Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft
File:                     ULhDqNkbFYJOYOLNaJpvRR4lal4.mft (raw, json)
Hash identifier:          Kt4TrAWNdySUMPBeyTTiSBcbenqniBNQoKBrNGo5Lwo=
Subject key identifier:   52:91:44:09:F1:1E:49:5E:F4:99:09:C4:23:16:65:9F:C8:26:70:41
Authority key identifier: 50:B8:43:A8:D9:1B:15:82:4E:60:E2:CD:68:9A:6F:45:1E:25:6A:5E
Certificate issuer:       /CN=50b843a8d91b15824e60e2cd689a6f451e256a5e
Certificate serial:       0198D5F19FB5A10B92256256CD8156B7ECC3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ULhDqNkbFYJOYOLNaJpvRR4lal4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft
Manifest number:          03BB
Signing time:             Sat 23 Aug 2025 08:00:38 +0000
Manifest this update:     Sat 23 Aug 2025 08:00:38 +0000
Manifest next update:     Sun 24 Aug 2025 08:00:38 +0000
Files and hashes:         1: ULhDqNkbFYJOYOLNaJpvRR4lal4.crl (hash: FoewwiHj2vpnHNJ7uHGKqycT9eyGQ+WvT2aa/Q6ut3E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ULhDqNkbFYJOYOLNaJpvRR4lal4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:f1:9f:b5:a1:0b:92:25:62:56:cd:81:56:b7:ec:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50b843a8d91b15824e60e2cd689a6f451e256a5e
        Validity
            Not Before: Aug 23 08:00:38 2025 GMT
            Not After : Aug 24 08:00:38 2025 GMT
        Subject: CN=52914409f11e495ef49909c42316659fc8267041
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:50:85:6b:df:63:16:96:dc:68:94:f4:42:24:
                    3a:61:e4:0a:3f:37:26:25:e3:d3:a4:5a:ff:75:35:
                    37:cf:36:98:8f:85:f4:20:6c:9d:26:bb:b1:ec:28:
                    92:28:42:2d:29:ba:7b:12:30:a3:32:18:96:81:9a:
                    b9:71:fd:4f:f0:20:1b:c4:38:c0:b0:a1:5d:86:de:
                    17:d4:84:53:a6:7f:79:3a:da:07:ac:9b:49:73:fd:
                    7c:d9:4b:bb:7f:3f:fa:f8:1a:95:e5:fb:a4:8a:c9:
                    71:fb:0f:cd:a1:69:59:79:f9:a6:2f:33:05:93:7f:
                    fe:b4:fb:f3:35:ab:da:4f:14:ef:f5:41:45:de:6d:
                    dd:9b:86:46:8a:90:cb:6f:c5:db:2f:34:6f:58:a3:
                    ba:df:11:80:27:ae:56:d8:d3:b3:5d:77:e3:35:6a:
                    74:ad:ff:9d:f4:63:ad:5d:76:39:58:e8:35:af:4f:
                    54:b9:7f:a8:17:f3:a0:7a:c8:9e:af:d6:b9:e4:f0:
                    58:13:b3:74:d8:38:2c:02:b4:2c:1f:c2:7a:a0:9e:
                    d0:64:b6:0f:57:fa:19:77:52:41:a6:97:f7:ce:84:
                    e1:9f:9f:34:e6:80:ee:28:63:8d:69:e0:06:65:50:
                    73:3a:20:91:86:56:31:b9:cf:73:8f:a9:d7:c6:63:
                    df:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:91:44:09:F1:1E:49:5E:F4:99:09:C4:23:16:65:9F:C8:26:70:41
            X509v3 Authority Key Identifier:
                keyid:50:B8:43:A8:D9:1B:15:82:4E:60:E2:CD:68:9A:6F:45:1E:25:6A:5E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULhDqNkbFYJOYOLNaJpvRR4lal4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:c5:9a:ec:bf:a8:f6:41:a0:0e:9b:85:87:e2:b9:51:30:4c:
         a5:0e:5c:7a:ed:d6:55:dc:89:37:cf:7c:95:fa:3d:6d:45:b6:
         20:37:5c:99:49:cd:20:b3:ae:23:91:5e:b6:b6:f1:54:3f:eb:
         81:ff:b8:74:1c:e5:91:67:f9:83:22:7c:16:bc:d5:78:bb:46:
         3e:66:3e:69:e4:07:b7:5a:34:bb:ed:c9:89:9b:59:3b:c1:92:
         2c:4c:94:28:a1:36:93:19:07:14:ce:87:a0:1f:24:92:88:b5:
         4e:3e:b8:4f:82:a2:c4:be:aa:ef:ce:8f:05:19:dc:a5:1a:c3:
         83:ac:39:38:32:77:40:e9:92:04:0b:ab:b0:1c:3e:d3:0a:fe:
         4e:90:a7:0c:06:38:c3:41:1e:1b:b4:f2:62:5a:d6:b4:14:84:
         e6:97:4f:d8:97:12:13:5a:eb:7f:51:0c:85:38:31:49:e0:03:
         b7:ba:c4:a0:ac:d9:b1:5a:12:56:bb:29:ef:aa:38:d8:f1:11:
         d6:30:67:7b:0c:e1:26:58:ed:9f:80:39:24:ec:19:dd:8d:54:
         b1:26:25:c0:4d:23:39:93:cd:d7:2d:4f:53:3d:98:75:7c:43:
         e8:c3:ad:c4:27:7f:90:f8:ed:f4:4d:36:05:88:f1:89:14:11:
         f0:83:f3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:03 2025 by rpki-client