Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
File:                     v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json)
Hash identifier:          RP+GHvdLSHyw0wUQ1Ws9znyRlOakvSZ5XorvZEvDB6k=
Subject key identifier:   2B:22:2F:1F:54:50:E8:A7:76:93:0E:7E:C7:3C:05:B3:E7:26:22:F9
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Certificate issuer:       /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial:       01987419316C4576626BA88C4B42622E01BD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
Manifest number:          1052
Signing time:             Mon 04 Aug 2025 08:01:04 +0000
Manifest this update:     Mon 04 Aug 2025 08:01:04 +0000
Manifest next update:     Tue 05 Aug 2025 08:01:04 +0000
Files and hashes:         1: 5XEV-gEMIErGK0axVAW_a3kFgdQ.roa (hash: zrBYoY+XDrWBTYUlEabBJW1Q13TMvp0kauzANBjQtoQ=)
                          2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: 4nzHjkXQ9DmGdKjn3FYT772/GRLVFTL5pzEVZUzOBWI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 08:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:19:31:6c:45:76:62:6b:a8:8c:4b:42:62:2e:01:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
        Validity
            Not Before: Aug  4 08:01:04 2025 GMT
            Not After : Aug  5 08:01:04 2025 GMT
        Subject: CN=2b222f1f5450e8a776930e7ec73c05b3e72622f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:e8:1e:86:23:69:02:8c:cd:bc:c3:65:7a:72:
                    6e:ce:f7:3f:b4:ce:c7:8c:17:6c:53:d2:de:54:1d:
                    22:c6:95:22:a7:9b:e5:d1:ae:09:4b:0f:92:77:b0:
                    e9:f7:3d:38:85:ee:f1:05:31:1c:ab:5a:6d:94:88:
                    ff:5b:07:97:6c:6e:48:3a:0f:53:89:cb:2d:33:e8:
                    ad:7b:b2:88:a3:91:39:9d:ab:26:e9:e0:14:79:6e:
                    03:67:41:5f:cd:a9:55:9a:a2:35:79:42:96:a3:cb:
                    8e:ed:e5:bc:13:8c:d5:89:c0:4e:c3:8a:40:40:d9:
                    b0:a8:9b:97:54:a7:b9:4f:7c:24:51:cb:36:5c:c6:
                    00:1c:bf:9b:57:89:e9:50:13:2f:ba:8c:c1:6b:8c:
                    0e:67:e9:84:d6:21:0c:70:f7:08:32:86:62:28:9e:
                    0d:a6:80:a9:26:c4:e2:eb:e9:fb:61:cb:c3:de:da:
                    20:c1:37:53:2e:71:90:19:2f:ff:68:8b:24:4b:c9:
                    09:80:9b:71:1c:7e:19:32:a6:17:08:0b:b4:08:a1:
                    51:80:7b:d5:e1:df:c3:e2:f3:99:3f:de:1f:fa:d8:
                    9d:ac:31:d2:78:0b:ad:c7:1d:9b:e7:63:cd:00:3a:
                    d2:4d:1f:1d:4b:bd:87:78:58:48:26:64:ba:3b:81:
                    c5:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:22:2F:1F:54:50:E8:A7:76:93:0E:7E:C7:3C:05:B3:E7:26:22:F9
            X509v3 Authority Key Identifier:
                keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:3c:2c:58:77:22:c5:50:7d:62:eb:d6:64:a0:6f:10:39:ea:
         8f:e3:3b:7d:dd:a6:84:d4:69:12:bd:68:a5:c9:fb:44:17:11:
         f1:86:a5:65:52:b4:77:ef:b6:d4:47:46:8b:eb:ff:ad:6b:a5:
         4d:d3:03:43:16:a9:0b:ca:19:a3:46:11:8c:c9:9f:b6:dd:d5:
         70:c8:49:74:2e:fb:15:1e:30:67:14:bd:f7:d7:f1:28:61:14:
         3a:e3:12:ef:54:68:20:31:c0:eb:a8:d3:f9:f9:c6:3d:17:44:
         52:38:76:4e:d7:a3:6c:66:c0:d8:f6:3d:59:19:5f:26:86:6d:
         d7:82:1b:73:32:e4:e6:ae:5c:1b:68:76:29:c5:6f:0d:3f:e7:
         87:35:a8:04:96:7f:05:05:cb:11:53:29:c9:15:b5:e1:6b:3b:
         46:40:76:05:a0:5a:a4:ef:d5:70:83:16:38:83:93:5b:fb:b6:
         d3:44:81:9b:fb:6c:de:07:4b:af:80:f4:25:8b:a8:a8:c1:f0:
         36:97:6c:b4:b5:7a:f9:bd:5b:6e:3d:ef:c3:36:6f:c7:e5:92:
         67:a9:ec:f6:8f:80:c0:23:e4:53:be:8c:8e:d8:4a:2b:c9:3d:
         96:fd:ce:fd:10:f3:cf:88:1e:8f:5f:46:57:3f:ff:df:4a:2c:
         d9:c8:f8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:35 2025 by rpki-client