Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
File:                     F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json)
Hash identifier:          VlPFWS7qQXst4oyopFFbrjWg7QvnXItflksiCNBkPhQ=
Subject key identifier:   04:16:0E:2B:5A:4C:69:B3:10:10:2B:8C:6B:DC:A6:64:7E:89:31:41
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Certificate issuer:       /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial:       262F0B72238B7F61742EE57D237E4AF9673E35BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
Manifest number:          0273
Signing time:             Mon 20 Oct 2025 05:38:06 +0000
Manifest this update:     Mon 20 Oct 2025 05:33:06 +0000
Manifest next update:     Tue 21 Oct 2025 05:43:06 +0000
Files and hashes:         1: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: e3gM8xBShVESXc8MaKIMDq1iDa8wjJWbHPjdOfhPuFQ=)
                          2: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=)
                          3: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: 894RTKAEh4ciZZOdefpuTBSaNDM2TQpQSdGle6pgy08=)
                          4: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: zgmLa+E6TbWqEBYacKVoa10f0X+kRdgj5V3wyHgmAjs=)
                          5: 326131333a393634343a34303a3a2f34342d3438203d3e20323136333336.roa (hash: lNHaIlVxi/lYCx53I3+MfwePjUfRoiP0WtejKnMjprU=)
                          6: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: WOAaZY65k+/GoeKbXXymPrZVu7CfbDlQvCXqyS0ZjLA=)
                          7: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: nYcdq/fifitjvFyPoNBEJvUP1WGfqAJvzv/Dj2Iivv0=)
                          8: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=)
                          9: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: j84/Fm1nc/JJrf9h3dAaKkat+XV/si7APTv6iSnl64I=)
                          10: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: OXH7kpuguUKmKnwoouN0IGAOMj3E/W/ffH2kJO7vbOY=)
                          11: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=)
                          12: 326131333a393634343a34303a3a2f34342d3438203d3e20323131343331.roa (hash: UQpEpactphMaN3i4tpyR5s9Tmz685dUuNs8hSuG0cJQ=)
                          13: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: DOR1Pt3ct68s+ey18ZghPrs5rAUoZlIbwxjvP68BE+k=)
Validation:               OK
Signature path:           rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 00:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:2f:0b:72:23:8b:7f:61:74:2e:e5:7d:23:7e:4a:f9:67:3e:35:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
        Validity
            Not Before: Oct 20 05:33:06 2025 GMT
            Not After : Oct 21 05:43:06 2025 GMT
        Subject: CN=04160E2B5A4C69B310102B8C6BDCA6647E893141
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:4d:1e:70:90:5d:8e:1e:53:ea:00:f2:67:a0:
                    12:9a:e5:5e:6c:9b:1f:62:5b:cb:3f:c6:da:a4:d6:
                    b3:90:0e:f5:5c:98:9f:48:b0:54:01:e6:c8:83:36:
                    89:89:38:6b:32:93:6e:d6:bb:9d:20:56:51:45:45:
                    c0:d8:f1:f2:c1:81:64:cc:43:db:09:40:63:bb:7e:
                    61:1a:55:9d:30:3a:7f:d8:2e:5f:56:18:a0:93:20:
                    a2:9b:fa:85:5b:78:79:2b:25:b5:4f:f1:5f:d6:b8:
                    28:9c:99:a3:97:f0:c2:f9:bb:f6:06:a1:4e:bb:26:
                    f6:c5:98:31:b7:08:30:b8:70:bd:54:b0:c1:ea:a4:
                    07:7f:bf:f8:8f:51:4a:08:c1:61:54:d2:d7:a5:00:
                    e7:49:dd:40:ce:c3:c3:f2:0d:b5:2e:c9:44:88:3f:
                    a0:d0:f0:65:d1:04:69:a9:a1:c1:06:20:22:15:8e:
                    87:b0:a2:dc:a2:68:64:96:7d:25:8a:d1:44:b3:37:
                    30:f1:e6:5a:27:5e:e9:1d:8c:e9:28:56:c6:f2:4f:
                    6b:15:24:36:15:a6:a2:80:c6:67:2e:f8:9e:48:d9:
                    bf:2f:cc:a2:cb:18:93:78:6b:c5:e3:80:c7:5b:9e:
                    c0:7f:54:e4:86:b7:69:d6:8e:08:5d:25:4c:bb:c5:
                    72:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:16:0E:2B:5A:4C:69:B3:10:10:2B:8C:6B:DC:A6:64:7E:89:31:41
            X509v3 Authority Key Identifier:
                keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:81:a2:57:16:5a:14:49:79:aa:b9:23:e7:18:2f:23:62:44:
         46:fd:a6:b0:c7:a6:39:00:0a:7b:4a:5d:22:8b:17:4a:37:99:
         82:77:46:e6:9d:bf:9f:f7:d1:a8:b9:0e:09:f1:ac:aa:20:16:
         8f:da:e3:5a:7b:30:c5:47:ad:50:30:1d:a2:f7:00:65:14:25:
         ee:87:52:86:63:82:74:f1:ea:08:4e:d5:26:24:52:e8:8f:ee:
         fe:45:bf:e5:fe:7c:d0:34:a7:fb:8a:85:aa:a9:5d:29:25:ce:
         b3:2c:af:cd:5d:b7:50:87:9e:d3:6c:c0:b6:2c:9e:19:65:2f:
         b5:d1:92:a5:23:e8:03:1e:70:89:60:f5:67:e1:ae:8d:c0:23:
         f2:16:5c:a9:4c:3f:5c:4d:8b:55:53:1a:58:73:34:24:24:da:
         76:fc:ac:1c:97:20:0d:21:bd:6e:be:e7:39:3c:29:ce:e4:fa:
         be:ae:a4:ea:bd:80:7f:b5:db:8d:66:85:58:96:3c:90:eb:e8:
         26:e6:99:6f:9e:bc:54:bd:d4:d9:be:ab:2e:77:55:f8:51:ad:
         ba:28:ac:42:ea:46:1a:12:f1:00:21:62:53:03:39:aa:8a:91:
         4d:9c:c4:aa:7e:32:02:1f:80:00:75:99:40:76:d1:a2:a4:e6:
         5d:0a:53:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:46 2025 by rpki-client