Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File:                     do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier:          oe6wFv2Ma2iyOTjpajStq+Fgf5M1gNMghIHhfsq4w90=
Subject key identifier:   1B:35:0F:B0:86:FD:4D:82:2C:FA:82:2D:7B:8F:87:15:68:9A:94:D1
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer:       /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial:       01988A69BFDCB5D3F804B05D826BAA6AFEF9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number:          012E
Signing time:             Fri 08 Aug 2025 16:00:42 +0000
Manifest this update:     Fri 08 Aug 2025 16:00:42 +0000
Manifest next update:     Sat 09 Aug 2025 16:00:42 +0000
Files and hashes:         1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
                          2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: T61VNcfqxirjQ7zLf3/+C5VixCxkPKdYB/gPC/4OMIk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 16:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8a:69:bf:dc:b5:d3:f8:04:b0:5d:82:6b:aa:6a:fe:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
        Validity
            Not Before: Aug  8 16:00:42 2025 GMT
            Not After : Aug  9 16:00:42 2025 GMT
        Subject: CN=1b350fb086fd4d822cfa822d7b8f8715689a94d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:91:d6:a0:05:31:8d:c9:77:68:44:53:5a:55:
                    02:ba:fd:8e:ed:01:82:88:18:1b:52:3b:4e:1a:b5:
                    fc:89:92:f2:b7:fe:49:f6:d8:a3:1e:0c:e1:7c:8f:
                    9d:64:92:85:2d:f2:7d:8d:85:ee:fa:07:6a:64:13:
                    37:7a:fe:a3:d9:9a:a6:05:09:93:cb:2e:28:1f:90:
                    a9:ff:37:1d:ec:b6:90:db:7d:6d:4d:b5:c4:6a:d8:
                    3f:82:ee:c6:6f:ec:1e:1c:fb:b7:02:25:61:3b:92:
                    95:f9:2c:f3:59:a9:aa:2d:c5:11:91:44:ca:7c:1b:
                    2a:f7:ff:1a:16:a4:c0:33:c4:55:5a:fa:f9:33:67:
                    db:2a:4a:af:1d:d2:c2:5b:38:18:02:b3:9c:e7:66:
                    83:c3:4a:77:e2:04:dc:54:e4:c4:c6:7f:67:f0:07:
                    d1:a2:a9:ec:e3:8c:43:2a:68:06:bd:54:59:30:60:
                    30:a5:1c:2a:7a:3b:c8:90:76:85:4b:9e:13:94:ad:
                    f1:84:0d:e7:37:a0:da:4b:8d:03:65:44:a6:56:c6:
                    d1:f5:60:88:7d:25:b6:28:74:65:f6:fa:1a:09:22:
                    a1:86:7e:9c:87:f4:fe:3b:d2:c8:e3:c2:9a:07:c9:
                    dd:de:27:e5:67:5e:d0:cc:6e:36:05:bf:be:61:5d:
                    51:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:35:0F:B0:86:FD:4D:82:2C:FA:82:2D:7B:8F:87:15:68:9A:94:D1
            X509v3 Authority Key Identifier:
                keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:3f:8f:04:48:d9:18:de:c8:82:82:2b:46:a1:16:88:2b:94:
         ab:78:57:7a:b6:92:8a:73:32:e7:ec:82:d4:6a:86:5b:13:2f:
         db:d6:f0:18:a5:28:75:a6:1e:ad:67:cf:e0:90:1c:a7:ed:27:
         57:b6:6f:09:ad:03:ee:a5:ad:6f:3f:0e:55:e5:5f:60:01:85:
         b1:5b:e4:f3:dc:bb:7f:c6:03:0a:e4:0b:91:b6:9c:86:79:98:
         01:06:c5:46:5d:e0:1d:9a:f2:58:2b:90:d0:a8:2c:68:e8:31:
         77:c0:5b:8c:28:6f:a6:ab:d4:59:d0:59:01:ea:67:bf:f6:79:
         ca:54:45:48:b5:ec:3c:d1:46:3e:a7:6e:cb:1f:f9:12:02:8f:
         77:74:5c:9f:6d:bc:58:2f:5e:60:bb:3b:19:a6:a7:ec:4a:ff:
         f8:e0:e9:81:fa:12:fe:6b:94:49:eb:59:9a:6a:34:f8:fb:e2:
         79:ca:37:35:ed:e0:58:27:a0:2e:b6:62:e2:36:3a:8d:c0:64:
         e1:48:b2:75:9c:ac:6c:ea:14:e0:7b:64:e7:6c:0e:f5:c6:1d:
         e4:e1:72:ff:87:d6:69:21:72:5a:38:4e:36:b6:cb:cf:62:05:
         c7:03:a7:58:21:8d:a4:b4:8d:5d:d1:61:b2:fe:50:c5:ed:40:
         2f:44:72:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:34 2025 by rpki-client