Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
File:                     8CDLT5tfebnaa0gnutnFSiqAxTE.mft (raw, json)
Hash identifier:          uRjCqyvxXwPY4blM/ZiJ4m0RS6hKpVp5QGfrAWR8UuM=
Subject key identifier:   9B:53:96:AC:73:24:76:6E:66:37:22:28:10:1A:3A:95:AD:DB:81:2C
Authority key identifier: F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
Certificate issuer:       /CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Certificate serial:       01987E65BF3BA674F2BEC2128E9E9EEC8DEB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
Manifest number:          0EB3
Signing time:             Wed 06 Aug 2025 08:00:54 +0000
Manifest this update:     Wed 06 Aug 2025 08:00:54 +0000
Manifest next update:     Thu 07 Aug 2025 08:00:54 +0000
Files and hashes:         1: 8CDLT5tfebnaa0gnutnFSiqAxTE.crl (hash: MP5f8n/326fvvVGaHu+LtQI3oNZKugkkeUYMhy3p8F0=)
                          2: amkS5SoIvujCi9yce4d8VftUldc.roa (hash: +cELHuiQeJpKMXecyPF27q6ZAbek7zvwZNYTMIlI2SU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 08:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7e:65:bf:3b:a6:74:f2:be:c2:12:8e:9e:9e:ec:8d:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
        Validity
            Not Before: Aug  6 08:00:54 2025 GMT
            Not After : Aug  7 08:00:54 2025 GMT
        Subject: CN=9b5396ac7324766e66372228101a3a95addb812c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:0c:87:fd:a0:e1:5d:01:a9:1a:35:d4:03:bf:
                    96:77:6f:c1:62:51:75:86:b9:a1:c4:29:52:c7:ce:
                    7c:ed:71:17:e8:3c:a3:92:9a:41:fd:20:46:27:7b:
                    11:62:09:7d:a3:c6:d0:77:be:b9:6e:5d:60:3b:17:
                    33:10:9b:a5:4b:98:79:ec:68:65:5c:31:e7:dc:40:
                    1c:64:65:4f:14:f2:4c:3a:4c:f1:5e:e8:25:9f:f7:
                    0a:ba:84:39:83:21:f0:5a:1c:87:bc:08:74:36:84:
                    b5:6d:21:b9:bf:54:de:6a:25:68:86:63:ce:ec:4a:
                    47:85:b2:3a:ec:ec:0c:2f:97:51:e7:ed:af:d1:77:
                    ef:7b:90:6b:0d:f9:2a:e2:61:0f:2d:87:1f:d6:86:
                    58:f1:77:33:17:f1:6a:f1:0f:a9:48:1f:28:91:fb:
                    92:8c:e2:33:10:6d:58:b5:5e:f4:6e:eb:fa:5a:24:
                    5f:55:ec:c6:9a:d8:09:0a:5e:4b:4b:3f:99:76:6d:
                    76:a8:38:f5:56:17:02:b4:5f:ce:ab:a1:2c:5e:0e:
                    61:5b:0e:a7:ac:a8:95:f1:3a:62:73:53:2e:fd:67:
                    e5:16:f6:1b:eb:90:db:61:b5:31:7d:a5:1d:86:0a:
                    e7:41:34:fe:f9:88:67:ee:e9:f0:76:fe:2c:b2:5e:
                    77:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:53:96:AC:73:24:76:6E:66:37:22:28:10:1A:3A:95:AD:DB:81:2C
            X509v3 Authority Key Identifier:
                keyid:F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:09:89:95:56:01:d6:ef:a9:d2:f7:f4:e3:af:2a:93:d4:e8:
         9f:16:75:d6:c9:b3:77:1a:0a:45:87:ba:a8:22:55:33:64:9b:
         09:26:5f:73:14:da:08:82:ad:8f:3d:ab:eb:a2:1b:54:df:e3:
         18:80:c0:da:69:ec:dd:4b:88:46:41:8f:9e:bd:7f:68:fc:81:
         38:f3:b7:aa:de:23:cb:d9:40:3d:b2:9c:fb:50:e1:1a:24:17:
         45:dd:2f:51:41:d4:3d:86:0a:b8:55:e1:bc:3e:1e:29:12:e5:
         1c:0f:bc:8b:4a:a5:b4:fb:24:bd:58:c9:bf:2a:2b:0e:ae:1a:
         03:f5:69:a6:8e:b3:aa:6a:dd:6e:3b:39:fa:f1:3d:95:13:30:
         44:5f:7d:c1:95:c8:15:04:4f:61:6c:d9:61:b3:0a:25:45:63:
         29:b8:cd:2c:ff:16:42:9a:54:d4:25:84:39:db:1b:80:0d:ca:
         78:31:4b:21:85:38:cc:61:13:68:66:4e:49:ee:0b:71:55:f0:
         3e:ec:69:ac:2c:df:ed:24:52:45:22:d4:b4:5e:45:d8:0d:51:
         c9:72:ca:d4:a6:73:75:a6:c8:b5:ec:fb:d5:cd:b3:82:6c:27:
         98:b8:af:73:85:90:dd:3b:d8:74:18:e3:1b:2c:f4:42:55:45:
         b7:5c:11:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:29:31 2025 by rpki-client