Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File:                     Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier:          kczVZbLORjUzTmbC2Oc5QQFHO+TW+ydOnI/FyCpGSOA=
Subject key identifier:   5B:DA:3D:38:91:BB:73:A3:3F:3E:AF:0F:15:F7:87:BD:DE:FE:53:A1
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer:       /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial:       0198D6981B208ECA215D4830646F0AC156E4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number:          155A
Signing time:             Sat 23 Aug 2025 11:02:29 +0000
Manifest this update:     Sat 23 Aug 2025 11:02:29 +0000
Manifest next update:     Sun 24 Aug 2025 11:02:29 +0000
Files and hashes:         1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: WcPi5moOk4UUiwqoHQOVHDddU2Z4phEasThQWKi0Tck=)
                          2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:98:1b:20:8e:ca:21:5d:48:30:64:6f:0a:c1:56:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
        Validity
            Not Before: Aug 23 11:02:29 2025 GMT
            Not After : Aug 24 11:02:29 2025 GMT
        Subject: CN=5bda3d3891bb73a33f3eaf0f15f787bddefe53a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:84:cf:8e:01:09:64:c0:b6:f7:ba:ad:ca:71:
                    ac:5b:aa:a2:01:44:8b:0c:e0:c2:ea:32:f0:28:b0:
                    f1:da:5e:09:1e:cb:88:91:8d:aa:d2:cf:02:ed:99:
                    da:73:c4:87:61:52:9b:a0:78:91:95:c5:f0:dc:7b:
                    63:35:42:b1:a1:cc:5e:45:de:b8:9b:fb:3c:be:e6:
                    0a:94:4d:a1:c1:a8:47:ba:83:7c:b1:2f:d2:4b:49:
                    a8:2a:a6:d5:11:f7:19:b7:99:ec:97:4e:4d:57:4a:
                    d7:63:85:08:a9:14:38:71:16:41:85:fa:9d:2c:40:
                    92:33:c0:4f:3a:50:0e:51:be:c4:49:6a:60:6d:81:
                    05:f8:56:5a:ab:f9:bd:30:a8:11:f8:64:8a:7f:91:
                    6d:ad:e6:e1:8f:c0:6e:25:47:da:42:7b:1b:0b:a7:
                    fe:25:ec:12:fe:eb:06:98:e8:22:9a:71:2b:c5:0d:
                    82:68:dc:31:d0:33:4d:35:34:2f:71:6f:66:89:ae:
                    82:55:65:2c:e4:be:1e:a2:c8:39:29:ba:e0:84:f1:
                    d6:fa:ee:6a:b9:d6:3b:4b:e7:30:d9:00:83:f9:79:
                    de:92:2c:53:9c:72:8c:da:30:d7:90:d8:6d:82:ec:
                    e8:74:e1:84:08:0a:11:7b:2e:04:16:a9:48:83:44:
                    2c:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:DA:3D:38:91:BB:73:A3:3F:3E:AF:0F:15:F7:87:BD:DE:FE:53:A1
            X509v3 Authority Key Identifier:
                keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:22:c6:15:58:34:fa:32:de:f5:dc:37:96:e1:4c:2f:39:08:
         4c:b6:72:e7:20:d1:03:d6:23:f4:26:0c:02:b0:bf:4e:6f:14:
         83:10:c1:95:3e:b2:6b:56:94:b6:d5:32:59:fe:fc:e2:d1:1c:
         ba:be:68:27:f1:b6:24:47:0c:2d:b3:70:5b:9f:d0:ed:d2:91:
         e3:3f:68:73:41:bf:c2:00:78:3e:8e:7e:a4:70:e5:8c:96:d0:
         46:c0:19:90:99:b7:d5:21:4c:91:ac:7a:c3:db:39:39:fc:41:
         c5:13:d9:ea:2a:6c:dd:4e:7a:0f:25:fd:75:5a:6c:47:a6:e2:
         05:95:e0:a7:22:d6:9d:5e:bf:ff:02:8d:7d:3f:f4:ca:df:03:
         de:bf:e5:dd:35:9f:0c:0f:71:d4:51:6d:81:2d:44:09:9f:71:
         50:ba:2c:d0:fb:0a:c6:c0:ae:5b:19:7b:77:a9:5f:e0:50:53:
         d2:95:b4:bb:13:8c:5c:f9:78:e7:75:01:7c:72:ea:ae:65:e9:
         f9:4e:6c:2b:cd:7e:fd:8d:3c:f2:2b:e1:b0:c4:51:27:74:8b:
         8a:75:87:4e:00:54:84:2a:9d:1b:7a:33:8f:9d:9a:51:bc:d0:
         92:a1:08:73:90:48:6e:5c:9c:c5:e5:c7:ba:bf:32:d9:86:50:
         83:20:34:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:40 2025 by rpki-client