Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
File:                     aA4gzPstWJjCFikA0UaAcKcCSVY.mft (raw, json)
Hash identifier:          WezCBjpeKehhim1J2A592bfL0nK6BG568NZVVqpT5oM=
Subject key identifier:   D6:EA:4D:DA:51:6A:8A:F4:B6:72:86:E2:6A:73:7F:00:B3:AC:AF:C5
Authority key identifier: 68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
Certificate issuer:       /CN=680e20ccfb2d5898c2162900d1468070a7024956
Certificate serial:       019879ACDF10FCA03F09929BD1BCC365F466
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
Manifest number:          0A12
Signing time:             Tue 05 Aug 2025 10:00:29 +0000
Manifest this update:     Tue 05 Aug 2025 10:00:29 +0000
Manifest next update:     Wed 06 Aug 2025 10:00:29 +0000
Files and hashes:         1: aA4gzPstWJjCFikA0UaAcKcCSVY.crl (hash: XDfZs/MWSItK2FfKM5oREKClkY6OCxVhoNtBypNlBks=)
                          2: eBTbPsjV8Iac9Fj-9vOQH-ERQ2w.roa (hash: iez1H7XNs3tkU5sUoydCWQiAyCLsYR+kgbtLIrffu48=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 10:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:79:ac:df:10:fc:a0:3f:09:92:9b:d1:bc:c3:65:f4:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=680e20ccfb2d5898c2162900d1468070a7024956
        Validity
            Not Before: Aug  5 10:00:29 2025 GMT
            Not After : Aug  6 10:00:29 2025 GMT
        Subject: CN=d6ea4dda516a8af4b67286e26a737f00b3acafc5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:ff:70:63:79:12:54:44:38:c4:c0:5d:2e:2c:
                    4c:74:79:4b:67:1c:d0:1d:b3:67:c2:59:4f:4a:f8:
                    37:27:5a:a4:5a:9d:a6:55:cc:59:1b:76:ca:5f:ef:
                    4d:98:ee:6b:83:fd:ec:56:c4:82:e2:8b:4d:f7:c5:
                    cb:84:52:c5:7e:7c:75:a6:12:e0:2d:9b:0b:87:c6:
                    40:04:d7:76:a2:2c:15:2f:38:fb:53:74:42:24:3b:
                    1c:ce:7c:d9:4b:61:70:3b:14:2b:29:8f:f4:67:0a:
                    d1:9e:00:93:00:9e:00:f0:51:5b:8b:89:d6:7d:d3:
                    97:7f:de:2d:52:57:e5:c4:15:7b:f0:4c:33:64:54:
                    65:1b:d0:ab:f4:f8:39:41:17:7c:64:f4:cf:b8:4b:
                    a2:f0:ba:37:df:f6:30:69:d6:52:83:b6:4b:1a:15:
                    ff:e2:e0:3f:d3:3d:ea:f3:ce:57:f4:ff:50:88:cf:
                    14:5e:e0:d5:50:40:fd:24:2a:34:eb:77:72:c4:5c:
                    c6:a3:c7:88:b0:f4:ff:a5:b8:dc:d8:3a:18:c0:15:
                    e2:11:5e:15:94:cb:b9:4e:69:fb:02:9e:12:de:f0:
                    92:35:60:ec:d8:ed:5b:9a:9d:4b:fd:99:f4:80:ca:
                    96:a1:2f:b5:39:ae:4d:34:25:cd:5f:79:2b:04:b3:
                    94:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:EA:4D:DA:51:6A:8A:F4:B6:72:86:E2:6A:73:7F:00:B3:AC:AF:C5
            X509v3 Authority Key Identifier:
                keyid:68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:66:63:04:95:78:70:b9:79:41:ce:c8:0c:d4:ac:54:a2:18:
         97:c4:fb:ad:0d:ec:1c:c8:f2:47:5f:c1:3c:34:42:b8:4b:15:
         86:d1:71:6d:06:dc:0b:42:50:29:5d:e9:5f:74:49:d9:4e:0c:
         4a:66:f2:57:26:87:61:7b:06:ea:16:5b:31:6d:a1:87:c6:12:
         bf:74:7e:2e:44:9a:b8:44:da:5b:02:73:7a:8a:ac:09:28:6e:
         40:be:f5:1e:c6:c4:0e:1e:90:8c:21:17:eb:fd:ea:02:05:fc:
         0a:d1:11:0e:35:72:91:8c:24:89:75:d1:76:17:ea:80:e0:72:
         a6:b0:44:ed:57:17:b8:74:b4:de:63:ad:c6:2a:5b:40:5b:65:
         95:e1:1d:0d:49:81:39:76:a4:93:40:4f:0c:b2:4a:8d:71:3b:
         4e:91:3e:a4:32:a6:f3:b9:fc:e4:bd:3f:2c:c1:b3:91:3c:eb:
         3b:74:be:c2:94:63:3b:9b:4b:1c:a2:b3:eb:e6:95:71:e5:f7:
         dd:9e:d2:c2:08:28:d3:44:64:e8:39:00:72:db:5c:0f:60:40:
         d7:6e:0d:26:a5:1c:fa:77:e5:4c:56:f4:2c:98:2e:7d:80:bd:
         84:fd:1d:ca:c2:47:5c:0f:46:ce:7e:49:73:d0:48:6f:5e:9f:
         76:64:20:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:27:32 2025 by rpki-client