Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File:                     iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier:          FznkFoL+mizMiJtjqCd2tcDAkd7e5OyRa0aMm90EO18=
Subject key identifier:   EA:B6:75:51:5A:F5:8C:A5:44:DC:B8:A9:73:A3:85:3B:DB:93:A5:66
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer:       /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial:       0199FB7CE0D732D89BC9C6A810F9896E6F55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number:          05A3
Signing time:             Sun 19 Oct 2025 08:01:29 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:29 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:29 +0000
Files and hashes:         1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: xioPAulcoyQCazfXKL7Dvb52Nbiu2MkvQEJs6JOnXqU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:e0:d7:32:d8:9b:c9:c6:a8:10:f9:89:6e:6f:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
        Validity
            Not Before: Oct 19 08:01:29 2025 GMT
            Not After : Oct 20 08:01:29 2025 GMT
        Subject: CN=eab675515af58ca544dcb8a973a3853bdb93a566
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:03:c2:1b:61:c2:a1:92:07:23:27:3a:0a:88:
                    25:71:ab:ea:1e:bf:b1:98:03:79:03:db:a8:7d:e4:
                    bf:5d:a3:d6:78:1d:d8:3f:ac:f0:43:79:d7:bc:02:
                    64:80:ce:db:be:6f:01:e9:3f:92:13:1e:0d:55:22:
                    3d:5c:53:e3:c7:e8:7f:dd:2e:ad:16:02:cb:9c:09:
                    34:e1:e7:ec:cb:a3:83:39:91:8b:51:0c:8b:3f:64:
                    10:5c:c5:40:b7:ec:bb:28:a9:5b:62:6e:f6:c2:a6:
                    e5:99:8f:8c:d5:9f:a4:38:57:94:f3:a6:d7:46:07:
                    e9:1b:87:46:0f:aa:5d:5b:fb:15:dd:13:2f:13:7d:
                    d5:6b:ad:73:82:91:96:b0:00:f8:9f:76:21:91:b1:
                    44:29:e3:c5:8f:2e:47:8b:c9:4b:06:11:42:3c:f2:
                    79:0c:97:6c:2b:74:f0:ca:32:9d:8c:9b:90:7b:e5:
                    83:19:a7:41:47:32:9a:5a:fe:98:4a:2e:05:b8:7b:
                    67:35:87:d2:c1:ee:aa:26:eb:50:05:c1:26:ce:dd:
                    8d:1f:24:24:c1:d2:23:9a:bc:7d:6d:ad:96:f8:f1:
                    ca:1f:a2:28:3b:1e:9b:b5:ae:84:08:89:7c:e8:f7:
                    5a:38:fd:d3:e9:3e:bb:98:86:50:5c:ef:5d:e9:be:
                    86:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:B6:75:51:5A:F5:8C:A5:44:DC:B8:A9:73:A3:85:3B:DB:93:A5:66
            X509v3 Authority Key Identifier:
                keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:15:92:d9:ba:5a:b0:83:1d:27:b5:aa:06:ae:1f:38:b6:5b:
         40:ce:6a:40:91:e7:58:36:52:11:50:79:5b:0f:78:7e:6c:6d:
         67:b5:f2:20:a2:eb:17:60:87:3c:d3:6c:4f:c7:b4:64:e1:86:
         10:34:72:51:41:92:a3:35:6d:45:9d:32:b1:85:42:77:73:60:
         88:e0:63:d9:1a:a1:16:8e:1d:2a:64:0a:94:df:f0:8b:7a:8b:
         ff:8c:e4:e1:33:56:cb:1b:47:a0:20:32:4c:76:ca:d9:9f:be:
         5b:dc:67:f7:fb:8c:17:df:b6:e6:cc:8c:7f:6d:bf:eb:12:ee:
         c4:0e:c4:f9:11:82:4b:f8:a4:90:a9:5f:48:c3:48:b5:8e:b8:
         87:23:66:84:16:35:03:cf:1a:72:12:c6:cb:c6:20:4f:e3:f5:
         5a:21:58:e1:67:fb:35:fc:c5:2d:c0:8a:1b:84:6c:8e:68:33:
         d3:16:97:41:f1:d3:29:66:a9:5b:e4:b7:b0:1c:a9:80:6a:00:
         7e:69:90:92:69:dc:14:ba:2e:9e:a7:04:93:9e:f8:ae:e2:b2:
         83:d5:09:c2:03:3a:3a:ed:b5:f7:d3:87:15:94:13:e2:b7:ac:
         a0:04:16:5a:5d:e5:c7:f8:96:fc:50:5f:18:7f:5c:f5:10:44:
         83:c4:a4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:58 2025 by rpki-client