Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File:                     ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier:          pElVZnmSlz7XubA/PuHGxP+pQTf2vO8GLxNU6KDXsdk=
Subject key identifier:   BA:D8:B7:8E:DB:FD:0B:9F:B5:BB:50:75:F5:2E:A9:1D:FE:97:17:95
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer:       /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial:       0199FB7CF25D0B64D8EBD0A81114A37F09D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number:          1675
Signing time:             Sun 19 Oct 2025 08:01:33 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:33 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:33 +0000
Files and hashes:         1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=)
                          2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: 3fHOQPYWMns7e75kyF0e4o/Q979StgiYHU5Zc9GvJsg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:f2:5d:0b:64:d8:eb:d0:a8:11:14:a3:7f:09:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
        Validity
            Not Before: Oct 19 08:01:33 2025 GMT
            Not After : Oct 20 08:01:33 2025 GMT
        Subject: CN=bad8b78edbfd0b9fb5bb5075f52ea91dfe971795
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:e5:7e:19:6e:a3:b6:dc:83:25:30:de:a5:4f:
                    d7:8e:70:c9:7c:f9:30:45:99:de:58:49:ba:c7:ce:
                    a6:d1:d3:2e:fe:0b:37:07:a6:44:81:b4:91:93:9e:
                    8e:c9:94:14:30:14:ca:19:ef:ad:6b:49:56:7b:2f:
                    54:a6:0f:e8:29:93:69:37:e6:24:84:32:ea:d7:60:
                    37:e8:f3:ad:c3:fb:fa:f2:01:d4:31:2b:ba:59:b7:
                    d5:0f:88:20:06:64:ea:1d:38:ee:0b:b2:bf:31:22:
                    dc:72:7a:43:ce:51:b1:76:28:18:b7:2f:3a:39:c4:
                    9d:f4:61:b1:c0:37:b7:69:b9:6b:37:be:bd:e3:61:
                    43:5d:d6:e2:18:3e:2d:da:27:46:61:07:1a:ba:14:
                    4e:5d:a4:3b:17:fb:97:81:b1:c5:82:36:19:1c:ff:
                    ca:e5:bc:d4:fe:f1:f0:39:7f:a4:13:32:5b:75:12:
                    51:43:d0:c6:d6:11:bd:3c:68:e3:d8:46:ae:3b:f6:
                    e2:1f:96:13:b1:b4:d1:2a:bb:f9:b2:9e:11:58:c4:
                    c4:50:4a:3b:2e:53:84:a9:88:81:f1:77:fe:5a:d8:
                    9b:1e:0e:be:3e:d5:bd:a0:a6:e3:30:d0:c1:fe:cf:
                    85:ba:1a:be:59:f3:59:62:b5:a1:4b:4d:a7:fb:7c:
                    48:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:D8:B7:8E:DB:FD:0B:9F:B5:BB:50:75:F5:2E:A9:1D:FE:97:17:95
            X509v3 Authority Key Identifier:
                keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:9c:23:2b:08:8c:df:cf:37:b1:e5:99:06:3a:bd:83:8b:3e:
         6f:b3:d6:74:ef:c4:08:9f:3f:31:ae:86:ca:7c:52:6f:60:29:
         29:2a:cc:e9:59:ec:9d:70:ef:77:43:f8:2d:ab:d1:c4:13:1a:
         ac:94:ac:20:4c:c9:bc:1d:5e:c0:5f:35:26:35:f2:5b:0f:65:
         9f:8a:86:3b:5e:66:cf:54:1b:b9:f8:5d:07:30:1e:2d:cf:42:
         fc:dc:a7:c0:5f:f3:a2:37:f1:c9:86:bf:50:f7:b2:cc:e9:48:
         ba:a6:b2:ab:dc:83:f3:67:13:75:d5:ed:7e:ea:99:3e:c0:63:
         c6:e0:0d:fb:2f:df:59:59:68:12:58:80:11:da:ed:d0:78:90:
         be:52:a1:83:df:c9:a0:17:e6:f3:ee:47:15:0a:09:d9:13:09:
         7c:50:63:19:18:4b:93:f6:c0:87:14:fe:68:9b:21:44:ae:47:
         7d:26:30:d3:4a:71:88:ff:4e:55:96:6a:31:86:cc:9d:d5:14:
         2d:fe:4d:f3:3b:f6:93:75:b8:d4:8c:d6:c1:4f:a6:fc:81:2f:
         ff:e5:c7:6b:4b:3e:c4:54:87:4d:e4:18:14:c0:78:11:75:b9:
         52:af:84:14:13:0e:dd:56:11:80:2a:57:10:ee:1c:ba:2c:d0:
         6e:40:8f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:34 2025 by rpki-client