Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File:                     qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier:          UfiH60djYkTFO0CFQQPE3/tve4guwxLPEXf/RCBsnRY=
Subject key identifier:   C2:76:19:8D:BB:58:A9:A5:B4:0E:0C:97:39:84:18:50:D3:5B:0B:17
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer:       /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial:       019881680F1973E58952ECAFF6C508D2CC66
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number:          161E
Signing time:             Wed 06 Aug 2025 22:02:16 +0000
Manifest this update:     Wed 06 Aug 2025 22:02:16 +0000
Manifest next update:     Thu 07 Aug 2025 22:02:16 +0000
Files and hashes:         1: USQ6h1BmGX_5l6r9JsziO1Ui1Vw.roa (hash: W3xrS1zgc7QMM+ux8ilDAtn6lUWxhEYKoHwrzSB4Kb8=)
                          2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: Q0J1J5gI2DX6x7hh7X+Ahw3DC8atSAbbwm7xy9mjfzU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:68:0f:19:73:e5:89:52:ec:af:f6:c5:08:d2:cc:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
        Validity
            Not Before: Aug  6 22:02:16 2025 GMT
            Not After : Aug  7 22:02:16 2025 GMT
        Subject: CN=c276198dbb58a9a5b40e0c9739841850d35b0b17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:ed:75:2d:ed:76:f0:ae:d9:bc:7b:3b:bb:93:
                    8e:04:ef:ed:0c:56:9d:0f:23:71:0f:0e:31:86:99:
                    1b:a5:4a:4d:24:e9:8f:1e:8d:e1:d2:7e:d9:1e:8f:
                    34:c7:95:13:1b:4b:8f:92:02:69:b8:b0:7c:be:56:
                    3d:c2:ba:a7:48:63:34:e8:dc:d9:6b:08:06:7c:2c:
                    6e:83:a9:d1:3b:51:f6:49:8d:c2:9f:16:99:ab:8d:
                    09:d5:b9:aa:5a:b3:62:5a:a3:e7:3e:9e:d1:9c:4d:
                    1b:5a:0e:ad:1e:52:c2:8c:a1:53:fb:74:ac:57:85:
                    b1:65:01:df:1d:d5:2b:7b:6e:1a:50:40:2b:8d:c6:
                    f2:dc:29:3a:56:91:3c:0a:d7:10:ba:93:a8:66:94:
                    90:2d:44:81:8c:c3:49:7e:9e:96:69:40:b0:51:1f:
                    e1:9a:48:a7:b6:10:ba:34:0a:8b:60:3f:bd:80:2b:
                    7f:5f:2f:9f:9e:28:fa:c9:0b:a8:5f:9b:ea:ef:b9:
                    89:fd:7d:c7:38:1b:97:1e:fb:51:f0:b5:4a:9d:87:
                    df:36:53:16:aa:75:b2:78:cb:96:51:02:13:5a:2b:
                    8e:a6:bd:af:88:9c:35:74:47:25:96:a8:9b:38:c6:
                    db:c4:b7:cd:bc:99:98:e2:3b:90:bd:16:79:6c:8f:
                    8e:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:76:19:8D:BB:58:A9:A5:B4:0E:0C:97:39:84:18:50:D3:5B:0B:17
            X509v3 Authority Key Identifier:
                keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:68:c0:56:5f:96:3f:73:77:36:87:3d:e6:77:f2:80:bb:be:
         b0:cf:1e:2c:a3:4a:f5:79:8d:7b:ae:b4:fb:17:41:35:b9:5d:
         1e:d1:4d:26:48:c7:56:aa:76:2e:f8:e2:ce:d4:3e:75:ca:9d:
         67:ca:cc:f3:e9:20:4f:77:f4:bf:da:b6:a2:a9:0d:bf:64:ed:
         0a:af:28:5f:5d:98:82:56:7f:8f:ec:9c:ed:5e:52:2a:51:1c:
         1a:e3:4b:93:ed:c4:5f:c1:9c:09:5f:aa:10:98:d6:ed:3b:ca:
         f0:fd:56:e4:fd:30:ef:5d:5a:09:3d:69:5d:2c:59:41:54:5a:
         92:d6:ad:01:99:47:40:f3:b5:c1:05:38:e6:19:a3:3d:a7:67:
         c5:62:4f:48:e1:4e:90:6c:0d:ec:72:7c:ff:55:69:52:3f:b6:
         00:e2:36:91:47:5e:31:0a:58:de:f2:f9:ef:99:15:2a:8c:f3:
         8b:f9:1d:a4:af:6f:cf:f8:72:88:5b:07:1b:87:dd:3c:88:b0:
         62:be:2d:37:53:8b:ef:41:30:e1:df:c0:0b:b3:20:a6:ae:33:
         c1:99:fe:67:2e:a5:fd:54:0a:cd:d7:fd:fa:5f:93:12:04:4e:
         a5:4d:b9:19:4c:70:97:a2:70:db:87:76:6b:5f:46:12:d5:e4:
         f9:49:09:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:30:04 2025 by rpki-client