Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
File:                     AUI61NYpsvgot58ArEA4jje44lI.mft (raw, json)
Hash identifier:          TKHrkRMELyMjgz3AH1vbPn6RWxEv+ZoE3bFStqbNn30=
Subject key identifier:   85:05:E8:BA:64:22:2D:82:10:E5:68:51:74:34:77:B6:0D:E7:56:1F
Authority key identifier: 01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
Certificate issuer:       /CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Certificate serial:       0199FB0EB84B6FD6CA522EA165A50F9B09C8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
Manifest number:          1316
Signing time:             Sun 19 Oct 2025 06:01:09 +0000
Manifest this update:     Sun 19 Oct 2025 06:01:09 +0000
Manifest next update:     Mon 20 Oct 2025 06:01:09 +0000
Files and hashes:         1: AUI61NYpsvgot58ArEA4jje44lI.crl (hash: TNCnGKLLyfeP49QceOBGqwbOcpIebHWWQaf+WXcnSj8=)
                          2: ibDNoVPt_SWuF1TTYGcbR_ptYMU.roa (hash: ul6C7Hw2mOMrIR7JJ3pVvWUBrEsSVBHfGtaoivQYtXM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:0e:b8:4b:6f:d6:ca:52:2e:a1:65:a5:0f:9b:09:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01423ad4d629b2f828b79f00ac40388e37b8e252
        Validity
            Not Before: Oct 19 06:01:09 2025 GMT
            Not After : Oct 20 06:01:09 2025 GMT
        Subject: CN=8505e8ba64222d8210e56851743477b60de7561f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:85:f0:ec:bc:41:c1:5e:d3:18:aa:97:5f:6e:
                    59:31:f5:cd:e7:e6:72:c0:75:29:8a:24:2a:90:17:
                    e2:ac:55:d7:dd:59:b3:12:77:e8:c6:36:67:5d:66:
                    14:5e:c1:ad:bc:93:44:61:cc:5f:24:26:ea:2f:ec:
                    2f:e6:90:47:ad:cf:ec:e7:d2:bb:5a:55:91:4e:d7:
                    d5:cb:66:c9:95:d5:60:26:0c:23:06:e1:a0:f0:1b:
                    e0:2a:d0:cf:58:f1:21:94:7c:f2:54:9c:76:d7:f2:
                    07:72:ff:02:8b:7b:54:f7:f9:77:92:51:8c:5f:54:
                    6d:81:45:03:6c:a4:ad:20:8a:f7:7a:a8:af:73:c7:
                    0e:77:e6:34:1a:cf:73:ab:1d:3e:b8:19:f3:c7:2d:
                    ef:23:ff:c2:ab:44:bc:05:a6:36:71:63:50:96:05:
                    88:e3:d2:a8:40:c1:47:06:c3:9a:77:5e:e5:67:50:
                    e1:81:13:73:1b:87:8e:aa:4d:27:d0:72:fa:bd:22:
                    d1:55:87:3b:14:1f:11:10:b8:4a:c5:f0:56:02:ea:
                    2a:e2:0a:72:ba:02:f1:dd:a0:84:d3:40:86:f0:3f:
                    e3:dd:e4:bc:43:9e:c9:94:40:ee:95:44:6a:54:2a:
                    f4:6a:d1:cd:65:fa:8a:3d:ba:fe:72:0a:58:76:3b:
                    81:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:05:E8:BA:64:22:2D:82:10:E5:68:51:74:34:77:B6:0D:E7:56:1F
            X509v3 Authority Key Identifier:
                keyid:01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:4b:ab:f5:69:9d:d4:7a:dd:72:7e:ee:1d:f1:1a:7e:55:e6:
         74:50:15:62:63:92:4b:ff:a0:ab:a5:e4:76:e8:19:f8:f7:eb:
         65:1e:4d:2d:c2:86:16:b9:87:46:c7:a7:52:fe:10:c2:6f:cd:
         ce:03:f8:12:84:be:d0:85:d3:16:09:1b:6a:33:43:60:3f:5f:
         f2:11:7a:65:44:42:c6:28:28:df:72:f9:3a:70:5a:ca:56:b3:
         db:69:a3:8d:b4:20:a0:eb:02:89:7b:46:b9:6d:75:cf:94:42:
         12:76:ae:d3:73:fb:b4:eb:db:19:d3:a5:bf:28:d7:76:62:86:
         f8:45:6e:bb:5a:97:ad:52:58:13:24:3c:02:71:89:c4:63:77:
         ba:cc:36:1e:68:7e:ae:8a:0e:6c:a9:d5:0a:c2:68:75:07:04:
         7e:57:a4:cb:ca:10:38:76:0c:bc:48:23:93:33:e0:6d:ae:52:
         6d:ad:ea:15:08:95:90:66:6b:a1:20:36:e4:eb:6f:19:d7:36:
         40:08:9b:1d:25:c9:ed:fd:f4:27:f4:74:e4:fc:16:5c:f2:88:
         4e:0d:c9:de:ab:90:9c:c1:62:c2:d7:60:52:16:28:88:5b:a2:
         c2:b2:36:81:3d:e8:c9:41:ac:2a:fb:08:3d:4f:77:9e:51:70:
         54:b0:4e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:22 2025 by rpki-client