Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File:                     t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier:          5OSua6EwAx9sueb6P/ifVC0yQw92FbFXPF3sf3XXKa0=
Subject key identifier:   8A:53:0B:8B:53:55:51:87:70:2A:3F:CD:C1:F6:37:E3:96:47:C2:7E
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer:       /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial:       0198D65F4E74817E6F0D7E7BCC4CB0128D73
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number:          1108
Signing time:             Sat 23 Aug 2025 10:00:26 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:26 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:26 +0000
Files and hashes:         1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
                          2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: L7RgNCpqDlXNsixmsDeOXFjEVL2+sjD/IWxXW9s4muc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:4e:74:81:7e:6f:0d:7e:7b:cc:4c:b0:12:8d:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
        Validity
            Not Before: Aug 23 10:00:26 2025 GMT
            Not After : Aug 24 10:00:26 2025 GMT
        Subject: CN=8a530b8b53555187702a3fcdc1f637e39647c27e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:06:fb:7d:f7:df:9c:d5:ac:c7:1c:df:9a:36:
                    48:c8:a2:8c:84:15:50:d5:d6:e7:a4:87:78:3a:4a:
                    82:ef:c9:fc:14:9b:69:ec:8a:ff:47:44:0e:f6:93:
                    77:11:28:4a:76:ee:76:65:45:bc:e4:48:ce:75:33:
                    90:c0:99:a5:ab:b3:31:e4:3b:40:bd:5b:2a:94:98:
                    91:14:af:13:29:51:d0:bb:64:78:0a:86:fe:c0:f2:
                    0b:fb:ce:43:5b:02:dd:6b:7c:f6:ab:14:9e:e1:c6:
                    cb:dd:84:3d:cb:ec:82:74:e2:9c:21:b3:64:c1:50:
                    b6:28:e7:9d:ec:3e:7b:96:8f:6b:21:f3:29:22:38:
                    5b:9c:71:d8:32:a3:da:1b:9c:a3:ae:1a:91:7e:2b:
                    f9:e5:cf:f6:50:b9:44:4d:4e:5a:27:c5:60:98:b8:
                    6e:99:51:12:2f:fc:df:98:45:e8:54:43:c0:08:72:
                    d0:3d:96:65:50:38:fc:14:f4:09:76:73:a3:af:f0:
                    23:e0:5a:e0:a9:f7:a3:16:11:0b:27:69:28:82:f5:
                    fe:e8:f0:31:3d:94:84:29:de:89:fb:29:4e:e3:5a:
                    d3:cf:7f:dc:84:db:67:8d:e5:76:97:fb:5a:52:09:
                    fa:cc:1d:73:dc:ae:1d:38:c1:fb:14:9c:ea:f3:a7:
                    42:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:53:0B:8B:53:55:51:87:70:2A:3F:CD:C1:F6:37:E3:96:47:C2:7E
            X509v3 Authority Key Identifier:
                keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:d7:6a:d1:69:f2:34:d1:a6:33:c1:ef:6d:d6:f9:b4:93:a5:
         91:e4:af:d7:d6:a6:42:aa:c4:45:de:ed:37:07:65:9c:a5:7f:
         1e:19:97:cf:5c:aa:cc:f0:1c:5a:40:ac:88:91:58:b8:c5:c1:
         34:8a:bb:6f:ad:59:9a:8c:42:c0:3e:cd:92:ec:f8:ce:d7:f9:
         9c:89:7f:2a:4e:45:62:0c:5a:82:0d:8f:7b:ed:94:41:bc:f0:
         7b:7f:79:ae:13:5c:c7:52:02:9d:47:63:84:09:c7:76:6c:07:
         8a:c1:b4:6e:8f:5d:90:c6:80:8e:d7:45:2c:fd:9b:65:f0:7a:
         cf:48:5b:21:a4:a7:0e:c2:ae:8c:30:6c:09:e4:72:9f:63:93:
         9e:c8:91:e9:42:1e:c4:af:98:9e:02:70:b2:32:ca:74:2e:ca:
         37:ed:7b:97:71:d3:fc:15:1e:86:1a:59:4f:d5:a5:0a:4f:de:
         47:42:6e:a8:25:78:df:3a:65:f3:a4:b4:fc:ce:f5:81:2f:be:
         2a:60:d1:2c:21:8e:06:2f:ea:a5:83:63:95:e0:ff:04:35:98:
         58:ff:d1:d5:f1:ad:ca:99:f7:58:6f:65:47:47:49:9d:13:1e:
         6f:22:84:23:bb:49:36:ac:ed:5e:47:57:b5:72:a5:cb:b4:d2:
         03:6a:2a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:02:03 2025 by rpki-client