Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
File:                     1-geuOnkY-TLqJMwVa0tum6VYG_o.mft (raw, json)
Hash identifier:          lxt1pPxSUfxmTkmpofcibtti5YjFT8Kxbu4gejIoAf0=
Subject key identifier:   48:0A:CC:50:42:3D:CC:8C:A2:23:4D:C0:85:11:A9:64:3E:41:08:88
Authority key identifier: FA:07:AE:3A:79:18:F9:32:EA:24:CC:15:6B:4B:6E:9B:A5:58:1B:FA
Certificate issuer:       /CN=fa07ae3a7918f932ea24cc156b4b6e9ba5581bfa
Certificate serial:       01988BEB229485D8AA0ABE779FEA32A24A1C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
Manifest number:          0331
Signing time:             Fri 08 Aug 2025 23:01:39 +0000
Manifest this update:     Fri 08 Aug 2025 23:01:39 +0000
Manifest next update:     Sat 09 Aug 2025 23:01:39 +0000
Files and hashes:         1: 1-geuOnkY-TLqJMwVa0tum6VYG_o.crl (hash: hMvSi6V6OGDL6je22s6iEelPc4vzC/efe2pxSYs/HkA=)
                          2: rs3gWt450Dc5VAdX-LPh4FxzPfI.roa (hash: yHX556DQVgZDjr2xTPApsPlrmF99zYD+miBAgNn4a5c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:eb:22:94:85:d8:aa:0a:be:77:9f:ea:32:a2:4a:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fa07ae3a7918f932ea24cc156b4b6e9ba5581bfa
        Validity
            Not Before: Aug  8 23:01:39 2025 GMT
            Not After : Aug  9 23:01:39 2025 GMT
        Subject: CN=480acc50423dcc8ca2234dc08511a9643e410888
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:49:39:f1:ac:99:44:d1:21:2c:00:a9:9e:de:
                    ba:2f:99:5a:19:dc:cc:6f:3f:04:2c:01:51:0d:d3:
                    01:2a:f8:16:34:43:63:c5:ea:38:fb:e4:db:58:0e:
                    e9:2f:8a:4a:42:19:0c:8e:e3:79:53:14:dc:73:ac:
                    27:ed:9b:08:d5:b6:74:9f:7f:68:f8:ad:b8:2f:c6:
                    cc:1d:9e:ba:07:ca:8c:b8:ee:54:fb:ff:68:9a:d4:
                    ae:a5:94:ee:95:1e:9a:68:14:c3:a1:7d:13:6e:8d:
                    bf:be:59:c3:4f:e1:4c:20:fd:36:2f:91:f3:d0:40:
                    f0:e3:98:f6:33:17:37:2c:d9:be:95:81:e0:70:99:
                    9d:7b:d2:f1:d2:00:ed:0b:39:aa:51:7a:1d:07:65:
                    2d:bc:58:78:e9:90:06:73:a6:77:51:b1:3c:df:a9:
                    06:b0:77:cc:44:1c:28:d7:5b:10:17:f8:b3:e9:5f:
                    e1:58:34:61:2f:40:71:0d:fb:7b:4b:5b:e4:ad:78:
                    48:f8:35:ec:f8:8d:1b:fc:9e:e3:4e:2a:1a:f5:8d:
                    da:84:25:2a:9c:3d:86:f4:f6:89:b1:9e:7d:ee:23:
                    37:e6:ca:88:57:a2:7c:ad:8d:f3:6d:65:0e:16:e0:
                    c4:a6:1a:94:5b:d0:e8:74:b0:14:44:99:5d:71:3b:
                    34:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:0A:CC:50:42:3D:CC:8C:A2:23:4D:C0:85:11:A9:64:3E:41:08:88
            X509v3 Authority Key Identifier:
                keyid:FA:07:AE:3A:79:18:F9:32:EA:24:CC:15:6B:4B:6E:9B:A5:58:1B:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:a6:7c:2c:3c:a5:49:34:f9:10:ff:48:29:d4:5e:7d:d6:9f:
         26:b6:30:2d:c7:93:d6:94:57:c7:65:ed:ce:ba:3d:27:be:67:
         d0:e0:fc:c7:83:54:65:ea:c2:33:db:43:f1:ed:b0:2a:eb:92:
         39:c0:1b:6c:26:c4:de:71:13:81:46:5a:9b:68:74:e3:1e:22:
         11:6e:5e:49:5e:42:e1:5a:7a:e0:4d:16:80:20:08:5d:a0:52:
         1d:95:17:3d:30:9c:11:5b:21:d4:9b:1b:65:e8:8b:30:79:3b:
         5a:bc:4f:dd:2a:b0:c4:3f:76:aa:32:c9:79:9e:d5:4e:f3:b1:
         b1:8f:d5:0d:4d:16:24:09:fe:2b:d4:45:74:4b:24:d6:f8:cc:
         21:16:a0:ef:bf:33:91:45:af:f0:a8:73:65:9a:75:7a:02:8d:
         6c:c1:eb:92:6a:be:c5:27:c9:6a:ae:99:bc:ec:ff:10:82:f4:
         12:d1:39:20:15:80:6b:cc:6e:ec:42:c7:57:f9:7f:95:33:d3:
         1d:24:31:1b:7d:7a:39:fe:72:44:b8:38:df:f6:46:c4:a5:1b:
         c9:a3:4f:cf:74:94:92:ff:82:20:c0:d1:4a:f8:4e:96:bd:77:
         59:39:79:55:94:61:71:ec:39:4c:8c:0a:2f:57:b9:ba:99:b3:
         be:1b:f4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:28 2025 by rpki-client