Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
File:                     Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json)
Hash identifier:          4jyfVosBvdgrIyRQbFkeIoeZFF3FHLAdnAdoTj/z33w=
Subject key identifier:   6C:86:28:D6:C6:E9:4F:2B:4A:A6:08:A3:F7:60:C1:42:3B:E6:0A:F6
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Certificate issuer:       /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial:       0199FF9024A9C308900AADA0CDF8A564954F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
Manifest number:          13D7
Signing time:             Mon 20 Oct 2025 03:01:00 +0000
Manifest this update:     Mon 20 Oct 2025 03:01:00 +0000
Manifest next update:     Tue 21 Oct 2025 03:01:00 +0000
Files and hashes:         1: 0sTiQL9BpziNNFF9FacA7txFp4w.roa (hash: CLrdyx0Cg3S+QuOUt4e8L9WYyaGDex4K2YIa5CkZ86Q=)
                          2: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=)
                          3: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=)
                          4: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=)
                          5: 1WFTW_XNP-qj9QwtLvnY8K90GHo.roa (hash: TT0O/NxdJaHvvJ9dp0/GHhMEHYZPpkP2KSw3SR8SILQ=)
                          6: 1lTFoj63RaNBPnsylzVDB0FbQcc.roa (hash: Wmsf3/BQIBuAue+polYHmV/g9lwEk/F7Z4SpbFZOF0o=)
                          7: 41NUtPFxhObk-wVR35VCAMgd6ew.roa (hash: PcHsWPaT2JkObS4lJVIC3b2jPWyUUdnpeoaDp23b2r0=)
                          8: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=)
                          9: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=)
                          10: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=)
                          11: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=)
                          12: C34TCWAAsuIM5LVygn6C7yQx3P0.roa (hash: M4OJhxeXZ34Zdg4oZ52MXUW46vr94WOQk28NV0lOpg4=)
                          13: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=)
                          14: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=)
                          15: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=)
                          16: NmpssQUEcEZNKaoW0BQiwNAoyOM.roa (hash: umT/ksYC6kbCYRycfHE77LtnW64FjufV8F+An3q8R18=)
                          17: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: rZRgHOxXiFIqJZfi6C5koB24SauP6VYxTh98IqT4Sx8=)
                          18: P5MQT6daRbdr-R3pB7QOjSqAL4Q.roa (hash: xmGgGe1dwu3F4/Ddk90Hq6VDykeMQZvGcFQBtkOWLR8=)
                          19: QckeBKMJh1BMnZ4ggic7riQ2nos.roa (hash: PamlZ5g3cWGlPRPXTTD6iPe1z0pCGfOT1CE1MB2hQhQ=)
                          20: QfrBASbGsV9PVtFSk_7UjwBcWEM.roa (hash: rNxthRgt1V+JwXg506MlnxTxTgZ9hC5VywiRjKQezCo=)
                          21: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=)
                          22: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=)
                          23: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=)
                          24: Y93UFuH00_cFjyT9h0x-Xo3LsRA.roa (hash: KbxPfOmyChm+trCvOnFCPUXdRLZulWQI+556HaiOtUM=)
                          25: YQyoZSZ38L_KFryMEYkBnAZJoIU.roa (hash: rlsyW+kzGTKRfz2CZKaaatgyY9ylPHrd5KVR/xTE2Pc=)
                          26: Zk4BlJWRnOOEXvSWy79JFjGP6ds.roa (hash: SdogvnoK+ooQjSoYhkW00PpLxlDevb4pmfwk2gJXytQ=)
                          27: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=)
                          28: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=)
                          29: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=)
                          30: tVNklZT96j0o2vM1vFyzeOT8bDo.roa (hash: X8HwNTOIYXkyadyS3xbX6x0xWEuSl2cwCWxlE5a5tY0=)
                          31: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=)
                          32: xls96UEa5x8QQ0zNf0sviPf9i3k.roa (hash: m0eq2urB49dl+6zHn37E7MnUA3Q0Qt3aw5b2d8bC9Dc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:90:24:a9:c3:08:90:0a:ad:a0:cd:f8:a5:64:95:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
        Validity
            Not Before: Oct 20 03:01:00 2025 GMT
            Not After : Oct 21 03:01:00 2025 GMT
        Subject: CN=6c8628d6c6e94f2b4aa608a3f760c1423be60af6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:30:e0:8e:57:04:bf:97:6b:26:cf:67:98:ff:
                    97:38:34:2d:ab:9a:bc:05:38:4e:69:3b:3a:1f:5e:
                    5c:ff:0d:f8:99:80:b4:e7:78:2d:be:1c:7e:36:d1:
                    f5:2e:6b:93:f6:8a:f5:8f:21:fa:6d:f1:48:f3:60:
                    39:db:dc:34:0b:6a:d2:d3:6a:f6:9f:37:43:d6:d1:
                    83:5c:9d:dc:54:4d:a2:4e:3f:48:03:96:b6:e7:5c:
                    3e:a1:20:e9:ce:b0:d8:af:bf:df:74:38:f3:ea:b2:
                    76:1c:d9:1f:5c:51:dd:1f:0d:99:25:98:b0:19:d4:
                    1d:7c:ff:88:67:bf:59:4e:f1:1f:da:af:09:9b:17:
                    9e:b3:61:a4:03:d7:51:38:71:e3:16:b6:53:c1:28:
                    49:a8:60:02:9a:3e:c3:53:95:57:c1:08:fe:9c:d9:
                    58:c7:01:e7:02:05:69:3f:5e:4a:c0:74:93:e8:ef:
                    09:ab:dc:ed:f0:60:20:c9:7d:4a:3a:a0:ca:36:c2:
                    29:4c:0e:2d:53:f6:76:b6:ad:53:cf:a8:d9:ec:73:
                    93:da:db:21:57:1f:e1:1b:65:5d:57:57:86:25:99:
                    0a:78:30:2e:02:9d:86:77:aa:09:60:32:29:e6:c9:
                    d3:14:53:9f:37:46:74:2e:9d:75:05:89:6a:60:e8:
                    bb:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:86:28:D6:C6:E9:4F:2B:4A:A6:08:A3:F7:60:C1:42:3B:E6:0A:F6
            X509v3 Authority Key Identifier:
                keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:df:51:37:8e:4c:45:25:10:e3:36:43:bb:cc:f8:d8:1e:a1:
         7f:5f:af:52:d3:4a:76:f3:1b:7c:b2:bf:c3:48:fe:32:ee:61:
         c3:40:2b:44:a9:54:3e:50:a4:6e:32:42:60:08:3d:e5:39:88:
         8b:ab:c1:37:c7:ba:a2:aa:59:76:a6:bb:50:ed:0c:b0:44:a4:
         bf:a5:b5:56:e1:34:9f:95:d9:8f:2d:4e:27:bb:db:dc:48:a2:
         f4:93:a8:7b:41:74:f2:d4:58:39:e9:1d:af:64:80:90:ee:64:
         8e:7f:97:ef:2c:91:2b:79:a4:d8:0d:70:c1:ee:43:01:f7:ce:
         6c:c0:33:cb:10:05:04:b4:13:93:dd:fe:7a:ba:bc:42:0e:19:
         fc:a6:79:9f:1a:e4:5b:85:42:55:84:bf:e7:30:d0:a2:4d:0a:
         60:94:71:69:5e:73:98:49:bc:4a:f4:ac:29:fe:e4:15:fb:11:
         88:ba:ed:20:83:72:1a:b2:e3:1d:3d:22:82:86:61:28:40:9b:
         4f:da:c4:42:a3:93:e8:77:65:96:27:cc:1b:d7:e0:7a:47:e4:
         0c:61:7c:5a:4d:fc:39:39:f4:3a:b2:b6:cf:b0:f7:f4:dd:23:
         69:32:db:e1:dc:31:69:6c:bb:e1:8f:e7:75:0c:f4:55:64:c2:
         9d:8d:4b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:55:58 2025 by rpki-client