Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
File:                     8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json)
Hash identifier:          auEhQL2T8mZaJMOXGGXm0U1k+jxDNiiCdEbU9uhfNW8=
Subject key identifier:   81:B7:C7:AE:F2:8A:42:C2:B0:3F:E5:B2:17:34:CC:0F:03:8F:E3:41
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Certificate issuer:       /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial:       0199FB0EC025E5DB8C575C1669ED39CD1B4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
Manifest number:          0D91
Signing time:             Sun 19 Oct 2025 06:01:11 +0000
Manifest this update:     Sun 19 Oct 2025 06:01:11 +0000
Manifest next update:     Mon 20 Oct 2025 06:01:11 +0000
Files and hashes:         1: 5-tO1DtUPdvn-gHncHuAbgt6OiM.roa (hash: L6Z02H1tfyOJ9fsH+lsAomG7wfqgJlWMWjJh/1Ka9SI=)
                          2: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: IopE8dws0Hz6dajCkl8bP/vkunKJTJdqeakxFEb+yrg=)
                          3: gPE9V0tO8JPLDv8MCZH-UuWvdnQ.roa (hash: 5qjlUc3/t7psPBo135Wzs5OYxrc/B+KKSYzn0gcEaGk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:0e:c0:25:e5:db:8c:57:5c:16:69:ed:39:cd:1b:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
        Validity
            Not Before: Oct 19 06:01:11 2025 GMT
            Not After : Oct 20 06:01:11 2025 GMT
        Subject: CN=81b7c7aef28a42c2b03fe5b21734cc0f038fe341
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f2:ce:8c:70:da:d2:3d:4c:39:bd:27:82:87:
                    d3:2a:08:cd:fb:77:cc:e8:7d:af:18:f0:41:f1:20:
                    24:b9:2a:c4:8f:92:db:aa:65:62:b4:24:3e:a4:05:
                    cb:2e:ca:f2:4a:30:e5:b5:b8:50:2f:0e:6a:aa:df:
                    1c:a2:1a:36:7c:80:c9:ff:dc:8f:c8:92:cb:a6:ea:
                    d2:c7:bb:1c:c5:7c:18:4c:96:02:17:9b:4e:a3:eb:
                    61:29:0e:14:8b:4a:25:67:0f:25:57:5b:b4:68:41:
                    a4:22:50:0e:39:e1:a0:89:4f:1e:b4:b3:aa:52:be:
                    82:51:0d:63:2b:f6:60:96:e0:47:dc:f5:25:ef:4c:
                    f7:6d:3c:a4:d2:6d:5f:43:d7:87:23:e2:6f:d2:09:
                    b7:75:b4:12:3c:a1:18:67:99:cf:b8:93:c3:57:1c:
                    46:2e:20:19:a0:87:38:44:72:9f:d7:35:d0:52:2d:
                    e7:f5:04:78:9b:4c:7d:e8:3f:8e:63:3f:3c:ea:ae:
                    70:dc:05:b6:35:8b:aa:fe:2a:d9:4a:3d:d0:57:9c:
                    29:a3:45:f4:07:ec:a5:87:4e:2a:3f:4d:4d:bd:24:
                    7b:59:27:ec:7e:ee:08:a3:44:f4:65:32:b1:9c:16:
                    f7:0d:08:1d:5d:3b:af:ab:dc:11:10:a1:a4:5b:6e:
                    fd:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:B7:C7:AE:F2:8A:42:C2:B0:3F:E5:B2:17:34:CC:0F:03:8F:E3:41
            X509v3 Authority Key Identifier:
                keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:49:47:8e:65:18:0f:b4:f8:c9:be:e7:39:3e:26:e5:05:ee:
         ee:63:76:31:49:7e:b4:ca:d8:74:50:0b:09:31:3a:74:9d:cd:
         44:b5:56:8a:87:bf:da:67:65:fe:1c:9c:56:b7:13:b8:4c:47:
         3c:ca:5f:49:c3:40:e2:2d:65:71:e5:fe:fe:cd:38:22:5a:fc:
         89:60:a9:75:03:24:63:29:ac:41:2a:d3:4d:4a:7b:d0:b7:b3:
         d4:78:c0:30:39:d0:2e:0c:a4:9f:e3:dc:fe:f5:2c:9b:02:31:
         b6:c6:0a:93:92:25:10:f3:96:8a:b3:1d:4e:6e:36:db:e4:ae:
         b9:af:bf:29:e7:14:47:88:7a:03:95:6b:5a:dd:40:f9:35:dd:
         61:f2:19:34:86:f7:8b:d4:2c:0d:58:df:d4:4f:fc:33:00:c9:
         17:16:30:52:52:11:73:d0:5d:3a:7f:ed:37:88:a5:c8:fc:41:
         f4:02:39:3d:80:df:7d:b8:ef:b8:f8:ea:65:ad:22:4a:3d:5f:
         10:f6:e9:61:34:71:e1:39:d1:e3:96:77:41:4f:8b:cc:44:48:
         16:fc:5b:04:d3:dc:3d:b6:7c:0a:d1:48:ff:1f:39:6c:bc:45:
         d4:3c:13:02:3f:f3:7a:36:c0:7a:1d:58:22:80:77:38:32:d7:
         af:95:ce:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:15:04 2025 by rpki-client