Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File:                     PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier:          +CdYrZxKsh8KsGISGBbFk/G6taTZu0P8erPt20Fi8qc=
Subject key identifier:   50:72:75:84:32:0D:A9:3E:35:2B:E5:7F:FA:97:3A:59:CF:40:28:5D
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer:       /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial:       0199FC8F6FEEEBF888C64BF248BC0499221C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number:          10EA
Signing time:             Sun 19 Oct 2025 13:01:22 +0000
Manifest this update:     Sun 19 Oct 2025 13:01:22 +0000
Manifest next update:     Mon 20 Oct 2025 13:01:22 +0000
Files and hashes:         1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
                          2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
                          3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: FduyhNj31tLbM7XexWAkAztW8FeLTGHhEUVpvgMPueE=)
                          4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
                          5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
                          6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
                          7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:8f:6f:ee:eb:f8:88:c6:4b:f2:48:bc:04:99:22:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
        Validity
            Not Before: Oct 19 13:01:22 2025 GMT
            Not After : Oct 20 13:01:22 2025 GMT
        Subject: CN=50727584320da93e352be57ffa973a59cf40285d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:2b:bf:fe:34:e6:c5:ef:12:c1:00:a1:1d:c7:
                    18:de:e8:bb:35:e3:4d:af:d4:5e:d4:fa:ae:56:ec:
                    b6:cc:8c:e7:2a:8f:a3:8f:ee:98:4a:d3:72:39:d0:
                    0c:ab:e2:83:c5:af:ac:44:94:70:6e:33:2c:f4:ab:
                    af:5d:17:62:82:98:5e:f3:3f:68:8b:2f:93:c6:36:
                    db:cf:b2:c2:f7:16:e7:bc:78:d5:f1:01:14:a3:61:
                    e9:a2:18:31:1c:21:b4:66:39:6a:a8:b1:08:0f:a9:
                    62:ce:4b:0c:80:e6:ec:3a:e3:91:52:b3:39:95:71:
                    f2:5a:97:d2:45:b4:c1:01:c1:91:49:6a:c7:3c:78:
                    39:d7:bb:7c:a5:82:34:ab:37:3c:60:bb:d1:a5:bb:
                    6d:64:4e:b8:31:54:be:99:53:f9:69:e4:aa:9d:09:
                    ac:35:56:d7:02:96:56:3b:b2:26:7a:1e:79:4e:e9:
                    d8:89:12:e6:3e:ba:b4:47:37:34:35:79:91:9d:40:
                    ab:b6:6d:d3:a9:be:14:ae:87:53:a7:69:de:76:9e:
                    7f:71:c7:f2:c4:a2:43:df:3c:4f:c8:10:86:a0:55:
                    cb:79:ca:4d:c0:df:e9:ae:c9:0d:f1:c8:de:cd:5c:
                    fc:ce:e4:ea:51:cd:d7:7f:1e:91:9a:85:89:05:79:
                    27:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:72:75:84:32:0D:A9:3E:35:2B:E5:7F:FA:97:3A:59:CF:40:28:5D
            X509v3 Authority Key Identifier:
                keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:5e:1f:24:90:15:69:b2:70:48:d7:9f:5e:6b:9e:92:ad:0f:
         fc:db:ae:61:c2:66:31:3f:0b:d8:47:1d:e2:8a:68:f2:71:5b:
         64:52:63:e9:68:66:e5:be:de:8c:9e:44:eb:90:e2:8a:f0:6a:
         ce:2b:b8:88:5d:d4:26:e2:82:52:b9:84:c4:f1:83:58:cc:27:
         26:bf:43:19:e6:35:ae:bc:31:35:22:77:2f:3f:b6:d7:5b:8d:
         3d:dd:5c:39:17:e8:8e:eb:81:b6:70:6e:25:4f:e9:ad:81:df:
         bc:5f:f0:4f:29:7d:1b:3b:aa:f5:62:48:32:fe:20:53:9b:b8:
         d0:b2:4f:45:84:85:fb:27:0c:70:1f:51:fa:c1:71:9d:44:78:
         84:84:e5:12:38:48:f4:fc:44:31:e5:23:91:11:c0:f6:1b:4e:
         88:1d:dd:4c:42:f0:5c:73:8d:7c:e3:52:58:da:4c:26:88:93:
         23:d2:18:63:ac:0b:02:f5:3b:c8:64:b5:5c:55:5c:ba:34:ed:
         30:69:67:e6:ea:da:c1:ef:e5:92:4a:73:2a:87:81:53:98:7b:
         25:fa:75:fc:f9:c7:8c:26:0f:4d:67:e4:02:29:7a:1d:df:a0:
         80:2a:26:c3:59:63:67:97:9f:52:7e:af:13:02:16:ac:05:f0:
         16:5b:da:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:13:01 2025 by rpki-client