Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File:                     iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier:          oHqJvfPPWp09Y+sl18ayUdfLKilk7M8uj4CirMLuJk0=
Subject key identifier:   EC:74:37:48:BA:22:CE:73:61:67:77:A6:3C:46:F9:F3:C2:51:6C:A6
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer:       /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial:       0198819E1D1A165EDD0DE6A6A9C7E46CDD12
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number:          10AB
Signing time:             Wed 06 Aug 2025 23:01:19 +0000
Manifest this update:     Wed 06 Aug 2025 23:01:19 +0000
Manifest next update:     Thu 07 Aug 2025 23:01:19 +0000
Files and hashes:         1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
                          2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: gkYdjanYNQ6kKZnmZYXqNmCLHEEj6jb6rJWZ2ZDiyi0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:9e:1d:1a:16:5e:dd:0d:e6:a6:a9:c7:e4:6c:dd:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
        Validity
            Not Before: Aug  6 23:01:19 2025 GMT
            Not After : Aug  7 23:01:19 2025 GMT
        Subject: CN=ec743748ba22ce73616777a63c46f9f3c2516ca6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:f9:88:67:e9:e0:53:e5:d3:8c:3e:ba:15:0e:
                    98:80:ef:9d:09:1d:89:c5:2a:35:f5:cf:a9:43:5f:
                    a5:a3:23:87:2c:4f:74:ff:9f:32:e5:19:ec:ce:78:
                    ba:74:1a:02:58:79:09:ec:a5:cb:81:19:3b:12:2f:
                    cc:16:e8:2a:e5:8a:fc:dd:bf:b1:f7:cb:44:2a:2d:
                    42:4f:7d:ea:e0:63:18:b2:fb:1b:ac:05:fd:1a:93:
                    5e:d6:8b:62:88:e0:00:0d:e7:2a:59:4a:01:b0:4e:
                    47:7d:77:5b:fd:cf:2c:d4:9a:c1:79:f7:b6:a6:ae:
                    72:83:c5:f5:d8:a0:1a:13:10:bf:85:3e:b0:da:46:
                    98:4e:c2:b0:2e:5c:ff:c2:59:24:16:48:2e:84:fe:
                    bf:3a:63:f9:ac:fc:3e:9c:ee:cf:02:c2:26:6b:d8:
                    0b:6e:7c:a7:b2:22:89:82:24:57:f0:fb:96:22:3b:
                    be:05:66:f2:5d:b7:94:cf:6f:1c:6e:6c:b8:9d:ae:
                    0e:45:73:ad:e6:8c:31:7f:e2:37:4e:9e:ab:0f:9b:
                    41:8b:19:41:d8:1c:6a:98:2d:e5:d1:98:24:91:b9:
                    36:80:68:57:a9:4c:d6:33:1e:47:a5:15:3e:3a:ed:
                    4e:12:40:73:a6:2f:4e:44:a3:65:3f:cd:8e:f3:74:
                    3b:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:74:37:48:BA:22:CE:73:61:67:77:A6:3C:46:F9:F3:C2:51:6C:A6
            X509v3 Authority Key Identifier:
                keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:18:53:47:91:b8:60:56:48:1b:4f:17:51:1f:64:6f:ea:3a:
         1c:77:b4:3f:a4:73:42:03:53:70:d4:09:1e:cb:ce:50:78:fc:
         df:bc:f4:4f:27:03:ea:af:69:1e:45:44:22:f6:56:d2:2c:4e:
         d4:81:ad:1f:67:46:96:92:0e:d1:d0:76:ce:c9:23:2c:57:d4:
         ae:77:78:5c:ef:44:5e:67:69:b3:af:07:c3:d9:c0:3b:20:ee:
         00:7f:22:cf:05:48:29:aa:43:91:c4:15:4d:04:85:38:af:d9:
         a1:ea:a8:68:71:32:a7:23:21:cf:2c:bd:1d:02:85:e1:87:1d:
         d6:d1:ac:70:25:f8:a1:2a:ba:fb:a6:e5:38:8c:1c:93:2a:90:
         a3:cc:f1:74:e0:de:ff:18:e2:f0:77:62:90:68:99:fb:89:ee:
         ea:e7:ee:15:20:eb:ea:3e:05:ae:bd:1c:53:d3:1d:20:e0:32:
         ba:ee:8b:6f:53:ec:52:76:4c:d3:c7:1f:97:a2:07:74:b0:68:
         40:00:28:e5:50:dc:a4:2f:74:53:ed:32:63:a8:31:4b:f3:3f:
         f1:9f:a3:96:8b:30:87:75:1b:7c:de:a9:9a:0a:af:05:e3:65:
         e4:8a:f3:ec:9c:fb:5e:9f:7e:be:9b:35:5a:2a:05:15:0f:3d:
         d0:2f:73:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:32:29 2025 by rpki-client