Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File:                     vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier:          4FOZhgbjO9lvu4R1b4d4j3G14GYYEsZV6+m1EwjJ0ec=
Subject key identifier:   6C:E6:5F:EE:CC:9C:1E:23:3B:E4:C1:86:81:5B:34:52:32:93:5B:B0
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer:       /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial:       0199FBEB202872F734820DE38B165AC3FCD4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number:          0A0C
Signing time:             Sun 19 Oct 2025 10:01:54 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:54 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:54 +0000
Files and hashes:         1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
                          2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: ww48LjdLAvmiRVuWnQ6LPtbT179j+/xLbR4MHxd+LWg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:01:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:20:28:72:f7:34:82:0d:e3:8b:16:5a:c3:fc:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
        Validity
            Not Before: Oct 19 10:01:54 2025 GMT
            Not After : Oct 20 10:01:54 2025 GMT
        Subject: CN=6ce65feecc9c1e233be4c186815b345232935bb0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:0f:13:13:20:a7:86:2b:87:ae:aa:09:8a:7f:
                    40:e2:7a:5d:eb:54:1b:69:42:07:ad:66:da:47:b3:
                    e3:1f:4b:62:57:1c:d3:f2:8a:bf:12:f9:2f:b0:27:
                    13:48:d9:f2:6d:fb:be:0f:a1:29:1a:56:98:da:f7:
                    d3:06:9b:c8:90:20:18:1e:99:9d:d8:d6:52:63:65:
                    87:30:b2:69:7c:c8:86:67:2e:46:ba:d6:e4:29:93:
                    f4:8a:d1:d8:4c:28:cf:0f:b0:1e:f2:3e:47:2e:ff:
                    fe:de:61:63:cb:a3:64:58:62:d6:eb:26:1e:6a:ec:
                    2d:e6:13:76:1b:2d:f8:5f:7a:34:8b:d6:4b:8f:6f:
                    67:3f:14:0b:7c:dd:a7:8c:e5:fd:4e:2b:d1:b2:d4:
                    da:b6:a3:fe:a0:c7:d4:ee:55:71:33:b2:a6:8e:47:
                    b0:da:d1:cf:56:54:9e:18:64:8e:c8:fb:87:e6:a5:
                    a7:ad:bc:ea:4d:a3:48:df:8b:bb:dd:54:d0:e2:44:
                    75:fe:9d:cf:16:d5:e7:24:e4:2b:a6:06:04:c9:b4:
                    14:4d:20:44:e2:86:ae:4b:9e:fa:0e:6f:32:a8:85:
                    27:61:5f:de:d8:4a:9b:28:e3:1b:7f:5d:c6:42:42:
                    57:e9:41:23:3b:e2:ca:a7:d6:94:17:76:4a:7b:db:
                    39:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:E6:5F:EE:CC:9C:1E:23:3B:E4:C1:86:81:5B:34:52:32:93:5B:B0
            X509v3 Authority Key Identifier:
                keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:83:5e:af:04:d8:fd:c8:e5:51:5a:61:1b:f7:8c:c3:e3:6f:
         18:ed:27:9d:b5:9d:42:21:9b:31:46:49:cd:b6:2a:79:31:a0:
         58:f0:fd:ad:33:83:4d:b9:9d:1d:e5:2f:7d:51:38:07:60:38:
         a9:71:9d:f7:9c:34:6b:c6:cc:1c:37:d1:13:e4:27:fe:b0:92:
         15:b8:3e:ed:20:7c:9a:4d:03:a9:9d:40:11:3e:f8:e8:d9:94:
         17:41:d9:52:45:91:ce:87:db:d0:8e:89:96:c0:1a:38:b4:64:
         55:31:e8:36:1e:0a:28:9d:58:7b:7e:47:d5:a5:4a:94:3e:47:
         fc:5c:9e:7b:e3:53:37:66:fa:c7:e3:26:f8:ab:95:d3:92:b6:
         17:b1:57:a8:99:ab:fd:0c:c2:06:7f:e3:79:6a:30:09:b3:72:
         83:d8:5c:ce:43:15:58:14:3d:38:5a:f7:f8:4c:e0:69:d2:81:
         23:85:8b:f6:f4:ad:c3:09:88:76:64:dc:f4:43:e1:68:24:1c:
         a3:dc:c9:69:4f:a1:28:38:79:d4:71:bb:53:9c:15:a9:8e:49:
         7b:90:c9:86:7e:07:53:bc:be:0c:2f:94:46:69:0e:5a:c6:ae:
         5d:85:f1:8a:76:03:51:92:ec:82:46:04:58:16:f0:92:cc:b1:
         7a:cc:2f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:22:27 2025 by rpki-client