Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File:                     0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier:          EVZVhLXNKxcxwUBZK5iZz1La1KFZ8sp9fhkTHo+XVNg=
Subject key identifier:   72:66:E1:03:EB:50:87:1A:BE:15:3A:BC:F2:95:DC:4B:15:DB:0C:73
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer:       /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial:       01987418AC0BAF46F7B1969362F887019B51
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number:          0286
Signing time:             Mon 04 Aug 2025 08:00:30 +0000
Manifest this update:     Mon 04 Aug 2025 08:00:30 +0000
Manifest next update:     Tue 05 Aug 2025 08:00:30 +0000
Files and hashes:         1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: UaxWFzdYK9EMJZE4klQcXmTZelV5j3RNQoQKy3mDSBI=)
                          2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 08:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:18:ac:0b:af:46:f7:b1:96:93:62:f8:87:01:9b:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d248185956e443b55b062200f964537bc10bc130
        Validity
            Not Before: Aug  4 08:00:30 2025 GMT
            Not After : Aug  5 08:00:30 2025 GMT
        Subject: CN=7266e103eb50871abe153abcf295dc4b15db0c73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:04:c8:48:78:a6:84:69:d8:db:2b:9a:5f:4a:
                    db:a8:50:c9:17:fd:2d:5e:e8:64:29:97:25:aa:bb:
                    5b:f9:54:86:11:87:4d:fa:4d:27:63:bd:49:3a:f6:
                    22:7e:6e:22:13:fc:ad:e6:07:a0:d2:e3:39:67:f4:
                    44:de:14:39:da:26:a1:5c:25:2e:da:99:a2:ba:88:
                    69:54:99:ba:64:e6:0a:bd:0c:8e:b3:9a:f0:ea:1c:
                    68:6f:36:9b:eb:04:5c:0e:23:45:1d:96:86:a8:39:
                    e3:65:e9:68:56:d1:65:12:53:48:fa:2b:9a:de:fc:
                    07:76:c7:8e:92:f1:79:f5:bc:da:a3:aa:b2:30:35:
                    f2:fa:3f:f9:f0:fa:17:21:15:7d:be:89:51:ec:d0:
                    35:ea:b3:d1:e2:81:ef:a6:80:55:50:1e:53:cc:45:
                    3a:4b:4a:91:31:b0:9e:8d:0b:b2:83:ac:93:25:ed:
                    d7:a3:ec:45:09:a6:08:01:57:0e:8b:6c:1e:87:96:
                    f1:ed:86:3d:7b:6a:eb:39:4e:10:d1:21:7d:22:27:
                    db:58:92:fd:d0:99:8f:dd:68:ff:f8:1d:2b:1c:a5:
                    72:9a:41:e4:bd:54:fc:ca:2e:6b:81:63:f3:d7:6e:
                    43:93:3e:ed:35:49:fc:d0:89:71:5b:76:6f:99:57:
                    54:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:66:E1:03:EB:50:87:1A:BE:15:3A:BC:F2:95:DC:4B:15:DB:0C:73
            X509v3 Authority Key Identifier:
                keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:ba:1d:7d:c7:1b:94:dc:b8:da:8e:05:d4:df:c5:7b:db:69:
         47:37:25:0d:88:5d:96:4e:e8:88:4b:32:2f:39:23:72:d3:d5:
         44:dd:05:39:f8:76:bc:c5:af:f4:db:df:0c:8b:20:40:6f:37:
         19:09:e3:60:d7:d3:52:99:9d:1e:b3:2b:d0:37:92:b6:9b:6b:
         c6:b0:a6:e1:2e:33:72:76:2e:a1:39:95:63:45:5e:ae:01:3b:
         30:c5:ee:cc:a7:24:44:80:a3:b7:5f:54:72:79:f6:46:37:ef:
         92:69:56:70:95:60:8a:17:ba:10:af:97:4f:f1:ba:74:6a:4e:
         68:2e:74:79:b9:6b:ef:a6:32:5b:23:9a:c8:65:a5:00:5f:00:
         bf:20:2f:0e:c7:de:99:47:fd:fe:95:cc:2d:b5:9e:68:4d:7e:
         86:ae:78:a0:13:1c:a7:58:de:1b:03:02:70:00:64:91:35:5d:
         27:67:d0:bc:8c:ad:e3:76:4d:c3:4c:f8:0d:2c:73:35:1c:87:
         ed:54:46:d5:0c:68:78:60:fc:0d:31:41:44:23:b7:33:3b:5c:
         0a:38:d5:66:8c:b8:c3:d3:96:5b:1c:f6:3a:0d:65:d7:8c:69:
         81:0d:23:81:26:18:ec:2a:65:a3:3f:82:7c:7f:28:98:1d:b7:
         f7:a4:91:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:08:26 2025 by rpki-client