Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
File:                     kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json)
Hash identifier:          DGaNE0XbBvkhtt+Lbk35b5hMloZC4uG80ojWzTk3kcQ=
Subject key identifier:   E9:20:36:CA:2F:57:E5:97:AD:8E:51:D1:2A:C6:84:11:4F:0B:2D:B5
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Certificate issuer:       /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial:       01988B105EF0143F7B490C463BF1B22224A0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
Manifest number:          1626
Signing time:             Fri 08 Aug 2025 19:02:42 +0000
Manifest this update:     Fri 08 Aug 2025 19:02:42 +0000
Manifest next update:     Sat 09 Aug 2025 19:02:42 +0000
Files and hashes:         1: E7tuzODCvj1Y4rQf0ix9lEI7vNs.roa (hash: 7tjdPPhW07eifJoW12vu1rvxuuaPJc8oBZTFD5/C/EY=)
                          2: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: eqkpW8c8ISTcHQAfudsjbZ5sE2e/sJIN3nBaAhBvmuo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 19:02:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:10:5e:f0:14:3f:7b:49:0c:46:3b:f1:b2:22:24:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
        Validity
            Not Before: Aug  8 19:02:42 2025 GMT
            Not After : Aug  9 19:02:42 2025 GMT
        Subject: CN=e92036ca2f57e597ad8e51d12ac684114f0b2db5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:70:55:20:77:8f:43:e4:d3:08:c0:f5:05:14:
                    0e:69:d9:26:6a:92:05:7e:54:86:9c:ae:54:82:bc:
                    c1:e1:4c:9e:5f:5e:17:67:fd:f0:82:f1:1d:45:0d:
                    c9:9d:3b:c4:95:97:90:a2:fb:29:0c:47:18:2a:f2:
                    9a:b7:16:2d:f5:60:77:22:25:6e:35:f4:c4:4b:34:
                    1a:c3:09:7e:97:f5:e2:bd:da:06:a1:7b:c9:ec:3f:
                    ad:32:cb:7a:2e:b2:97:ce:ab:4d:02:84:14:e4:c0:
                    91:35:64:d0:5e:e5:b2:a9:52:ce:e5:17:e1:84:7f:
                    ad:bb:ab:71:33:1a:f1:36:c8:fd:a0:c3:2e:e5:59:
                    eb:b8:5e:88:e6:b5:5f:79:10:87:d4:5d:a1:59:94:
                    16:84:b0:87:a6:ea:f4:23:c8:29:cf:e5:7b:d6:01:
                    99:a6:e6:30:42:52:80:72:2c:1f:8f:f2:17:4a:b2:
                    31:d2:ea:6e:7e:80:54:4a:34:40:63:a7:af:17:70:
                    0a:a0:29:85:a1:cf:d4:54:a1:49:3e:68:c3:a9:1d:
                    40:ea:b4:d8:ec:b2:5e:41:fc:0b:b9:16:61:80:87:
                    10:24:81:3c:6b:c6:d5:b5:d4:d5:0b:77:56:90:a3:
                    20:fa:4a:50:29:b3:93:e5:a1:9a:cb:34:1e:e7:66:
                    62:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:20:36:CA:2F:57:E5:97:AD:8E:51:D1:2A:C6:84:11:4F:0B:2D:B5
            X509v3 Authority Key Identifier:
                keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:88:39:27:aa:a1:5f:19:6c:77:36:76:42:98:e8:42:13:ba:
         4f:67:a3:ee:5b:94:85:f3:8b:41:77:02:91:ed:58:fd:50:19:
         d3:83:a9:58:70:17:03:a3:69:5f:3a:3e:7b:ea:5a:8a:fd:34:
         e5:8c:a1:4c:fe:d1:69:9d:dc:7c:9d:7c:6e:a2:ac:1f:0a:1d:
         f5:97:87:aa:90:22:7c:cb:89:6a:8d:5d:35:94:20:6b:5a:2f:
         d2:5f:bf:5c:3c:bb:43:f4:b7:80:00:4d:1c:9b:9d:10:a1:b5:
         a5:6f:be:94:ae:3b:32:da:e7:df:f7:a8:6e:30:13:64:10:8e:
         71:40:09:3e:c6:4a:96:1f:17:9c:cb:cb:ac:15:cc:74:2f:7c:
         19:85:30:38:38:ec:0e:8f:7c:20:a5:df:c9:8b:6b:dc:2a:f4:
         e7:01:43:33:ba:d8:fa:7a:96:71:4a:f6:81:30:d1:4b:f7:e2:
         6b:9c:a1:3f:ad:b2:20:b8:84:c1:b8:ee:7b:36:5b:14:12:38:
         41:ff:84:24:ed:19:f1:e3:8f:d0:e8:a9:96:a7:67:94:76:f9:
         f4:3c:bb:44:81:6b:a4:cc:38:a9:02:73:c1:a1:e3:5c:f4:14:
         f9:cf:83:e0:88:c5:6e:6b:c5:d0:e1:97:cc:4e:70:a7:32:cb:
         0f:cf:e9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:27 2025 by rpki-client