Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
File:                     u-BbYYon9sEO-Zm8ltmqDL0UraU.mft (raw, json)
Hash identifier:          vw0FCqgAx+yWQoWD7QpuYABZ6Eg+nPJLnHbk4YgXJ9A=
Subject key identifier:   59:DB:5E:E8:67:49:B2:67:BB:1C:9F:52:F5:16:35:3A:96:9A:FA:91
Authority key identifier: BB:E0:5B:61:8A:27:F6:C1:0E:F9:99:BC:96:D9:AA:0C:BD:14:AD:A5
Certificate issuer:       /CN=bbe05b618a27f6c10ef999bc96d9aa0cbd14ada5
Certificate serial:       0199FCC633ABC01336A5813196E21B5CA240
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
Manifest number:          0264
Signing time:             Sun 19 Oct 2025 14:01:11 +0000
Manifest this update:     Sun 19 Oct 2025 14:01:11 +0000
Manifest next update:     Mon 20 Oct 2025 14:01:11 +0000
Files and hashes:         1: u-BbYYon9sEO-Zm8ltmqDL0UraU.crl (hash: FMVGsHgaZBjyp9rPjzD9PJFuZz9YgtuBZ7KQDL97H+s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:c6:33:ab:c0:13:36:a5:81:31:96:e2:1b:5c:a2:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bbe05b618a27f6c10ef999bc96d9aa0cbd14ada5
        Validity
            Not Before: Oct 19 14:01:11 2025 GMT
            Not After : Oct 20 14:01:11 2025 GMT
        Subject: CN=59db5ee86749b267bb1c9f52f516353a969afa91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:61:89:89:d7:8b:8e:0c:47:f2:a2:f2:66:f3:
                    8e:54:4f:b8:53:96:ef:da:17:4e:00:ab:76:4c:80:
                    7c:c8:90:bd:60:22:1b:18:3c:de:d0:d1:f4:af:c1:
                    79:dc:b8:b6:62:0a:47:d3:1d:71:a1:44:6e:4a:46:
                    6e:43:5d:f1:ac:52:c3:0d:2f:99:57:ef:59:7e:07:
                    35:4d:36:fc:14:a9:e4:6a:b5:68:8c:35:63:6c:e0:
                    aa:68:5c:99:ad:56:34:cf:ed:c5:55:f4:32:6f:c5:
                    66:75:c9:02:3e:80:11:2d:0f:2a:7b:5a:30:90:4c:
                    74:25:40:ab:6f:b9:dd:81:54:07:8e:ba:fa:a8:04:
                    f5:d4:95:64:f5:d6:d9:4e:26:76:ee:bb:ff:b7:69:
                    ca:c7:64:22:6a:87:cf:f4:41:96:92:9f:3b:e7:58:
                    3b:82:d2:1a:20:4d:cf:8e:43:e0:35:0c:58:22:a8:
                    56:12:ce:b9:3b:bf:d8:23:ec:8b:f3:b0:9f:9d:dc:
                    3c:10:09:8e:d2:ed:80:8d:05:82:52:50:5f:e8:45:
                    39:4f:c7:7f:53:bf:e3:b2:d8:48:d4:97:15:a9:94:
                    1d:1a:23:51:95:5d:99:9a:02:49:77:42:eb:a5:dc:
                    91:3a:62:a4:f2:9f:65:27:c4:fa:fc:27:0e:59:7f:
                    59:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:DB:5E:E8:67:49:B2:67:BB:1C:9F:52:F5:16:35:3A:96:9A:FA:91
            X509v3 Authority Key Identifier:
                keyid:BB:E0:5B:61:8A:27:F6:C1:0E:F9:99:BC:96:D9:AA:0C:BD:14:AD:A5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:fb:2d:64:7c:23:48:55:b3:01:f1:bb:76:57:58:ad:08:0a:
         b7:27:24:f2:8e:22:ed:7d:7d:fe:90:43:c2:a7:58:93:c8:d7:
         98:8e:d3:e0:60:e1:4e:75:8a:8a:63:1e:91:20:b5:d9:ce:61:
         d9:d9:1f:f5:b4:c1:87:64:96:ac:0a:e8:75:85:c6:28:2a:bf:
         8b:62:1e:39:b1:da:05:d3:a8:9d:6d:55:5c:f9:94:fb:fd:f8:
         c8:5c:2d:32:5c:23:5e:01:9e:cc:00:b1:3f:d9:16:49:b2:ae:
         9c:52:9c:24:fd:60:7c:76:be:ae:0e:20:24:d0:fa:9e:53:5a:
         d5:5d:ef:61:aa:64:cc:a6:60:9e:bf:a3:da:b7:0a:4e:f7:01:
         4e:7e:f6:19:0d:67:db:60:a8:a3:68:ad:23:df:a1:5d:a6:95:
         0a:91:7d:98:fe:c1:35:8e:fe:a9:93:07:b1:f9:74:d1:89:36:
         3e:2e:ef:13:7f:41:81:c1:52:ae:48:c9:83:74:01:0c:fb:71:
         ba:a2:7f:0e:13:8b:53:8e:a0:68:8a:2f:c7:ea:35:c1:b3:ac:
         90:23:31:4c:ff:34:1e:01:4e:d5:b4:e2:d3:da:dc:34:cd:3c:
         fb:29:21:b1:3f:e0:34:4b:80:6a:78:0c:fb:56:1a:5c:03:d7:
         8d:5e:d1:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----