Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File:                     QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier:          KX2OQyAi6Rohv7G6aSm1+356qTnoBQcBwEqYS78xZgs=
Subject key identifier:   EE:10:F8:D6:20:2E:98:83:63:85:6E:E7:3F:96:C6:94:25:6C:E1:04
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer:       /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial:       01987A5255FADEC996109A100D15720F2B55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number:          1319
Signing time:             Tue 05 Aug 2025 13:01:12 +0000
Manifest this update:     Tue 05 Aug 2025 13:01:12 +0000
Manifest next update:     Wed 06 Aug 2025 13:01:12 +0000
Files and hashes:         1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
                          2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: 6+gG0cWjHDZx459/nUMRY5yJKJL+8++0dTVXQksOHNo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 13:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7a:52:55:fa:de:c9:96:10:9a:10:0d:15:72:0f:2b:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
        Validity
            Not Before: Aug  5 13:01:12 2025 GMT
            Not After : Aug  6 13:01:12 2025 GMT
        Subject: CN=ee10f8d6202e988363856ee73f96c694256ce104
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:c3:62:c3:82:7d:e0:08:f1:38:e3:65:4a:41:
                    80:eb:4f:e8:f2:89:d6:69:59:19:50:8b:da:11:44:
                    47:7f:a7:db:26:1a:44:70:0c:4e:58:62:ed:d7:1d:
                    f0:9f:ee:43:ae:01:5f:c8:19:24:1e:fa:72:d8:af:
                    5d:ee:33:07:d1:eb:99:1d:02:9a:ce:ff:44:6a:f5:
                    2d:04:c2:e1:1f:0c:36:d7:08:5d:be:7f:cf:ae:2b:
                    65:c0:dd:37:7c:49:e6:14:8d:81:b0:02:59:53:98:
                    23:e2:a0:13:b6:91:82:c8:fd:76:e5:31:47:aa:3a:
                    cd:4c:f5:77:e3:29:08:07:d1:f3:ef:a0:8f:a5:7c:
                    68:7b:74:12:04:7c:4b:0d:6c:71:d8:05:a0:88:de:
                    4e:07:33:f7:ee:9e:c5:31:ed:c9:3d:a2:c0:b6:08:
                    40:91:af:1b:76:25:19:fa:5a:18:97:11:33:96:39:
                    51:91:9b:47:4c:78:d2:38:5b:ed:93:a9:25:63:a2:
                    58:41:15:df:99:98:96:7f:02:45:3a:99:58:a1:8c:
                    5f:2b:91:5b:31:a2:0f:98:a0:8b:e5:7c:cd:25:17:
                    d6:f2:ec:05:28:ba:03:0f:70:ae:2e:25:5b:16:7b:
                    e9:01:15:8f:e1:6c:f6:10:07:ce:38:53:06:8f:c7:
                    7a:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:10:F8:D6:20:2E:98:83:63:85:6E:E7:3F:96:C6:94:25:6C:E1:04
            X509v3 Authority Key Identifier:
                keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:e3:4c:3f:f1:a7:77:e1:c6:98:ac:01:07:63:8d:70:5c:bd:
         7b:b4:45:38:8c:a5:e0:bb:59:fb:6c:5a:55:ad:b2:65:db:b5:
         d9:11:46:dc:90:b7:3b:48:23:36:d8:32:81:06:59:61:bf:9f:
         a0:dd:02:af:f1:fb:04:e4:46:f9:21:54:1d:be:1d:0b:9a:7c:
         bd:34:a8:d2:07:e3:82:97:b6:53:ab:e7:92:56:62:58:ce:8d:
         51:84:66:e3:fe:1b:53:23:71:be:c3:f9:2a:6d:3a:22:20:69:
         d3:90:1f:60:be:69:50:c4:5a:b6:2d:74:f0:82:e5:eb:34:d9:
         31:97:ed:d6:0d:28:5f:2e:96:a1:9c:b3:08:4b:2f:11:45:c3:
         f2:a0:51:f7:56:4d:23:66:16:1a:0a:cc:47:69:11:c0:9e:f6:
         d4:f4:3c:03:12:64:64:80:cd:dd:e8:c0:5b:63:7f:9e:03:a2:
         77:3b:1d:0d:d2:08:28:45:45:d5:28:68:65:b7:5f:e4:be:80:
         b5:96:a6:db:02:ca:b3:32:f0:16:d5:6c:36:5b:69:94:6d:10:
         0e:22:93:7a:4c:14:be:93:79:06:3e:cd:2d:8a:e2:f9:08:78:
         e8:9b:c9:17:6c:b5:af:3e:dd:10:ab:01:c5:20:17:ff:cb:2f:
         f2:30:44:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:20:45 2025 by rpki-client