Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
File:                     vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json)
Hash identifier:          BHjjuVSt2p/0nD8GKlh7pCWTkSXIl3yNrkMAa89yvHU=
Subject key identifier:   E8:7E:C8:72:3E:64:8A:DB:A0:29:5E:2E:8B:90:78:77:97:C6:DC:D5
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Certificate issuer:       /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial:       0199FC58AF3B981934290B78F991870864F4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
Manifest number:          0800
Signing time:             Sun 19 Oct 2025 12:01:34 +0000
Manifest this update:     Sun 19 Oct 2025 12:01:34 +0000
Manifest next update:     Mon 20 Oct 2025 12:01:34 +0000
Files and hashes:         1: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (hash: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=)
                          2: tAG_ogHK36F9dYARrabqMiVm7WI.roa (hash: XyLTR6YvVH7wVie2ZS7kPXzKlWsXCj8THEJuI5lJwIg=)
                          3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: jUb0dfTbFkH4xJPZKw61m0e+vO4/07pmH46vDEHyiWU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:58:af:3b:98:19:34:29:0b:78:f9:91:87:08:64:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
        Validity
            Not Before: Oct 19 12:01:34 2025 GMT
            Not After : Oct 20 12:01:34 2025 GMT
        Subject: CN=e87ec8723e648adba0295e2e8b90787797c6dcd5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:97:76:73:5e:ef:33:6b:80:06:6b:60:b1:ae:
                    6e:6d:f3:33:5f:ba:13:35:c2:12:7d:33:e7:52:07:
                    26:e4:58:63:e6:c7:f8:26:cf:81:ab:b3:5e:61:6d:
                    ce:b8:8c:74:43:68:2d:29:07:a4:db:35:d6:e2:47:
                    31:7b:78:69:bf:c2:97:55:3e:9d:53:90:be:ff:f2:
                    ac:b5:f0:47:c2:d2:bb:fb:38:2d:ac:2a:27:ff:3a:
                    00:86:85:da:e8:aa:39:82:20:51:e0:31:8f:d0:53:
                    65:04:9b:a4:28:6e:39:e3:5c:f4:69:6d:c7:61:06:
                    3c:13:c2:d8:0a:3a:2a:e8:bc:52:0b:0b:26:34:43:
                    0d:c7:49:1f:b7:c5:2f:bf:86:20:98:2c:31:1f:b0:
                    ba:72:aa:00:04:e4:7d:96:ec:34:33:96:68:99:b1:
                    05:29:0d:37:57:e6:88:01:f7:e6:2f:69:32:1a:7c:
                    6f:c8:39:5a:36:13:38:07:9c:72:48:ea:ca:2e:41:
                    50:e4:d9:c8:5f:49:79:6f:a7:be:69:a0:16:80:a8:
                    33:f7:78:ad:70:45:13:40:96:f1:f4:0d:38:4e:a6:
                    81:bb:38:5f:be:51:78:e1:54:00:52:52:f1:a8:ef:
                    83:9e:e0:4d:ea:61:72:02:a8:79:08:50:20:f1:e6:
                    73:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:7E:C8:72:3E:64:8A:DB:A0:29:5E:2E:8B:90:78:77:97:C6:DC:D5
            X509v3 Authority Key Identifier:
                keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:73:d6:79:10:b8:7f:59:85:3d:f1:af:fd:e9:1f:68:38:54:
         ca:bd:34:db:3a:96:3e:55:ce:a7:85:9b:ed:9b:ea:7b:7d:20:
         1e:cf:db:e3:29:39:c2:cb:79:f1:53:ae:95:96:85:06:bf:cb:
         f0:c2:ec:7b:42:b0:af:64:c1:c8:69:e4:90:9a:cb:bc:6a:3f:
         fb:31:07:75:93:5b:86:d3:9e:23:d8:d3:78:78:13:38:5b:b5:
         23:c1:45:6f:3a:11:8d:53:dd:08:19:cf:a8:60:b9:71:23:10:
         5e:d2:f2:ae:5f:9c:f7:23:a3:0c:65:8c:58:5d:4a:2f:be:38:
         db:79:d8:b2:b7:ea:24:0f:9e:55:8a:bb:28:87:88:3d:d9:e6:
         36:e9:3d:b8:60:7b:c8:ce:8d:a8:b1:ab:91:02:09:fe:e3:53:
         1c:63:e1:53:2c:69:0d:9a:47:c2:36:6e:e4:a6:1b:9d:8e:ca:
         0c:dc:e5:80:46:19:a9:81:b0:cc:38:d7:18:3d:e5:83:37:56:
         d6:c2:44:ae:e2:78:b4:66:2a:77:bc:1e:5b:49:ea:48:8a:2e:
         24:0f:27:26:9a:eb:b5:ce:22:6e:bf:db:1e:0d:99:fa:01:f7:
         11:d0:4d:fd:00:aa:fe:e5:cf:08:f2:8a:8b:ad:f1:73:e3:ea:
         2b:3e:f2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:05 2025 by rpki-client