Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
File:                     UNorr8N6OYjdKUyROuUiDgONuWQ.mft (raw, json)
Hash identifier:          cYncXqHJtcya9UCcWQX7Uek3wsrrb52rB9wZ4rET+44=
Subject key identifier:   AC:2B:B4:CC:E7:74:2A:A2:E2:C8:83:7D:85:11:7B:85:87:CB:4E:B0
Authority key identifier: 50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64
Certificate issuer:       /CN=50da2bafc37a3988dd294c913ae5220e038db964
Certificate serial:       0199FB45F2D3F62883B9121E05053D78EF7E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
Manifest number:          162E
Signing time:             Sun 19 Oct 2025 07:01:29 +0000
Manifest this update:     Sun 19 Oct 2025 07:01:29 +0000
Manifest next update:     Mon 20 Oct 2025 07:01:29 +0000
Files and hashes:         1: UNorr8N6OYjdKUyROuUiDgONuWQ.crl (hash: Sp2kyqlymk8jaFl23VBPu2nhgJbTOUubMbskFbLOPbQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:45:f2:d3:f6:28:83:b9:12:1e:05:05:3d:78:ef:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50da2bafc37a3988dd294c913ae5220e038db964
        Validity
            Not Before: Oct 19 07:01:29 2025 GMT
            Not After : Oct 20 07:01:29 2025 GMT
        Subject: CN=ac2bb4cce7742aa2e2c8837d85117b8587cb4eb0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:0d:b1:33:64:52:60:a5:f4:48:61:51:56:30:
                    5c:aa:89:89:50:50:54:15:2e:16:1e:2c:ed:7d:bb:
                    37:cc:06:6c:a7:d7:f7:43:51:2c:bc:e8:c7:3f:f1:
                    69:fd:5d:f0:b0:7d:9e:bc:9a:75:fb:d4:16:50:35:
                    d9:e1:ec:3e:35:06:5d:c4:10:40:79:a2:d5:24:5f:
                    38:eb:8a:59:25:a5:d0:dc:f0:04:98:da:2c:b0:45:
                    a1:17:6f:19:4e:9f:87:e4:11:79:95:5a:4d:52:ac:
                    1b:99:71:dc:54:79:3c:c9:de:36:8b:fc:62:71:4f:
                    9f:61:4b:c7:b9:12:fb:21:e2:65:6e:e4:b7:08:fe:
                    b0:29:a7:b9:56:b8:34:7b:b6:3a:b3:bf:a5:18:c2:
                    e3:12:07:8a:b7:9e:2a:a9:16:59:71:b2:20:69:3a:
                    89:cf:9d:0a:4d:1c:5d:6a:00:74:3f:5b:d1:95:8d:
                    cf:1a:14:53:7a:d6:af:d1:2d:e7:e7:a3:bd:81:e5:
                    07:b7:f1:e5:18:7a:7b:3a:c5:2c:41:df:87:d7:7b:
                    1a:86:df:fb:c7:83:8a:5f:0c:95:f2:74:59:cd:82:
                    ef:92:79:6f:b5:b3:61:d6:7d:89:8c:ac:b4:ae:89:
                    dd:04:60:98:eb:13:f8:7f:d2:e1:12:c0:7a:f6:9a:
                    d0:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:2B:B4:CC:E7:74:2A:A2:E2:C8:83:7D:85:11:7B:85:87:CB:4E:B0
            X509v3 Authority Key Identifier:
                keyid:50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:ab:c7:c1:dc:55:00:d0:c3:08:c3:e1:73:ce:67:93:7e:d0:
         f9:6c:44:de:02:b5:76:d0:cd:5d:c2:07:f6:6b:6f:c5:d0:7c:
         75:94:07:a6:8c:be:08:25:d8:de:cf:ec:eb:7d:89:92:0b:7f:
         4f:fe:08:0d:f7:09:93:78:c6:16:91:a2:d6:60:5f:52:9a:2e:
         55:04:ac:9e:5e:fa:08:e5:a1:82:05:c4:89:63:b6:cc:18:ca:
         9d:2d:9c:a8:8a:76:a6:37:15:ca:4f:b0:bd:db:a1:ef:56:a6:
         f7:70:d3:78:59:fb:0d:ef:85:f7:c3:91:e3:0a:e6:63:a0:3f:
         e0:4a:9a:16:9f:9e:9c:4d:0f:db:35:ee:48:da:a7:f4:60:a4:
         a1:12:80:75:e5:d3:fc:93:30:7d:3b:90:28:40:1e:08:6b:14:
         0e:86:83:67:44:4f:43:fb:2e:3b:19:41:54:9f:45:ca:79:ba:
         4b:13:65:6e:11:16:bd:c6:56:72:e4:c4:b5:5e:9c:a9:3e:93:
         b7:0e:a1:79:c8:f8:90:98:56:62:14:9f:52:dd:cd:7e:36:52:
         0f:2e:42:59:05:ba:9c:57:76:77:b6:d4:c9:d0:36:f8:3a:e4:
         d4:8f:de:4c:1d:51:24:8a:f0:40:60:40:91:90:9d:2f:03:f6:
         d9:93:b1:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RfLT9iiDuRIeBQU9eO9+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZGEyYmFmYzM3YTM5ODhkZDI5NGM5MTNhZTUyMjBlMDM4
ZGI5NjQwHhcNMjUxMDE5MDcwMTI5WhcNMjUxMDIwMDcwMTI5WjAzMTEwLwYDVQQD
EyhhYzJiYjRjY2U3NzQyYWEyZTJjODgzN2Q4NTExN2I4NTg3Y2I0ZWIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5g2xM2RSYKX0SGFRVjBcqomJUFBU
FS4WHiztfbs3zAZsp9f3Q1EsvOjHP/Fp/V3wsH2evJp1+9QWUDXZ4ew+NQZdxBBA
eaLVJF8464pZJaXQ3PAEmNossEWhF28ZTp+H5BF5lVpNUqwbmXHcVHk8yd42i/xi
cU+fYUvHuRL7IeJlbuS3CP6wKae5Vrg0e7Y6s7+lGMLjEgeKt54qqRZZcbIgaTqJ
z50KTRxdagB0P1vRlY3PGhRTetav0S3n56O9geUHt/HlGHp7OsUsQd+H13saht/7
x4OKXwyV8nRZzYLvknlvtbNh1n2JjKy0rondBGCY6xP4f9LhEsB69prQJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKwrtMzndCqi4siDfYURe4WHy06wMB8GA1UdIwQY
MBaAFFDaK6/DejmI3SlMkTrlIg4DjblkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8xNjQ1M2QtMjhkMC00NmRkLTg1Nzct
YmRkNTc3NTFjNjczLzEvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8xNjQ1M2QtMjhkMC00NmRkLTg1NzctYmRkNTc3NTFjNjcz
LzEvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIKvHwdxV
ANDDCMPhc85nk37Q+WxE3gK1dtDNXcIH9mtvxdB8dZQHpoy+CCXY3s/s632Jkgt/
T/4IDfcJk3jGFpGi1mBfUpouVQSsnl76COWhggXEiWO2zBjKnS2cqIp2pjcVyk+w
vduh71am93DTeFn7De+F98OR4wrmY6A/4EqaFp+enE0P2zXuSNqn9GCkoRKAdeXT
/JMwfTuQKEAeCGsUDoaDZ0RPQ/suOxlBVJ9Fynm6SxNlbhEWvcZWcuTEtV6cqT6T
tw6hecj4kJhWYhSfUt3NfjZSDy5CWQW6nFd2d7bUydA2+Drk1I/eTB1RJIrwQGBA
kZCdLwP22ZOxbw==
-----END CERTIFICATE-----