Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File:                     kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier:          jjh1fcFdh0Ft750Zdj3LbqYcQbGL08t+Y7ay9MemlwU=
Subject key identifier:   5E:1A:3D:4E:E5:79:EE:17:42:F9:6C:AE:93:58:60:D1:7E:1B:98:3E
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer:       /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial:       01988B7D4B7C57DD1890A793483F955D2CAF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number:          06E0
Signing time:             Fri 08 Aug 2025 21:01:41 +0000
Manifest this update:     Fri 08 Aug 2025 21:01:41 +0000
Manifest next update:     Sat 09 Aug 2025 21:01:41 +0000
Files and hashes:         1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: 5ISisyi/8B3R5zlNA/qkEB5S3IE5dbGFQQTLCqQWqcg=)
                          2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:7d:4b:7c:57:dd:18:90:a7:93:48:3f:95:5d:2c:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
        Validity
            Not Before: Aug  8 21:01:41 2025 GMT
            Not After : Aug  9 21:01:41 2025 GMT
        Subject: CN=5e1a3d4ee579ee1742f96cae935860d17e1b983e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:77:f0:8e:a7:9c:32:e5:49:bd:ec:35:bc:12:
                    ad:9c:3a:9d:5a:9f:de:b9:47:f3:0e:7a:50:26:bc:
                    5b:0d:f4:06:df:c5:d1:e0:49:9e:6f:25:00:82:8f:
                    da:db:0e:5e:dd:3f:b6:cd:66:c6:87:0a:23:a9:d6:
                    18:a1:8f:ab:1e:e5:15:49:3e:79:03:09:75:f2:d9:
                    13:29:a0:96:26:2d:ea:dc:6e:eb:e3:a9:67:45:e5:
                    e4:37:07:27:c0:45:cc:cc:2c:98:39:90:62:10:28:
                    55:6c:3d:c5:84:1d:c7:f6:82:24:d0:eb:25:3d:60:
                    dd:c2:35:65:08:03:60:68:c2:9c:22:8b:b8:0e:3f:
                    63:b0:ed:d9:c7:a1:53:87:1f:e3:d3:98:7f:d6:74:
                    74:0a:2c:bc:31:34:e8:1e:15:4b:8d:14:39:6e:2e:
                    64:a6:9b:96:0d:55:ac:b5:b0:d2:43:58:9d:1b:bb:
                    b7:5c:32:3e:63:29:54:b9:4f:d1:6d:8f:e1:94:80:
                    ca:fd:07:a3:c6:9f:53:44:d1:b8:ea:80:7d:68:cf:
                    86:d2:1b:21:5d:e0:cc:d6:bd:76:14:ac:af:29:92:
                    28:4d:63:20:65:eb:25:5f:a2:9b:9c:48:f6:72:d3:
                    33:5b:ae:10:b7:ef:de:3d:6a:24:23:b5:46:07:94:
                    ca:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:1A:3D:4E:E5:79:EE:17:42:F9:6C:AE:93:58:60:D1:7E:1B:98:3E
            X509v3 Authority Key Identifier:
                keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:23:c3:92:cb:c7:de:18:ae:e8:51:99:13:6a:c2:eb:ce:03:
         ce:c0:33:85:7c:ca:70:5f:cd:29:76:29:5d:0c:3e:8d:a9:a1:
         96:d3:b7:58:54:c2:6d:47:c7:83:c4:de:ca:50:50:4c:dd:93:
         2f:88:68:b1:c7:f5:92:42:d5:a0:1e:1c:9a:7e:f7:e6:f2:42:
         1b:d7:e7:41:08:d8:f3:0c:a5:a2:bc:94:80:76:e2:c4:27:55:
         07:7f:0a:58:9e:c5:d1:75:bc:e6:dd:04:ca:c9:e1:79:6c:07:
         c3:28:63:38:ef:b7:c5:53:09:8e:f2:61:35:d8:f0:a8:f1:92:
         1c:7d:88:3f:f0:d1:a0:59:27:7c:da:9b:1b:03:20:bb:11:4d:
         e3:8b:ce:d5:65:27:1a:74:2d:8b:ea:5c:b5:ca:69:17:11:f8:
         09:03:c3:a6:de:24:d5:b1:58:b4:12:97:1c:0c:18:2d:b5:ca:
         ce:38:d1:62:2e:6e:49:fb:2b:7f:92:cc:e3:4a:1e:d5:b6:4d:
         fe:a0:f0:77:f1:a1:92:b0:c3:8b:06:71:b9:6f:f3:37:0f:29:
         49:6e:c1:8e:12:ed:02:e6:8a:37:c9:1b:06:0f:63:ee:65:d7:
         ff:d1:63:ff:4e:22:fc:b3:0e:88:59:58:06:30:2e:44:dd:1b:
         de:85:5e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:04:01 2025 by rpki-client