Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
File:                     _ltNUIvcIUFbR1LuvESNSqrGNdk.mft (raw, json)
Hash identifier:          mBEUnUAkAsD8W3c0TGCnz+pveukBuF0WI3Lwdx7DWo4=
Subject key identifier:   15:32:00:9C:40:AB:A3:01:23:48:34:46:98:52:B6:B4:0B:32:34:B4
Authority key identifier: FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9
Certificate issuer:       /CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9
Certificate serial:       0199FB7C93CC450841713EDA56D59365BC68
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
Manifest number:          015E
Signing time:             Sun 19 Oct 2025 08:01:09 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:09 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:09 +0000
Files and hashes:         1: _ltNUIvcIUFbR1LuvESNSqrGNdk.crl (hash: qS1HfDmQuTA8a6r7rxO0c7gDx4m4YvrMfZesMmu1j/M=)
                          2: l_Z1ah4Z6CUki_cHx_5BaEWiOxE.roa (hash: fwZNajA2NrVuCxC49gzHtXDb0A0DV7JtszLe3wSG/eE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:93:cc:45:08:41:71:3e:da:56:d5:93:65:bc:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9
        Validity
            Not Before: Oct 19 08:01:09 2025 GMT
            Not After : Oct 20 08:01:09 2025 GMT
        Subject: CN=1532009c40aba301234834469852b6b40b3234b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:30:fe:2b:0d:75:fd:00:60:ec:17:e0:65:a9:
                    f7:22:03:82:6b:1a:7c:9b:51:47:73:4f:58:e0:dd:
                    20:8e:e0:b3:b5:2e:b6:51:b1:75:0d:7d:99:fb:43:
                    9a:a0:30:a2:67:0b:15:55:96:f1:3a:d0:dc:c8:ad:
                    ab:34:3e:21:41:c5:ab:53:21:1e:c0:74:da:55:82:
                    96:f1:de:8a:da:2d:40:f9:11:60:03:79:d3:9f:d9:
                    1b:03:c7:7e:8a:84:ad:51:03:89:48:5e:8c:ea:31:
                    26:84:fb:11:6f:40:4d:2e:db:eb:a2:01:af:cd:32:
                    47:7b:51:29:e2:fb:35:12:af:e1:0c:c5:ac:eb:b8:
                    d0:9c:2c:f1:9c:3d:97:94:0e:fe:d0:3b:a9:63:cc:
                    fb:bd:32:4a:1d:92:ad:2c:8f:be:30:3c:a2:b6:ef:
                    2e:fd:2f:55:3a:41:88:4d:ff:ef:d9:dd:45:fd:8e:
                    de:08:7c:6e:56:ce:a2:c3:c4:d0:08:f4:f9:62:49:
                    30:00:6f:33:14:9a:07:ae:7e:2e:0d:ab:56:be:1b:
                    3d:0e:4d:15:21:cd:ba:8b:75:23:33:9d:28:20:bb:
                    ad:f8:34:38:5d:51:8b:c4:2f:c8:47:ed:0e:5a:58:
                    12:ef:a6:e2:df:9a:33:ba:cf:a6:55:02:10:bf:e0:
                    cd:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:32:00:9C:40:AB:A3:01:23:48:34:46:98:52:B6:B4:0B:32:34:B4
            X509v3 Authority Key Identifier:
                keyid:FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:62:9f:b1:e2:a7:e3:5a:7d:7c:eb:c2:d0:95:4b:b2:a3:cb:
         8c:ab:94:89:92:76:4d:6f:cb:f1:1f:14:99:42:1d:9d:54:49:
         10:be:7a:92:e7:0b:e1:a8:0d:a2:6a:1c:79:72:6d:73:65:c7:
         e6:d2:31:fd:85:55:2a:fe:74:1a:51:8d:60:6f:bb:f0:9c:93:
         16:ec:b6:71:1f:6d:53:96:5e:fb:96:41:ec:23:1d:b7:70:dd:
         a3:97:55:63:e9:37:3a:24:9e:5b:27:9f:73:7d:27:bd:b9:00:
         06:61:03:30:d5:6e:6f:2d:66:05:ef:63:59:85:df:8a:22:5c:
         83:00:d3:59:13:59:04:9f:40:c0:16:14:a7:04:f7:1c:1a:e4:
         f8:4e:af:ac:6d:c2:93:6f:5e:c9:a2:58:60:d8:d7:f5:64:74:
         6a:47:6b:e5:1b:3c:80:62:88:8e:13:1f:05:4f:22:29:4e:0d:
         11:a3:9d:c9:da:d2:9c:f2:44:3d:19:84:88:4c:ce:40:b0:54:
         bb:3a:1b:94:fb:0a:77:56:2c:b1:e4:5e:97:fc:fe:ad:1f:59:
         a5:a5:db:9e:7e:4f:c6:10:41:1b:bc:eb:40:d9:f3:09:6c:90:
         6e:1a:b0:41:65:9f:3e:74:92:93:b4:a2:e3:90:ca:a9:fa:68:
         64:73:d9:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:07:13 2025 by rpki-client