Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
File:                     GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json)
Hash identifier:          hUB+5Zp47cfeaMlB8vXAdsKCDYNvgmIuGTmLCKREkJE=
Subject key identifier:   F5:49:E4:42:D7:B3:F1:FC:A2:D4:00:3D:E8:F8:BB:E4:BA:C8:EB:D9
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Certificate issuer:       /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial:       019A52638A3D9E86EDED7A2540B641DDA371
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
Manifest number:          07E9
Signing time:             Wed 05 Nov 2025 05:00:46 +0000
Manifest this update:     Wed 05 Nov 2025 05:00:46 +0000
Manifest next update:     Thu 06 Nov 2025 05:00:46 +0000
Files and hashes:         1: 5lbTUO-rP5txsV_jlKv3vzS10Vc.roa (hash: VgScyBVTOIb/scuSoZmb+259XQHu/6r7pBA0Gc4Wdqs=)
                          2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: vXGyV5bvcsXpr2lmu7tUO9qzIGKn2nDuQYC7v0b09AQ=)
                          3: RR-wG56YXYGUEbsQFd9GOjHnKvM.roa (hash: eG7mgkU6tN6hBwmEUuDYJD2Lxu/DlOxJUe50nzg9em4=)
                          4: TdRFPSiE6z0QGX9lW2WUDs-qrvc.roa (hash: uIOA5ClG5A+YjWezToN8AYQViV6aWN3VOQLxA91W/R8=)
                          5: W9jLQPfJ-gf7W45fE6xy024pvso.roa (hash: myRMJIwFBs9jjITp4SZwdlJzPIPHFfsrLal6I49sinM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 06 Nov 2025 03:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:52:63:8a:3d:9e:86:ed:ed:7a:25:40:b6:41:dd:a3:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
        Validity
            Not Before: Nov  5 05:00:46 2025 GMT
            Not After : Nov  6 05:00:46 2025 GMT
        Subject: CN=f549e442d7b3f1fca2d4003de8f8bbe4bac8ebd9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:89:75:22:28:53:5a:5e:ad:ec:06:b0:b0:19:
                    b3:43:73:3f:02:dd:cc:8a:d4:ec:06:9f:61:ed:6f:
                    a1:0d:93:bf:77:55:dd:02:a7:95:76:30:b8:fd:ad:
                    13:4d:e4:bf:d2:a5:8a:53:90:db:bd:f5:69:12:94:
                    ed:6c:2f:87:88:ef:d2:5e:c9:da:25:15:9b:b1:92:
                    78:22:46:28:2c:44:49:22:b3:d4:9b:9e:ea:32:59:
                    49:76:f8:89:ea:7c:4c:af:24:9f:3c:d5:6a:fa:e1:
                    8a:38:3e:45:a2:59:f2:48:39:59:3a:c6:6f:4d:ac:
                    51:c0:02:26:84:28:f4:45:ac:61:a2:44:2c:0a:b8:
                    35:3c:c8:96:4e:3d:a5:43:47:78:f0:42:83:c5:2d:
                    28:9d:3b:d3:8c:82:8b:c7:a9:9a:2b:77:8c:4c:55:
                    59:1c:0a:78:85:5f:90:c9:4c:51:5e:00:05:19:a9:
                    aa:a4:a2:f3:ba:2f:b5:13:77:e2:1c:58:99:6c:e8:
                    98:97:e3:6f:70:72:2a:fd:d0:86:f2:5d:77:85:74:
                    c9:da:cb:80:18:03:3d:b6:ac:bb:0e:b2:35:f3:ab:
                    cc:5f:65:ef:17:f7:49:85:52:5d:6f:48:7e:45:b4:
                    22:7e:f7:1d:ba:31:a7:be:b1:d7:85:b7:36:a4:4b:
                    46:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:49:E4:42:D7:B3:F1:FC:A2:D4:00:3D:E8:F8:BB:E4:BA:C8:EB:D9
            X509v3 Authority Key Identifier:
                keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:ce:d9:b2:15:02:05:ac:af:51:4b:80:c1:e5:56:83:c3:a8:
         f1:f8:3e:30:3f:58:b4:97:af:3f:db:c6:6b:65:1e:0a:4c:39:
         22:11:9d:8f:52:6e:ce:39:0a:c0:4f:79:4d:dd:14:35:f5:af:
         0d:3b:5a:21:c3:e5:33:db:fc:e4:c1:7a:30:27:77:79:5d:9f:
         b1:2b:72:99:13:bb:aa:0b:19:c6:e2:49:98:ba:e1:48:13:04:
         d7:cb:11:b5:73:d3:7c:18:1a:57:45:b4:31:5a:86:25:ce:38:
         b7:7c:82:49:95:91:fe:de:20:2b:32:b7:3a:3b:b4:e9:4c:f0:
         aa:4e:c3:dd:96:76:32:9b:12:52:db:ad:2b:c5:f1:f9:06:8d:
         79:9c:26:48:7d:a0:8f:a1:04:4f:25:51:6d:0b:ed:af:25:19:
         3e:21:f5:02:a9:03:32:17:84:24:20:2f:b1:4e:c4:44:52:f4:
         fb:3f:cc:de:5c:44:80:e2:60:fc:28:67:8f:24:38:8c:5f:c4:
         bc:7e:4a:54:ac:f2:3b:23:8e:fe:c7:60:ff:ba:84:02:89:c6:
         c9:f7:b9:08:b4:72:0a:64:07:a8:1f:6a:86:de:e5:81:82:e3:
         49:40:2d:34:70:8e:f8:e9:ed:f3:b4:cc:4c:b1:cf:19:1d:b8:
         26:62:9e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:26:10 2025 by rpki-client