Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
File:                     0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft (raw, json)
Hash identifier:          3yWtg+B9j7UYbTJ1HTRGjak+4zK4GZkLoZ+7JWmwHXM=
Subject key identifier:   13:05:63:CB:02:AC:61:84:36:09:3B:25:66:94:2D:56:BB:A8:2A:E5
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Certificate issuer:       /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial:       0198D69805911F883E43B4FC5063202FB83A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
Manifest number:          1173
Signing time:             Sat 23 Aug 2025 11:02:23 +0000
Manifest this update:     Sat 23 Aug 2025 11:02:23 +0000
Manifest next update:     Sun 24 Aug 2025 11:02:23 +0000
Files and hashes:         1: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl (hash: mNJFEOfWwHJPjoBEoS8o8csBVZHcNjzaANb/07joRlI=)
                          2: SAF1KbjuvZdI9BSVM80ADIZ6zn0.roa (hash: wfp9L/QbKQTs8wDMXGcfyHh9p8y5+4/kclZuUrsUs5I=)
                          3: jOqd2wJBuE3wT3pRawlL9knhjV8.roa (hash: pvOd4te8ScnLLx0JwvYK3xwrNCWYubvf6Z+FLbM/DCM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:98:05:91:1f:88:3e:43:b4:fc:50:63:20:2f:b8:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
        Validity
            Not Before: Aug 23 11:02:23 2025 GMT
            Not After : Aug 24 11:02:23 2025 GMT
        Subject: CN=130563cb02ac618436093b2566942d56bba82ae5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:8c:72:5f:c8:3e:71:7a:f0:5b:a9:9d:8e:e4:
                    c4:15:25:e0:07:60:24:7b:02:85:56:c6:2a:15:c3:
                    47:67:cb:ce:c1:f2:41:5d:ae:25:d8:08:65:41:1f:
                    89:d6:bc:30:8b:5c:4a:19:80:da:e9:bc:16:19:41:
                    d2:95:e8:7d:72:2b:31:5b:dc:83:7d:14:c7:73:82:
                    c2:4a:ed:a4:2c:06:cd:82:59:6a:ec:b1:9a:c8:b0:
                    11:e8:5f:40:a7:94:af:93:c9:53:b4:17:d4:1d:bf:
                    5c:4a:89:8c:ef:f5:4d:13:fd:87:89:ca:72:a8:15:
                    c0:f9:49:8c:4c:52:bb:90:6a:4f:37:a7:5d:a2:32:
                    df:a7:ea:8f:45:5b:c9:aa:4f:07:de:4f:ff:bc:ae:
                    a5:8a:7e:5f:9a:4d:69:fd:29:5e:c9:80:85:8c:d1:
                    1b:11:37:79:d3:cf:c3:41:1d:cc:e4:e8:54:11:23:
                    89:e1:e6:43:5f:00:53:a1:98:ad:b0:f5:52:82:91:
                    da:20:87:5a:ed:9b:ab:b3:35:bd:49:12:98:50:9b:
                    e3:17:47:4a:f4:8b:07:8f:e8:0e:dd:56:a8:ad:ca:
                    0b:6a:48:78:cb:ea:03:4f:e9:41:c8:60:1e:0a:4c:
                    27:0c:6a:40:f6:13:ac:23:36:83:50:2b:61:c6:49:
                    c5:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:05:63:CB:02:AC:61:84:36:09:3B:25:66:94:2D:56:BB:A8:2A:E5
            X509v3 Authority Key Identifier:
                keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:98:ce:8b:32:34:8c:f6:02:87:c5:3e:5a:b4:66:2d:bd:fb:
         be:51:f2:d2:b9:35:e1:f0:e3:05:1d:65:53:da:0d:c2:12:44:
         e6:ba:a7:e6:a5:c5:84:77:a2:3a:90:55:2c:54:eb:39:6a:8c:
         44:5c:6b:aa:21:5d:38:83:6b:3d:39:c9:c9:14:2a:15:b9:27:
         b9:5a:5f:70:97:ae:c0:c3:33:ea:d8:a8:97:ec:d2:07:84:e6:
         4c:49:2e:88:22:99:55:3b:ed:0e:dc:2e:e5:38:53:b8:f9:9d:
         f4:63:40:8e:d3:66:58:3e:8d:a5:01:60:fc:0c:b2:78:23:4c:
         18:84:a8:11:47:f4:1f:e6:94:39:a4:8b:ec:10:89:8b:e6:a1:
         aa:38:1f:80:ab:2a:58:2f:70:f4:c5:de:4b:82:ae:e7:5a:da:
         4c:7f:98:7a:82:40:24:08:3b:9c:8f:23:10:49:e7:df:42:10:
         f1:08:ad:b6:a0:e6:6d:4c:07:16:4f:49:39:ee:ee:b0:c8:30:
         80:49:7c:c6:b7:89:b8:77:06:e0:a0:3d:de:7b:d8:5a:33:c3:
         b5:48:f1:62:82:ac:7c:96:16:1b:f3:cc:1b:50:2f:ee:69:6d:
         9d:03:f7:d8:58:f6:1a:42:2c:da:67:5c:9e:89:d7:02:b3:55:
         7e:8a:70:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:17 2025 by rpki-client