Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File:                     tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier:          nXFC53D9+aKPNe4oOB7RNxS09GS5QQBtXTQ/iz2RUMw=
Subject key identifier:   5D:DA:7A:CC:29:32:CD:3E:0F:37:DD:A2:94:BA:5E:C6:9B:24:9E:89
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer:       /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial:       019A5150D79F4C9CA5EDFC573CF6351A2C05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number:          052C
Signing time:             Wed 05 Nov 2025 00:00:43 +0000
Manifest this update:     Wed 05 Nov 2025 00:00:43 +0000
Manifest next update:     Thu 06 Nov 2025 00:00:43 +0000
Files and hashes:         1: 1-HTDTTyHqsL8qWvl7tdyMvlROZo.roa (hash: rDjH3KjSESto7R5VRIkalhKhlHHWAhNK5nCorKVRQGY=)
                          2: 74rFfsVLB83xqrl230f69RyQMZo.roa (hash: uIHKdF0Md6VmRaPIQqLHKtiwEPhOEBVDe4Gopq3AYXw=)
                          3: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=)
                          4: kQsGPemVQTjeA88dAZ8pv0jsM5Y.roa (hash: +/+dI6sKhxOqMNJuHemXER1d+kDUpiEiqbk+G5uJ4KU=)
                          5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: rdYQ536x/O+gNZHWBzT0tiNVrlyMaydIPYCluFWjNmk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 18:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:51:50:d7:9f:4c:9c:a5:ed:fc:57:3c:f6:35:1a:2c:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
        Validity
            Not Before: Nov  5 00:00:43 2025 GMT
            Not After : Nov  6 00:00:43 2025 GMT
        Subject: CN=5dda7acc2932cd3e0f37dda294ba5ec69b249e89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:85:9b:f0:bc:c0:28:03:64:a3:3b:bc:39:41:
                    e3:b5:fd:44:4b:e3:9f:5e:9a:10:82:33:13:de:bb:
                    40:88:61:4c:fc:3a:bb:4d:f8:dc:07:83:b4:99:5a:
                    f9:78:fd:33:7a:15:f8:d5:f1:c6:d2:a3:f7:37:98:
                    53:3b:02:a1:02:65:8c:75:5a:a4:e5:a9:27:3b:a0:
                    be:10:0c:78:69:91:00:47:27:e3:4b:fa:a1:aa:41:
                    79:d3:01:8f:d8:67:bd:f6:f6:92:4e:7a:06:0d:dc:
                    2d:94:40:36:7d:bd:c1:94:87:9a:cb:50:d1:37:a2:
                    c5:04:84:d5:1e:4d:b5:3e:67:4d:cc:76:9e:f2:65:
                    42:83:66:8b:a5:60:f3:e1:ab:54:56:d8:c2:49:32:
                    81:b1:f9:c9:b8:8e:e3:41:1f:38:bd:68:40:a6:3f:
                    59:81:81:1b:11:54:23:94:64:4e:0d:fe:a8:66:5f:
                    44:e2:b7:c1:3a:6e:84:13:e7:58:7d:16:9b:e8:b4:
                    96:3f:f2:2c:ef:92:5b:46:1a:f7:2b:69:8a:ce:fe:
                    9f:c7:a2:8a:4f:df:34:fe:2b:3f:c2:ed:a1:de:79:
                    53:9d:79:f0:1e:11:c9:8e:65:0b:85:74:33:3e:35:
                    f2:0f:32:f6:e7:4f:71:59:ff:49:c4:8c:71:58:46:
                    d5:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:DA:7A:CC:29:32:CD:3E:0F:37:DD:A2:94:BA:5E:C6:9B:24:9E:89
            X509v3 Authority Key Identifier:
                keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:ef:e7:54:71:5d:93:42:7e:15:ac:f4:9b:39:c5:68:68:4a:
         d6:41:21:86:8c:d3:4d:d1:f9:54:34:f3:f7:e5:40:e4:ec:01:
         e9:1d:96:7c:88:48:43:da:9e:d7:9e:34:3b:a6:74:54:a1:88:
         cf:94:6d:9e:d6:bd:e0:be:05:dd:be:a6:39:fc:f3:53:77:bd:
         03:5a:22:33:e1:c3:a1:a0:58:43:75:6c:ac:dc:d0:69:27:0d:
         4c:f2:3c:40:96:77:37:59:2c:84:7e:0f:9a:ce:95:f2:ef:7e:
         03:27:97:82:64:06:b2:b2:41:df:79:49:25:7d:53:66:a5:5c:
         ee:ac:bf:81:7d:2c:df:98:8f:51:a6:02:97:22:fc:e1:e7:90:
         86:1e:eb:9a:49:a1:47:b3:5e:38:17:3b:b6:b9:ce:d1:5f:0f:
         c9:9c:d9:ab:3a:96:7e:ef:41:e7:9a:24:ec:fe:ce:76:d1:a9:
         52:cf:3a:8f:23:75:9e:7f:b1:c2:24:fc:61:ef:df:4e:57:5c:
         5d:0a:1f:af:3e:be:60:14:96:a5:53:c8:31:af:bb:74:e6:75:
         a7:a2:18:ac:9a:bc:e7:d2:cd:56:7c:6b:0c:ee:0a:9d:2f:33:
         8e:ca:26:16:88:38:b1:1e:6f:5a:f1:90:a4:90:75:d0:2f:d2:
         45:ab:34:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:03:54 2025 by rpki-client