Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
File:                     pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft (raw, json)
Hash identifier:          KvINwhKWRHyypC5ydJsnucMxJbDExeXgNtaxJiKlhkw=
Subject key identifier:   4B:39:BE:77:99:5B:23:3C:92:6C:95:04:4A:C3:90:A1:89:BF:74:A0
Authority key identifier: A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C
Certificate issuer:       /CN=a55004661a09e2675fc1599d4e40027d778c404c
Certificate serial:       0199FAD85044C26A3B05360747C0977542B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
Manifest number:          0812
Signing time:             Sun 19 Oct 2025 05:01:44 +0000
Manifest this update:     Sun 19 Oct 2025 05:01:44 +0000
Manifest next update:     Mon 20 Oct 2025 05:01:44 +0000
Files and hashes:         1: e4pYTgrST_OIh_0Qkxb1VUF6r3Y.roa (hash: CwIOS1Io6ZhDFcyydlZIo2WNdIO73K5UrPWTpvd7EH0=)
                          2: pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl (hash: BJFHF9xFJKSx4Aw5BcKpfySJjRDrHjdsxSDhqTI36sw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 05:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:d8:50:44:c2:6a:3b:05:36:07:47:c0:97:75:42:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a55004661a09e2675fc1599d4e40027d778c404c
        Validity
            Not Before: Oct 19 05:01:44 2025 GMT
            Not After : Oct 20 05:01:44 2025 GMT
        Subject: CN=4b39be77995b233c926c95044ac390a189bf74a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:06:13:5b:2f:64:0f:4b:4f:cc:70:e3:ab:9b:
                    32:1b:46:82:a3:f5:3d:0e:40:03:23:6d:e3:25:3a:
                    64:73:0f:a7:66:30:f0:0e:cf:e5:19:e5:91:a0:c0:
                    cf:cd:41:79:e2:99:02:60:1e:01:5e:11:1c:8e:7f:
                    66:35:ef:5e:9d:2c:2f:51:b6:58:d6:54:1c:0b:0c:
                    79:f0:e6:07:4c:e6:22:4d:c9:5e:e2:a8:eb:89:5e:
                    05:a6:08:d2:88:44:cb:e0:d2:25:64:cc:03:ad:ec:
                    00:ef:9e:cd:05:f4:7b:18:b5:b1:29:1e:38:22:45:
                    a4:13:88:37:8f:a1:5e:c2:c4:bb:1c:5d:ac:e5:cd:
                    76:de:9c:af:6c:f8:c2:56:3d:86:34:36:4c:90:5a:
                    f1:18:25:76:60:3a:f5:b0:4f:8f:0a:2d:43:68:34:
                    73:37:f7:1e:7d:1e:8d:98:42:84:c3:8c:c5:35:e6:
                    c4:23:15:20:75:91:53:64:98:5a:49:8f:f1:88:84:
                    d1:b8:bd:59:cb:3e:d7:9e:e7:2e:c8:ab:30:41:6c:
                    1e:3f:f8:2f:f7:91:c2:46:05:68:68:97:e0:52:d8:
                    e5:18:a1:52:76:ac:06:74:ef:93:81:15:ab:b4:fa:
                    7f:ac:75:eb:13:c2:ff:07:b2:6d:d3:84:ac:2a:7f:
                    45:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:39:BE:77:99:5B:23:3C:92:6C:95:04:4A:C3:90:A1:89:BF:74:A0
            X509v3 Authority Key Identifier:
                keyid:A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:d6:3d:57:b9:be:1a:4d:b1:a1:57:8d:f8:68:a9:9b:ee:ee:
         d3:a0:f3:d2:04:cf:8c:ea:d1:c6:6d:0f:a3:26:ef:a9:a4:a4:
         27:48:60:2f:b9:bf:4b:84:0c:2c:e1:84:e6:cf:37:16:85:2e:
         4b:2d:d8:4a:bc:2b:6d:88:cb:0b:09:41:f5:58:81:fd:76:62:
         24:25:a6:be:3f:37:8f:5c:1e:77:82:a6:81:de:86:49:e0:ea:
         38:1d:7c:2e:e0:10:da:ab:b0:05:f8:cb:80:86:6f:ee:a8:61:
         8c:df:03:c2:b2:dc:76:e2:81:e5:37:eb:8b:72:cd:fd:68:89:
         fc:5e:44:32:f6:d0:f6:b7:bb:29:15:50:ff:6b:af:0b:e7:4a:
         cb:fb:a2:8e:9e:c1:24:87:c5:01:45:5c:ab:bb:9f:e5:bd:97:
         5d:23:16:f6:08:ea:5e:3b:98:3f:60:0d:f1:92:ca:b7:2b:c2:
         e7:83:36:8c:0f:40:9b:6e:22:55:fa:16:31:4f:34:cf:2a:dd:
         eb:c9:9b:bf:87:a9:67:eb:b7:f7:fc:f5:fb:3d:f8:b9:a1:ab:
         4f:37:1b:be:80:7f:6b:a7:16:d1:fa:ab:6b:d8:59:b2:59:33:
         c2:d3:bc:bf:d0:56:0c:58:77:26:ba:ab:07:35:86:18:43:ae:
         29:23:0b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:14:12 2025 by rpki-client