Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
File:                     aDLDLSJZATmRJg1TDZEgAxqu_NA.mft (raw, json)
Hash identifier:          zOoby4zWovqDKl9IrN+FPh8ehlaIWguQNiJFBKmGUcQ=
Subject key identifier:   DE:F6:37:50:EE:A4:28:2B:F4:43:19:78:6F:48:81:99:DC:6E:04:9A
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Certificate issuer:       /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial:       0198756267A3647BE907BF02EC19A69B286F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
Manifest number:          0BB7
Signing time:             Mon 04 Aug 2025 14:00:39 +0000
Manifest this update:     Mon 04 Aug 2025 14:00:39 +0000
Manifest next update:     Tue 05 Aug 2025 14:00:39 +0000
Files and hashes:         1: 1-oXSUr0wwWM6bUdeuL56OFYZDI0.roa (hash: ncbwn+oJ9xxudk0G2RRlfn6p7YnDM2Topv72cCblM78=)
                          2: aDLDLSJZATmRJg1TDZEgAxqu_NA.crl (hash: rDLnzGBkrPzZ77Mh/IXJW1z7yiFxSTrgBVXgxfxfsY4=)
                          3: cEY4_oxa006P5RDwnA1ZzqFve_U.roa (hash: aljeYfMZh5A8r1hZ1ho6VGSZLpMMc/WsIq8gaCshO9A=)
                          4: h7Gclrhu6SOaWvFbiHElhAwE2xc.roa (hash: hHmeLevnWBoLoCenM/A/c8Y0QgQSSX5DM+SnErFkEgU=)
                          5: nTupOLnysHIU3jc5GcaguEHrGzQ.roa (hash: 7rA+K1p/TVuAVfQm4S6Vm6UJX0egR9dZCIKwnWvWs6k=)
                          6: nnxeUU87S1Fex4eT1VyslsBsqEs.roa (hash: reRLOJZlJItgnmYvk5ziSo/wJ6dbsJIWZ7vz95Z6+9Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:75:62:67:a3:64:7b:e9:07:bf:02:ec:19:a6:9b:28:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
        Validity
            Not Before: Aug  4 14:00:39 2025 GMT
            Not After : Aug  5 14:00:39 2025 GMT
        Subject: CN=def63750eea4282bf44319786f488199dc6e049a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:c8:9b:b4:cb:dc:be:49:88:70:08:a0:d7:69:
                    8d:aa:8a:af:f9:d3:a2:8b:19:5b:04:14:e1:5a:27:
                    c9:ac:cd:92:34:53:52:08:2d:41:f0:4b:29:bb:92:
                    b5:a9:c0:15:40:83:2b:44:1b:4e:48:05:a1:7e:76:
                    a1:70:ed:60:17:f5:2e:d9:6a:31:9d:1b:76:47:37:
                    a5:e0:51:e4:32:f5:fe:2e:7d:92:31:9e:3d:2b:b5:
                    59:6d:d2:4a:a2:ab:d7:35:fa:d3:5f:41:73:1c:ce:
                    7e:33:2d:01:bb:32:bc:17:fb:00:89:fa:21:bf:72:
                    2c:f2:e0:f2:19:42:f8:15:93:f5:46:74:f0:40:80:
                    dc:2d:3b:fb:c2:36:83:e3:81:a9:5a:d2:b5:69:8a:
                    09:f6:fe:fd:95:8d:4c:23:75:28:4e:45:02:26:78:
                    e1:7f:c9:44:21:ff:25:65:c4:03:d2:a3:70:ed:3e:
                    f7:ec:45:cf:2d:96:77:10:2c:dd:56:73:95:cc:c1:
                    35:dd:76:6d:50:4c:00:df:f7:77:b6:2f:9f:06:d3:
                    3b:1d:3c:b7:b8:bb:cf:8c:8a:1b:91:62:9b:c7:5f:
                    43:64:6b:f9:9f:f0:c9:d5:7c:e9:dd:02:6b:cf:a0:
                    18:86:cd:86:64:f6:25:1a:8a:c3:aa:d8:de:6b:bb:
                    00:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:F6:37:50:EE:A4:28:2B:F4:43:19:78:6F:48:81:99:DC:6E:04:9A
            X509v3 Authority Key Identifier:
                keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:69:70:4e:3f:22:e2:8e:b3:04:a8:fe:13:64:f5:f6:5d:d0:
         94:ee:22:5e:52:98:8c:6c:c0:57:b5:ea:54:17:34:d8:f7:e9:
         ae:cd:b3:8e:04:e6:b0:7e:b7:ec:53:33:84:7d:de:9a:9d:b0:
         cc:df:7a:dc:8c:c4:6f:c2:8e:4c:6f:f5:36:65:0d:5f:9b:cf:
         41:0c:e6:56:d5:dd:3f:77:5d:97:8f:f4:45:8a:bf:cd:0f:4e:
         8a:cc:55:ac:90:cb:d8:91:83:75:69:bb:84:56:37:11:2c:0e:
         ca:e3:fe:84:64:6f:9c:27:38:08:e8:60:17:5a:07:6d:e5:d6:
         19:42:0d:f8:47:11:4c:77:b6:eb:2f:e5:48:2c:53:e2:8c:ae:
         63:23:71:eb:97:26:b5:d6:45:c7:47:24:56:53:95:c1:06:63:
         0c:aa:3b:7a:68:27:be:9b:63:20:19:8e:eb:e4:81:f3:62:9d:
         10:87:0e:df:c4:0c:a2:9f:7f:21:74:7d:b8:34:bf:bd:6b:d2:
         14:f0:d7:6a:73:01:fb:9d:19:71:79:f2:48:52:11:b7:6f:2b:
         7b:4b:6c:29:73:78:00:f7:d9:a7:02:d7:53:f8:da:90:4f:39:
         69:bf:33:3b:57:8b:dc:bc:8a:d5:66:85:74:6f:78:05:d4:1f:
         a6:28:55:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh1YmejZHvpB78C7BmmmyhvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzJjMzJkMjI1OTAxMzk5MTI2MGQ1MzBkOTEyMDAzMWFh
ZWZjZDAwHhcNMjUwODA0MTQwMDM5WhcNMjUwODA1MTQwMDM5WjAzMTEwLwYDVQQD
EyhkZWY2Mzc1MGVlYTQyODJiZjQ0MzE5Nzg2ZjQ4ODE5OWRjNmUwNDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcibtMvcvkmIcAig12mNqoqv+dOi
ixlbBBThWifJrM2SNFNSCC1B8Espu5K1qcAVQIMrRBtOSAWhfnahcO1gF/Uu2Wox
nRt2Rzel4FHkMvX+Ln2SMZ49K7VZbdJKoqvXNfrTX0FzHM5+My0BuzK8F/sAifoh
v3Is8uDyGUL4FZP1RnTwQIDcLTv7wjaD44GpWtK1aYoJ9v79lY1MI3UoTkUCJnjh
f8lEIf8lZcQD0qNw7T737EXPLZZ3ECzdVnOVzME13XZtUEwA3/d3ti+fBtM7HTy3
uLvPjIobkWKbx19DZGv5n/DJ1Xzp3QJrz6AYhs2GZPYlGorDqtjea7sAwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN72N1DupCgr9EMZeG9IgZncbgSaMB8GA1UdIwQY
MBaAFGgywy0iWQE5kSYNUw2RIAMarvzQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85NGI2NmUtM2UwZC00MzMyLWFiNGYt
NzcwZjhlYWIyYWU3LzEvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85NGI2NmUtM2UwZC00MzMyLWFiNGYtNzcwZjhlYWIyYWU3
LzEvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATWlwTj8i
4o6zBKj+E2T19l3QlO4iXlKYjGzAV7XqVBc02Pfprs2zjgTmsH637FMzhH3emp2w
zN963IzEb8KOTG/1NmUNX5vPQQzmVtXdP3ddl4/0RYq/zQ9OisxVrJDL2JGDdWm7
hFY3ESwOyuP+hGRvnCc4COhgF1oHbeXWGUIN+EcRTHe26y/lSCxT4oyuYyNx65cm
tdZFx0ckVlOVwQZjDKo7emgnvptjIBmO6+SB82KdEIcO38QMop9/IXR9uDS/vWvS
FPDXanMB+50ZcXnySFIRt28re0tsKXN4APfZpwLXU/jakE85ab8zO1eL3LyK1WaF
dG94BdQfpihVEQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:57:29 2025 by rpki-client