Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File:                     onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier:          s92YaIozEz3Q0wB2XSsxf5prXq43EzTaHf2jw8arDBE=
Subject key identifier:   44:E9:8F:5C:7A:FF:35:51:E5:F4:A3:0F:5D:79:C0:8F:57:9F:38:60
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer:       /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial:       0199FDD9D90900F4EFAFC179C48A6B9CD41E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number:          117E
Signing time:             Sun 19 Oct 2025 19:02:16 +0000
Manifest this update:     Sun 19 Oct 2025 19:02:16 +0000
Manifest next update:     Mon 20 Oct 2025 19:02:16 +0000
Files and hashes:         1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
                          2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: qwitZ97SR9zpSbtnI0nj/Gsee9mCb2zrBplTpJfyjx4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 19:02:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d9:d9:09:00:f4:ef:af:c1:79:c4:8a:6b:9c:d4:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
        Validity
            Not Before: Oct 19 19:02:16 2025 GMT
            Not After : Oct 20 19:02:16 2025 GMT
        Subject: CN=44e98f5c7aff3551e5f4a30f5d79c08f579f3860
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:ae:fe:b9:eb:88:1f:9f:70:54:5b:d2:73:0c:
                    8c:21:0f:5e:ac:0d:9d:19:09:02:0f:17:6e:a5:0b:
                    72:b8:9f:16:e9:c7:60:c7:a4:fb:37:c3:43:a3:c9:
                    a3:6b:f6:62:54:d1:ec:00:4b:be:6e:12:78:7e:f4:
                    ef:d2:19:36:43:76:36:cb:b1:7c:c0:09:1e:c7:d3:
                    2f:f7:0e:a2:3a:9b:6b:4b:97:9b:f6:4f:c7:e3:cc:
                    2c:81:54:a1:04:ae:43:60:e2:48:5d:de:b1:01:00:
                    17:2c:3f:b4:36:09:d4:55:a3:aa:06:7b:44:f2:ce:
                    f3:7f:81:dd:77:c8:ca:93:57:67:9c:a1:50:4f:60:
                    a0:6d:d9:03:c0:43:b9:60:df:3a:95:a7:a2:8d:42:
                    46:9c:27:12:e7:32:0d:6d:08:e7:68:50:db:63:6a:
                    2b:99:ec:f9:1a:70:7d:55:93:8e:29:06:25:1e:54:
                    20:33:0e:99:52:96:5f:75:02:fd:38:0b:a8:25:7e:
                    0f:b0:6d:dc:52:be:ca:ce:64:58:f6:b9:4b:c6:5b:
                    4e:f4:f1:13:19:4b:42:46:68:96:d2:ea:e4:16:f2:
                    ee:02:1c:c5:29:42:ec:6d:59:00:20:9b:f3:45:e7:
                    93:c6:fc:43:2b:e4:83:37:6d:40:46:50:e2:f1:99:
                    43:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:E9:8F:5C:7A:FF:35:51:E5:F4:A3:0F:5D:79:C0:8F:57:9F:38:60
            X509v3 Authority Key Identifier:
                keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:13:d9:21:74:43:97:72:5b:ec:39:f5:1b:8f:83:b3:20:15:
         c5:c5:65:5e:ba:95:a9:c7:57:17:de:0d:32:9a:6d:99:7d:6f:
         6d:0c:c6:d2:ba:c3:2c:31:bb:9f:16:b0:37:a7:92:b8:de:87:
         3d:a2:59:46:74:99:2a:ce:13:07:c0:89:ee:5e:3f:25:ed:61:
         df:d3:1d:fa:52:b9:c8:f4:99:5d:33:21:6c:4c:17:41:7f:53:
         37:c9:d4:85:c1:40:36:97:06:c8:32:f3:e9:df:fc:02:36:b7:
         2c:5a:b2:2a:76:91:05:d9:58:50:44:b3:a1:e6:57:bb:e4:ff:
         6c:fa:8c:07:09:de:1a:75:5f:78:2b:ce:04:0d:8e:85:70:d8:
         7e:0f:e1:ad:4c:f9:06:b7:d1:f1:ba:3d:bb:bf:df:d0:f2:09:
         0c:8b:2b:a8:1c:a2:67:8e:06:48:b2:b6:9b:7c:b6:14:87:91:
         57:a7:3c:7f:bd:44:b9:c6:40:a1:80:f1:c7:2f:44:60:da:fe:
         b0:9a:f5:9d:e2:89:52:6d:33:79:91:45:87:48:c9:76:42:82:
         2c:13:a4:82:c8:38:b8:f2:89:14:7a:89:fa:7a:02:57:f3:b5:
         00:b9:10:06:c9:1a:b0:ec:ec:f6:18:b7:4c:ef:1c:f9:11:8e:
         35:70:04:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:16:19 2025 by rpki-client