Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
File:                     Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json)
Hash identifier:          Ol/W8yHlOnjx2ZU0IMvXfpX3usonf2TMUp6BSiXYjjc=
Subject key identifier:   46:4B:90:24:62:AD:06:14:50:5B:93:62:70:0C:5B:1D:59:03:72:25
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Certificate issuer:       /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial:       0199FDB98A68FB2BE0BDC0109200BF2A4C25
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
Manifest number:          13D6
Signing time:             Sun 19 Oct 2025 18:26:59 +0000
Manifest this update:     Sun 19 Oct 2025 18:26:59 +0000
Manifest next update:     Mon 20 Oct 2025 18:26:59 +0000
Files and hashes:         1: 0sTiQL9BpziNNFF9FacA7txFp4w.roa (hash: CLrdyx0Cg3S+QuOUt4e8L9WYyaGDex4K2YIa5CkZ86Q=)
                          2: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=)
                          3: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=)
                          4: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=)
                          5: 1WFTW_XNP-qj9QwtLvnY8K90GHo.roa (hash: TT0O/NxdJaHvvJ9dp0/GHhMEHYZPpkP2KSw3SR8SILQ=)
                          6: 1lTFoj63RaNBPnsylzVDB0FbQcc.roa (hash: Wmsf3/BQIBuAue+polYHmV/g9lwEk/F7Z4SpbFZOF0o=)
                          7: 41NUtPFxhObk-wVR35VCAMgd6ew.roa (hash: PcHsWPaT2JkObS4lJVIC3b2jPWyUUdnpeoaDp23b2r0=)
                          8: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=)
                          9: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=)
                          10: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=)
                          11: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=)
                          12: C34TCWAAsuIM5LVygn6C7yQx3P0.roa (hash: M4OJhxeXZ34Zdg4oZ52MXUW46vr94WOQk28NV0lOpg4=)
                          13: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=)
                          14: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=)
                          15: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=)
                          16: NmpssQUEcEZNKaoW0BQiwNAoyOM.roa (hash: umT/ksYC6kbCYRycfHE77LtnW64FjufV8F+An3q8R18=)
                          17: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: 8jNxKWJzH4IT4M4pBn3Up2VzllS6ZDCwHuFGzfWbIy8=)
                          18: P5MQT6daRbdr-R3pB7QOjSqAL4Q.roa (hash: xmGgGe1dwu3F4/Ddk90Hq6VDykeMQZvGcFQBtkOWLR8=)
                          19: QckeBKMJh1BMnZ4ggic7riQ2nos.roa (hash: PamlZ5g3cWGlPRPXTTD6iPe1z0pCGfOT1CE1MB2hQhQ=)
                          20: QfrBASbGsV9PVtFSk_7UjwBcWEM.roa (hash: rNxthRgt1V+JwXg506MlnxTxTgZ9hC5VywiRjKQezCo=)
                          21: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=)
                          22: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=)
                          23: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=)
                          24: Y93UFuH00_cFjyT9h0x-Xo3LsRA.roa (hash: KbxPfOmyChm+trCvOnFCPUXdRLZulWQI+556HaiOtUM=)
                          25: YQyoZSZ38L_KFryMEYkBnAZJoIU.roa (hash: rlsyW+kzGTKRfz2CZKaaatgyY9ylPHrd5KVR/xTE2Pc=)
                          26: Zk4BlJWRnOOEXvSWy79JFjGP6ds.roa (hash: SdogvnoK+ooQjSoYhkW00PpLxlDevb4pmfwk2gJXytQ=)
                          27: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=)
                          28: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=)
                          29: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=)
                          30: tVNklZT96j0o2vM1vFyzeOT8bDo.roa (hash: X8HwNTOIYXkyadyS3xbX6x0xWEuSl2cwCWxlE5a5tY0=)
                          31: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=)
                          32: xls96UEa5x8QQ0zNf0sviPf9i3k.roa (hash: m0eq2urB49dl+6zHn37E7MnUA3Q0Qt3aw5b2d8bC9Dc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 18:26:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:b9:8a:68:fb:2b:e0:bd:c0:10:92:00:bf:2a:4c:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
        Validity
            Not Before: Oct 19 18:26:59 2025 GMT
            Not After : Oct 20 18:26:59 2025 GMT
        Subject: CN=464b902462ad0614505b9362700c5b1d59037225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:11:29:6b:04:5f:a9:c9:f1:76:cd:f4:62:3a:
                    f7:65:f3:59:78:50:11:80:9a:56:81:b1:07:2c:93:
                    b3:ab:0d:1d:2a:81:cc:dd:3a:73:66:4d:b5:c1:79:
                    0a:a3:e1:2f:33:cb:1d:8f:c0:18:00:4b:85:34:0c:
                    a6:6b:e2:42:b3:cf:2d:65:3d:d6:0e:a9:32:e1:20:
                    27:75:4d:d8:75:73:02:d7:c2:72:bf:e3:b6:2f:47:
                    db:1e:d5:e5:51:68:f8:5d:7c:21:77:e5:6e:39:1f:
                    55:e5:7a:88:52:d4:a2:cf:02:2f:1d:a7:75:0f:09:
                    8f:ec:83:b8:a1:5e:2b:a1:65:1c:83:35:c6:3e:ee:
                    60:7d:a8:1a:e4:9e:c4:2f:49:53:2d:9c:28:02:38:
                    bf:ea:cb:45:a7:94:10:61:9a:45:70:d4:3f:7a:30:
                    12:33:ab:45:01:5f:ff:69:28:ca:7f:db:3b:3c:f6:
                    01:90:33:fc:a9:85:4f:7c:80:39:f1:d2:38:f8:6b:
                    fe:4c:27:d6:27:18:e4:a7:63:32:73:1c:3e:5d:f6:
                    ae:00:fc:53:bf:1d:1a:bf:b7:c9:b3:bf:14:2f:b4:
                    5f:aa:7b:82:1e:9a:e3:2f:dd:84:39:47:e1:64:fc:
                    6c:dd:38:52:cf:65:b6:2f:25:cf:12:18:c8:f9:bd:
                    fb:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:4B:90:24:62:AD:06:14:50:5B:93:62:70:0C:5B:1D:59:03:72:25
            X509v3 Authority Key Identifier:
                keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:09:ba:04:ea:d9:c7:57:7d:bb:b2:66:9c:b0:98:7a:15:3e:
         38:3c:37:fd:20:77:28:03:52:7d:90:09:f3:9b:25:eb:51:e7:
         3b:71:86:68:36:b2:5d:d7:19:73:73:ae:ce:6c:02:f7:7b:7f:
         b3:52:d2:45:17:cb:3d:df:76:49:b0:94:db:0a:ee:f4:6d:23:
         86:28:35:0f:7e:ff:90:5d:d9:c9:2d:e8:df:d9:87:b5:85:d9:
         c8:82:b2:7b:62:ce:1a:84:a5:44:eb:ee:01:52:f4:80:c0:e6:
         de:29:0f:01:c1:89:2f:4a:f1:5b:75:05:b8:6e:00:2a:26:2c:
         2b:da:06:a7:f4:b4:7b:d1:a6:1d:6b:46:5e:66:f8:b8:5a:f9:
         31:b3:7f:04:d2:d3:fd:1f:9e:7c:4f:9b:fc:cc:ef:be:f3:4a:
         ab:5a:47:1f:d9:91:9b:f9:70:20:fc:38:fb:52:b5:bb:d4:97:
         7b:af:42:04:66:2b:bb:95:38:a3:72:0e:c1:58:3a:f2:fc:c5:
         15:5e:38:a8:4a:73:17:4c:72:39:28:45:9b:1b:07:7a:c3:ec:
         88:29:5f:2d:78:5f:94:3d:c6:f0:d7:bf:5b:88:a5:53:70:9c:
         52:8b:c0:e2:a6:f7:97:47:13:58:81:f4:e1:14:1b:d1:ec:9f:
         50:86:35:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:30:20 2025 by rpki-client