Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
File:                     67YrcxkGEIQRy1VV2BvcOj_cbbg.mft (raw, json)
Hash identifier:          1Xb212VXcSi9ytBvgxFqkt1kOuNqMV802dHzxzVjJgU=
Subject key identifier:   17:C1:5D:CB:32:88:64:CA:D5:6C:E2:A7:3C:B3:FD:F0:41:05:3E:18
Authority key identifier: EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
Certificate issuer:       /CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Certificate serial:       0199FAD7BFC8BD850EFD105CE3D88CCF3BAC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
Manifest number:          018E
Signing time:             Sun 19 Oct 2025 05:01:07 +0000
Manifest this update:     Sun 19 Oct 2025 05:01:07 +0000
Manifest next update:     Mon 20 Oct 2025 05:01:07 +0000
Files and hashes:         1: 67YrcxkGEIQRy1VV2BvcOj_cbbg.crl (hash: 60ONnbjh1zglHkX3miVRSfUc1LToR4lINLLIFDiUrI8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 05:01:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:d7:bf:c8:bd:85:0e:fd:10:5c:e3:d8:8c:cf:3b:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
        Validity
            Not Before: Oct 19 05:01:07 2025 GMT
            Not After : Oct 20 05:01:07 2025 GMT
        Subject: CN=17c15dcb328864cad56ce2a73cb3fdf041053e18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:f1:d5:21:5e:67:6c:bc:af:b7:e3:14:41:1a:
                    06:8b:06:06:7d:fe:96:95:17:e6:ff:b5:76:ab:7c:
                    bb:b1:fe:1e:31:9f:25:c8:b3:b4:0b:be:71:12:db:
                    d8:48:13:72:99:75:f4:85:3a:f7:92:08:64:e3:bb:
                    c1:3d:f4:73:a1:2b:e3:2c:a6:f2:94:dd:aa:2a:b6:
                    3e:cb:57:90:31:5f:0e:36:a4:03:d9:1d:e2:c2:48:
                    d7:e8:e2:36:46:83:fc:31:bb:29:69:8e:2f:62:aa:
                    a6:cc:9d:3d:c5:73:6a:45:eb:17:fa:24:27:cd:6f:
                    17:4b:60:8d:22:2f:51:b6:4c:bc:df:6c:65:e2:e9:
                    e9:b7:63:f5:f8:ea:2f:64:a2:9b:d2:3f:d9:57:ed:
                    8c:48:63:07:60:80:a1:1a:8d:ea:ec:4e:ef:69:d2:
                    fe:27:36:95:39:47:61:48:93:e2:51:7c:64:65:a4:
                    6c:c1:f6:63:97:60:32:d2:97:9d:56:42:f3:f1:27:
                    c3:fa:03:4a:fb:17:bc:f2:0a:32:5d:d4:ed:f9:2b:
                    f8:fe:9c:0a:e0:c6:6d:6f:a9:29:43:5b:fb:bc:29:
                    7e:b5:27:6b:31:89:99:1f:12:b0:bb:46:15:e6:49:
                    01:e3:66:f9:14:32:13:fd:ed:df:e7:f0:f2:68:70:
                    0f:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:C1:5D:CB:32:88:64:CA:D5:6C:E2:A7:3C:B3:FD:F0:41:05:3E:18
            X509v3 Authority Key Identifier:
                keyid:EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:f5:cc:65:60:4a:b9:ac:cf:63:6c:9a:76:ba:be:ba:e5:a7:
         5a:34:73:32:d0:1d:00:30:e4:17:a8:6c:8a:6a:6e:1e:f5:21:
         cd:c1:e9:76:81:ba:4d:a5:7a:17:ff:6e:c6:c1:44:12:77:a7:
         2e:c6:6a:00:92:ea:94:0a:a8:35:fb:39:40:53:67:0b:cd:15:
         42:69:e5:e0:11:5f:5f:e0:2c:ac:22:7c:5a:6c:52:02:76:23:
         fa:32:9c:3e:fd:1a:ca:b4:4b:21:c7:6b:49:a3:a8:ae:dc:0e:
         db:fb:42:f0:2a:54:79:c3:ae:9f:5a:03:f5:47:21:12:f7:94:
         dc:e7:f9:3c:59:8f:62:3a:d7:e0:f4:73:46:66:c3:4d:dc:2c:
         7d:02:cd:44:54:e7:2a:83:dc:13:74:09:04:95:8a:f9:4b:93:
         fe:d4:38:fd:15:25:8e:4a:3f:73:7d:84:17:3f:9c:55:51:11:
         02:ca:e9:76:9a:97:12:ec:86:fb:ed:69:0e:68:94:db:2e:05:
         fa:f6:2a:60:81:33:42:18:84:a4:d9:20:2e:f5:7f:c8:bb:e9:
         2a:e9:54:5f:f1:e6:9a:22:b8:31:77:d0:5d:e4:19:54:8b:8c:
         db:7d:90:81:a6:17:15:a9:74:ab:75:6d:0d:81:ed:92:de:e2:
         52:b0:b0:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:22:10 2025 by rpki-client