Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File:                     oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier:          DvG+DZcN0lm7ICrVjMnMAPenAN4IHN6byOQFhk/Rwco=
Subject key identifier:   40:81:3D:15:DE:73:B4:27:13:63:89:1B:D4:19:8E:CE:86:C8:B2:3E
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer:       /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial:       01987C407248A9C8A1CDAF99E8245AC94BF6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number:          0365
Signing time:             Tue 05 Aug 2025 22:00:54 +0000
Manifest this update:     Tue 05 Aug 2025 22:00:54 +0000
Manifest next update:     Wed 06 Aug 2025 22:00:54 +0000
Files and hashes:         1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
                          2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
                          3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
                          4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
                          5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: ACdxBCjKqgySLupZdik6IIF8vNwvvsLfMIARK91rXzw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 22:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7c:40:72:48:a9:c8:a1:cd:af:99:e8:24:5a:c9:4b:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
        Validity
            Not Before: Aug  5 22:00:54 2025 GMT
            Not After : Aug  6 22:00:54 2025 GMT
        Subject: CN=40813d15de73b4271363891bd4198ece86c8b23e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:68:71:7a:8a:c2:62:f2:7b:ab:78:67:74:71:
                    f8:df:f2:27:0c:ae:51:c6:0b:1d:59:89:95:1c:6b:
                    0b:12:2e:4b:f4:14:e4:0e:0f:3c:5c:05:97:c0:6a:
                    99:9d:aa:ba:d6:8a:bd:41:76:9b:89:46:99:d5:8c:
                    4b:5e:95:da:4b:d1:a0:af:ba:5a:4f:40:fc:35:5b:
                    1a:58:52:6f:cd:62:4a:aa:e9:12:ea:1c:01:e2:e8:
                    38:14:c1:18:8d:ef:6d:3c:1f:d0:98:0e:a2:41:e2:
                    2a:3e:f1:ed:5c:99:a2:75:ab:7c:71:0e:e3:88:c4:
                    ea:99:04:2e:65:02:21:50:95:b1:5f:29:75:ac:91:
                    5b:c4:55:e2:c4:19:61:3f:a7:00:6a:a8:91:0a:7e:
                    01:d6:1f:37:f1:24:54:06:11:b8:22:63:2c:c5:bc:
                    f2:af:68:20:a4:5b:24:da:70:b8:28:39:9c:58:5c:
                    b6:4d:0f:9d:6f:68:5a:67:c7:bb:d4:92:d0:ab:51:
                    ae:04:a1:05:c5:59:15:55:54:42:54:98:18:5b:75:
                    6a:10:a7:88:23:2c:e6:70:dc:64:e3:08:9f:54:06:
                    0e:b7:90:d7:c3:12:61:31:58:61:24:0a:2f:c7:97:
                    62:56:3c:7b:6b:c2:b0:0f:26:2e:51:b1:99:08:98:
                    b5:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:81:3D:15:DE:73:B4:27:13:63:89:1B:D4:19:8E:CE:86:C8:B2:3E
            X509v3 Authority Key Identifier:
                keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:2d:9c:a1:b1:84:a4:9c:8b:4b:31:92:17:94:0b:f2:32:f4:
         44:16:9c:5e:d9:d9:0f:cc:6a:50:94:ac:b7:be:4a:a2:f1:3f:
         05:5b:ce:8e:15:5a:96:9f:b4:2f:2e:08:17:65:41:bb:19:30:
         ee:d6:ce:d3:d8:4f:c7:6c:94:5e:9e:c4:7f:a7:93:43:5a:a0:
         06:dd:0a:4d:58:5e:e3:a9:da:c8:fc:fa:22:03:cd:ee:62:4b:
         23:41:34:f5:e0:57:94:60:bf:9d:c1:27:b2:2d:ed:c1:21:af:
         a8:5a:5e:2b:c7:17:e2:ce:d9:30:4d:4a:fd:0a:64:54:d2:5c:
         4d:e1:b3:3c:19:2a:c4:01:2f:97:3f:5a:6b:8a:25:8e:6e:e6:
         15:93:5a:c3:27:47:a8:6f:93:c4:b2:aa:93:51:70:6c:d2:96:
         86:2a:74:0f:70:0e:2e:ec:62:33:e1:1f:4d:bf:1a:a7:ee:4c:
         b7:5e:35:05:3a:01:d2:b3:61:88:ec:46:2f:09:37:a8:89:04:
         a9:3a:aa:09:9a:b9:94:8a:df:7f:cf:33:71:8c:d4:cb:46:ce:
         1c:f3:01:d2:92:4a:fd:4b:85:5a:00:1f:1d:a6:c5:27:63:f8:
         d4:3c:52:ba:03:9d:fc:65:4f:bb:ba:ae:ee:c3:7b:e7:51:ef:
         d5:bf:7c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 07:46:56 2025 by rpki-client