Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File:                     OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier:          zgUxlEbQDIYxpLGUI6wjPnEqXchIxM3Amz2EdJeXMNA=
Subject key identifier:   B8:AC:16:8F:25:58:D8:FC:2D:6A:5A:F6:80:A9:74:4E:EF:D0:24:74
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer:       /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial:       0199FC21B86443E26D479514A5D9B7C381B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number:          06AC
Signing time:             Sun 19 Oct 2025 11:01:32 +0000
Manifest this update:     Sun 19 Oct 2025 11:01:32 +0000
Manifest next update:     Mon 20 Oct 2025 11:01:32 +0000
Files and hashes:         1: 4sh0yYbT80cSrTPvdQEkGETfVo8.roa (hash: 7RnvvHQkkS8YaZiuCDpplhOJhAdwXKsdDZ03EF+NYdQ=)
                          2: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: vHf+AVAtPtXHsX17IENBCQ/iX2v+Sqfmd9/Lw8t5Rek=)
                          3: T3WVNDq5fB7durp2xzBnS3GvikA.roa (hash: yDIX+9j0VmuYreUTlBxWuulf2dZWF2rW9eLhkcZnsyo=)
                          4: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:21:b8:64:43:e2:6d:47:95:14:a5:d9:b7:c3:81:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
        Validity
            Not Before: Oct 19 11:01:32 2025 GMT
            Not After : Oct 20 11:01:32 2025 GMT
        Subject: CN=b8ac168f2558d8fc2d6a5af680a9744eefd02474
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:cf:6c:43:ff:be:4c:9d:03:60:2a:4c:1c:e6:
                    e9:19:b2:7e:7f:87:e3:51:86:f9:3d:f4:07:40:29:
                    31:b4:a2:d8:a2:86:88:c4:08:82:e3:92:59:88:2a:
                    4b:6b:e7:da:11:24:23:79:97:db:39:41:e5:3a:8e:
                    30:80:a9:96:f1:06:e6:95:70:f0:d2:9f:9a:26:db:
                    09:61:e1:03:b0:8c:b7:e3:d8:6d:68:70:11:09:1a:
                    cd:16:af:ea:71:96:29:dc:73:b6:b1:df:5f:93:c4:
                    4a:d8:c3:27:24:f0:76:c2:ed:18:1a:8d:ec:e1:15:
                    8a:cd:92:8d:bb:43:48:8d:34:cd:09:42:7f:8e:ec:
                    61:26:8c:33:16:79:e9:1d:9a:d2:7c:ee:21:e1:d6:
                    32:9e:13:ab:13:da:ee:12:02:30:3b:ec:16:da:ab:
                    ec:24:24:e7:2d:16:d8:b2:26:41:91:49:90:ab:f4:
                    ee:a7:01:fa:d0:a2:43:b4:97:f8:87:1f:35:f9:00:
                    8e:91:e2:24:2c:b6:72:02:21:5e:03:5c:b7:3c:1f:
                    44:f9:ca:82:1f:e9:17:59:5d:f1:bc:9a:e9:b4:67:
                    c0:7b:ea:f6:ae:38:f2:20:03:f6:ef:22:ad:ab:85:
                    50:3e:69:3e:00:37:b0:44:ef:b1:96:80:48:3b:b6:
                    64:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:AC:16:8F:25:58:D8:FC:2D:6A:5A:F6:80:A9:74:4E:EF:D0:24:74
            X509v3 Authority Key Identifier:
                keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:6d:3e:b2:c0:b0:ea:e6:60:85:01:35:0c:1f:75:e9:8b:ae:
         aa:c8:9f:30:78:be:d9:b9:d9:de:48:ca:e4:78:f5:6d:7f:01:
         df:9d:1d:19:84:cc:d7:e5:ac:7d:04:48:d8:e8:b7:15:f6:42:
         08:fa:7d:37:26:37:df:cb:51:6b:0e:ca:98:81:f4:a1:28:32:
         28:17:d3:b8:3f:32:8b:43:62:a3:43:e9:4b:7f:84:ea:6d:b7:
         8e:71:73:aa:a5:e5:ed:6a:e0:45:7b:b3:5b:26:41:98:df:64:
         e4:68:d1:b9:8a:e4:e7:b3:58:99:11:07:6c:19:2e:20:f6:01:
         6d:77:47:de:a7:b6:1d:e7:93:aa:61:17:73:04:cc:a3:33:20:
         56:cc:91:1f:6a:09:db:c9:bf:b4:04:69:90:1d:fd:e2:83:c0:
         82:20:08:0b:60:0b:8f:5e:1e:fb:23:67:1b:d4:ba:6a:a5:de:
         8c:03:56:d4:98:92:c2:88:a8:e9:7b:08:71:d7:e4:ac:2d:df:
         65:f5:64:d0:bb:7f:b4:56:4c:32:39:a7:b6:3e:83:a9:d3:94:
         22:fa:ea:9e:7b:d7:46:03:fb:45:55:f2:65:84:76:34:0a:bf:
         07:8c:cd:7c:a4:8e:72:9d:29:4c:fe:d2:e0:06:9a:a7:49:c0:
         e5:46:bb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:22:19 2025 by rpki-client