Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
File:                     UhqgJHWNjRBOEXnFUDmBZjav4pg.mft (raw, json)
Hash identifier:          ueMJPRzH2haYHrenQWHeuJbU6v5T5Tk+ctTeNhJClvs=
Subject key identifier:   5F:F2:12:94:59:82:4B:56:AE:BA:E6:0D:F2:5F:25:33:15:52:48:25
Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
Certificate issuer:       /CN=521aa024758d8d104e1179c55039816636afe298
Certificate serial:       019A03A3E919928BBDCF598D9612458A701D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
Manifest number:          16E4
Signing time:             Mon 20 Oct 2025 22:01:04 +0000
Manifest this update:     Mon 20 Oct 2025 22:01:04 +0000
Manifest next update:     Tue 21 Oct 2025 22:01:04 +0000
Files and hashes:         1: UhqgJHWNjRBOEXnFUDmBZjav4pg.crl (hash: D5bi/F/NWvhdwi2GZuyGxQGDtWMI5hyrmA2jS2l/8yc=)
                          2: wzHTUEDPSJ9fu6Go3MzUkAR9gVE.roa (hash: HH9rFvWwfqcHjpbJnsKsdwBfEEqoBLNu0bOt5Pi9+gU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 22:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:03:a3:e9:19:92:8b:bd:cf:59:8d:96:12:45:8a:70:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=521aa024758d8d104e1179c55039816636afe298
        Validity
            Not Before: Oct 20 22:01:04 2025 GMT
            Not After : Oct 21 22:01:04 2025 GMT
        Subject: CN=5ff2129459824b56aebae60df25f253315524825
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:0e:89:16:c9:b6:57:fc:00:e7:a5:81:84:c6:
                    46:86:94:6c:22:f2:d1:d9:b0:95:98:71:e6:11:56:
                    b2:70:6d:b9:88:59:7c:b0:d7:26:c7:e1:9d:27:da:
                    5f:08:b2:01:47:a2:49:10:d0:27:7d:4e:6a:88:a1:
                    db:09:fc:a8:3f:78:8d:76:16:09:2c:95:3b:a7:37:
                    fb:c4:e8:2c:28:d8:d9:dc:74:f3:1e:a1:46:1b:38:
                    52:4f:13:c6:ea:bc:8f:ed:7a:67:cc:8f:57:30:f2:
                    bc:cf:c5:57:7f:bb:0c:06:a1:f7:a5:61:69:45:96:
                    36:da:5b:f1:c1:6a:96:d6:a1:9f:0f:12:39:67:ee:
                    37:73:b2:68:60:9c:8a:82:4b:8f:6f:28:49:46:b1:
                    ed:a4:26:c8:83:4d:9b:37:d7:2b:7f:d1:e0:89:ac:
                    6a:b8:5a:a2:75:ba:a2:9d:ee:6d:b1:bc:26:5e:42:
                    96:c6:d3:f6:84:4b:6e:a9:7e:fd:5e:31:4b:f9:f3:
                    c0:47:aa:22:ad:38:38:8b:f4:94:09:bb:d7:5e:1e:
                    80:ed:f8:57:44:b4:d6:92:61:b7:b7:95:43:e0:0d:
                    d4:db:40:c6:9d:7e:62:05:99:99:ec:b2:44:61:c0:
                    ec:e5:6e:c6:29:13:f2:db:f2:b5:3b:eb:8c:e6:70:
                    9a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:F2:12:94:59:82:4B:56:AE:BA:E6:0D:F2:5F:25:33:15:52:48:25
            X509v3 Authority Key Identifier:
                keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:2b:ae:ee:20:7f:cd:28:16:95:a0:85:e6:f9:ff:db:73:af:
         3d:4a:65:58:70:b0:c2:4f:b2:f2:14:97:56:40:33:17:15:0e:
         65:f0:fc:ac:ab:fb:8a:3d:01:48:97:a9:be:76:1d:53:7c:0b:
         03:58:41:6a:de:3d:92:1b:7d:43:66:63:39:ca:c1:86:f9:b1:
         29:f9:77:61:56:49:98:e9:18:df:30:ba:25:9a:bd:e6:c1:a3:
         0e:00:6a:0b:fc:23:e4:0d:86:72:53:ac:da:62:f0:75:f5:6a:
         b4:d6:43:57:82:82:54:63:f9:4d:58:40:ec:bb:90:44:27:5c:
         9f:03:ce:dc:31:a6:e5:3e:eb:a4:41:31:80:01:c3:73:91:0d:
         8f:f5:c5:31:e8:61:4d:3c:bc:f9:76:25:cf:00:b7:26:46:71:
         6e:a0:19:d8:dd:38:c5:7a:e2:d1:0f:e6:80:96:b7:e1:95:0c:
         cf:8e:a9:de:87:28:5e:3d:4b:b6:a5:1d:cd:8a:bb:f8:a7:a1:
         83:c4:a5:e4:f1:3c:8d:df:33:c2:37:33:ed:00:45:ba:5a:f4:
         24:2f:3b:01:47:6e:80:0e:3d:a9:e4:29:2d:d0:45:d3:7c:7a:
         a4:71:62:3b:c2:d9:99:7e:9d:c1:9b:78:0d:e0:87:0d:e0:da:
         3b:4b:37:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:22:29 2025 by rpki-client