Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
File:                     EDfew086MutlAvFmKoKiD4teohw.mft (raw, json)
Hash identifier:          z3qHEJb7c4Q3+Ne/4a5xgyh8VrHbStqPahX4NDgCMfk=
Subject key identifier:   A6:77:D2:DD:3B:60:CA:53:E0:07:EE:86:F8:A9:82:0B:E2:F7:03:BB
Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C
Certificate issuer:       /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
Certificate serial:       0199FC5886C41F7EA2943424F7D9A776EFE0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
Manifest number:          16E0
Signing time:             Sun 19 Oct 2025 12:01:24 +0000
Manifest this update:     Sun 19 Oct 2025 12:01:24 +0000
Manifest next update:     Mon 20 Oct 2025 12:01:24 +0000
Files and hashes:         1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: CIv6pX9uG5PqBs4fJoSg6WkEKZiategMmWJ4YuFSKQs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:58:86:c4:1f:7e:a2:94:34:24:f7:d9:a7:76:ef:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
        Validity
            Not Before: Oct 19 12:01:24 2025 GMT
            Not After : Oct 20 12:01:24 2025 GMT
        Subject: CN=a677d2dd3b60ca53e007ee86f8a9820be2f703bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:a5:81:85:7f:6a:f8:0e:36:c0:be:49:60:f7:
                    d1:d4:8f:ea:4c:f2:57:9c:15:99:6d:99:0c:5f:e0:
                    25:23:32:48:32:d0:88:f3:69:3f:cf:f3:5c:a6:4e:
                    fe:ca:c3:f3:c8:91:52:97:04:3b:1c:47:c2:96:de:
                    1d:5e:2f:73:89:4b:4b:d8:c5:3f:2c:2e:ae:7a:07:
                    ea:27:1d:43:5b:fd:31:ec:3e:2c:fe:cd:f0:ea:4a:
                    f7:15:69:4f:97:9d:2c:11:4c:f2:95:e8:ef:2d:1a:
                    6c:cc:57:de:fd:6d:e1:0b:96:41:4a:5b:1f:53:71:
                    e6:2f:18:59:4c:d4:5e:73:0b:a7:fc:69:59:06:d4:
                    66:65:64:12:dc:68:36:e2:35:5c:5e:2e:e8:ce:08:
                    b6:ce:a9:0d:6f:44:81:07:f6:15:31:f6:c6:e6:ec:
                    51:1a:7e:88:9b:60:84:b0:c3:bf:42:ba:80:02:f7:
                    a5:71:95:f4:cc:70:bb:e9:cc:38:da:83:77:0e:06:
                    ca:a0:43:59:a2:f3:fc:63:73:38:18:52:fd:61:a3:
                    56:37:12:38:8a:6d:9c:30:c8:2c:3c:90:8c:36:88:
                    ce:b3:fb:d8:c4:74:6e:73:f4:6d:d7:71:f7:d4:32:
                    de:db:eb:a2:a1:82:31:fd:fc:98:3f:47:1c:33:7d:
                    1a:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:77:D2:DD:3B:60:CA:53:E0:07:EE:86:F8:A9:82:0B:E2:F7:03:BB
            X509v3 Authority Key Identifier:
                keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:07:08:c4:d9:e5:05:51:71:1e:84:05:84:d9:4d:9d:bf:5e:
         fa:76:da:f7:b5:ec:d9:c9:7d:17:c9:87:69:91:6a:bd:c9:ac:
         32:d8:c0:bb:aa:1f:16:79:13:6a:02:dd:14:68:ad:3a:6d:57:
         51:8b:09:f9:34:01:67:08:4d:c1:44:3e:eb:68:bc:01:53:c3:
         cc:32:da:58:ff:43:da:5d:24:f9:cc:a9:f2:e8:f6:d4:3b:80:
         fa:16:0c:44:da:7f:ae:fc:c2:71:c9:cb:4b:68:d4:a8:aa:9f:
         ec:ee:3e:0a:e6:0d:dd:c8:77:23:09:0d:33:6c:74:b4:3c:67:
         71:4e:ac:64:a1:3d:72:05:0c:d6:43:ec:45:22:5a:79:26:56:
         dd:e6:13:79:f2:72:d1:a6:68:f7:33:54:47:5c:64:17:2f:af:
         3f:d5:3d:25:47:96:cd:c9:85:66:f7:c6:16:71:ea:f0:33:d1:
         f0:23:d3:2c:85:9d:af:7e:35:9b:4a:79:ea:d2:1f:e8:70:68:
         70:79:dc:1f:0c:09:be:fb:4a:0b:35:5e:38:d8:09:a3:d6:0c:
         a6:c6:c8:6c:23:8c:60:87:c5:e4:01:ae:05:bb:22:aa:08:ff:
         6a:37:a7:d3:ae:9d:99:90:cd:9e:38:bc:39:6d:10:65:f9:56:
         dd:fa:e7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:54 2025 by rpki-client