ad0bfb73e097da6917e80f5bce6c8c
        Validity
            Not Before: Aug  4 07:02:43 2025 GMT
            Not After : Aug  5 07:02:43 2025 GMT
        Subject: CN=4197b8ed157409920cb28ddc0df1dd4a15802ac8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fa:05:9a:14:68:1d:cb:61:1a:9f:dc:93:a7:ef:
                    32:d9:3b:68:76:78:5e:0a:2e:77:1f:ed:4b:0f:b2:
                    1f:52:6b:13:e1:f1:de:ad:dd:b6:9d:36:e7:bc:e7:
                    ce:ea:5d:97:84:b0:ac:01:10:1b:fb:58:51:12:1b:
                    f8:7e:e9:48:ff:09:b2:72:49:e6:be:93:e8:04:c6:
                    0c:9f:23:1d:e6:0a:48:c4:f1:0e:6a:06:42:dd:cf:
                    f5:dd:af:08:3b:b0:13:10:96:42:c8:db:b0:0e:98:
                    54:af:73:11:78:9d:af:0b:dd:fc:c9:32:a1:a9:78:
                    a2:21:85:d9:e1:d3:fb:bd:0f:5d:3e:17:2e:06:80:
                    51:da:82:18:25:99:25:3a:9c:fd:9c:cf:9b:5c:c0:
                    da:7e:32:0f:f3:cf:5d:87:eb:50:e0:15:b5:5a:12:
                    28:d4:05:60:2b:11:57:8d:73:2a:9a:15:40:0d:be:
                    0c:3e:e9:14:24:2c:e0:a3:06:0a:3b:33:e7:04:fa:
                    96:fd:b6:63:03:d7:69:95:e0:1a:ac:22:e8:cd:e9:
                    85:a6:b8:80:6c:b6:c7:c3:2b:ea:39:5e:96:da:a0:
                    5f:a5:37:1d:e5:54:fb:05:0c:8a:a7:3e:4c:b4:34:
                    6f:90:7c:ef:0d:03:2d:92:93:6c:68:03:2d:2a:11:
                    fc:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:97:B8:ED:15:74:09:92:0C:B2:8D:DC:0D:F1:DD:4A:15:80:2A:C8
            X509v3 Authority Key Identifier:
                keyid:9D:49:25:E9:76:AD:0B:FB:73:E0:97:DA:69:17:E8:0F:5B:CE:6C:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUkl6XatC_tz4JfaaRfoD1vObIw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1f1cbd-fea6-4553-8db6-4e09f9e85723/1/nUkl6XatC_tz4JfaaRfoD1vObIw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:97:cb:3c:e0:45:e8:fc:bb:41:fe:f2:20:8a:cb:39:ae:ad:
         94:cd:89:b9:f9:12:4c:db:8d:75:58:6d:eb:4a:50:39:80:e6:
         39:7f:58:c0:78:32:9e:86:21:f9:51:c6:ca:ba:19:72:f8:d8:
         a0:5d:16:1a:f7:64:a4:67:15:e3:9a:91:1e:db:53:c7:dc:1f:
         e3:27:47:7e:d9:33:e5:43:6e:6e:3b:65:ee:ff:50:af:d5:37:
         02:05:72:b8:02:68:ca:a6:01:24:8a:b1:1b:75:93:fc:a5:2a:
         31:ce:95:10:38:41:4c:5f:57:60:45:6c:06:b2:4c:42:5d:a7:
         59:69:36:e3:80:1d:8e:1d:0c:25:93:36:81:e2:12:23:4f:14:
         5d:f7:e0:c3:2c:88:cd:e9:f1:a1:19:bd:d0:fa:35:2c:b0:f3:
         8c:04:04:8e:17:a5:58:82:c7:5d:b4:88:7c:f6:97:04:35:b3:
         7f:3d:9c:42:89:a1:94:43:2d:fe:68:0f:61:3d:b1:46:13:0f:
         85:d5:fb:83:46:eb:79:89:0a:a8:0c:02:bd:66:c2:78:64:e7:
         16:ac:45:09:58:31:00:a8:42:72:28:d8:7a:ba:a9:c0:f0:c3:
         8f:b2:53:8a:a4:be:fe:60:66:09:4c:6f:81:31:5d:b5:a3:67:
         50:73:5a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:14 2025 by rpki-client