Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
File:                     UEwHY-3Lox64nwmD3djdGIkYwu4.mft (raw, json)
Hash identifier:          Fkb3qdSIq+RJhUGktEhU0OOQZBGpv6XHQG0Knaj9S/M=
Subject key identifier:   94:41:74:65:B5:4D:4C:4D:36:88:13:89:98:71:BF:AF:62:4C:D4:77
Authority key identifier: 50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE
Certificate issuer:       /CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
Certificate serial:       0199FE7D9EDCD0395991C6E0103F4FA663A8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
Manifest number:          0A0C
Signing time:             Sun 19 Oct 2025 22:01:09 +0000
Manifest this update:     Sun 19 Oct 2025 22:01:09 +0000
Manifest next update:     Mon 20 Oct 2025 22:01:09 +0000
Files and hashes:         1: UEwHY-3Lox64nwmD3djdGIkYwu4.crl (hash: bO1/74CEbF2V6kRnZkYXOV1qfB0ExJ6yTnNbJ23xJNU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:7d:9e:dc:d0:39:59:91:c6:e0:10:3f:4f:a6:63:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
        Validity
            Not Before: Oct 19 22:01:09 2025 GMT
            Not After : Oct 20 22:01:09 2025 GMT
        Subject: CN=94417465b54d4c4d368813899871bfaf624cd477
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:da:14:8f:fd:34:d4:31:34:b2:72:4b:b7:c5:
                    1a:00:15:a5:da:bb:44:4c:b1:66:95:92:04:a1:b7:
                    fc:fe:41:79:7e:d4:3a:cb:55:17:7f:b6:dc:ce:fe:
                    f5:2e:09:da:cf:94:4d:6c:96:10:5e:12:01:72:41:
                    25:5a:25:38:55:4a:d8:f8:15:f8:3b:9e:f9:5a:86:
                    dc:29:f0:28:1c:09:aa:dc:c9:7a:0e:cd:b6:13:e6:
                    90:b4:72:a0:0e:3a:85:fc:4f:5d:26:e0:59:56:54:
                    60:3c:ad:00:5b:2c:e8:61:ad:57:28:b1:26:e4:60:
                    e7:12:67:f3:87:d6:2a:6a:6e:7f:96:0d:ec:de:92:
                    e8:95:48:eb:9a:ce:53:eb:d9:df:e3:a1:73:24:92:
                    cb:82:fc:b3:fc:2c:7f:d0:c7:ec:67:fa:d3:b6:3f:
                    34:16:e0:74:59:5c:8a:6d:8f:8d:32:13:2c:17:d4:
                    f4:4f:dc:44:84:75:aa:02:05:94:20:5e:fd:38:18:
                    f2:63:45:98:51:8f:ed:d1:c0:21:db:ab:bc:05:cb:
                    37:63:d6:75:d0:99:a0:c5:68:74:6f:c2:df:1d:6d:
                    5b:22:17:e2:6c:c2:be:01:2a:31:e8:b6:ab:b5:54:
                    d7:41:0b:db:6f:84:20:b6:9d:60:fa:44:07:3c:a3:
                    54:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:41:74:65:B5:4D:4C:4D:36:88:13:89:98:71:BF:AF:62:4C:D4:77
            X509v3 Authority Key Identifier:
                keyid:50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:ef:ec:ab:10:83:42:7c:85:63:7e:02:f4:fb:b9:3c:a2:89:
         cb:90:ce:46:19:5d:0b:d1:fc:29:d1:51:17:a4:2b:40:fb:02:
         78:af:43:64:b0:35:6e:34:01:97:d1:bf:a5:7c:e5:3e:cf:e3:
         6c:16:97:73:49:9a:67:ed:05:96:ec:91:f2:26:91:a6:2b:57:
         d8:95:2e:52:08:71:a8:31:51:73:d9:ab:7a:b1:37:69:15:fa:
         81:16:d3:13:75:18:26:d3:7f:bc:08:8b:9e:4d:9d:e6:48:8b:
         4d:27:57:37:fe:fa:5e:d5:2d:bc:af:f9:35:e5:22:09:93:c4:
         57:c9:e8:0c:dc:28:2c:c4:ad:78:4c:27:a2:65:cc:d0:c7:40:
         fe:66:5a:74:a1:8a:a4:7f:db:d8:1c:0c:92:98:b3:03:2b:9d:
         a0:59:ef:17:92:cb:39:85:58:af:6b:8d:c9:71:5d:2b:5f:e7:
         03:39:af:0a:c5:6a:e1:e2:b1:e4:2e:2b:8e:90:ee:d1:61:7a:
         bf:3a:a7:76:3c:f5:63:16:f6:e9:83:ba:d4:22:82:19:01:21:
         e9:37:e3:3c:00:50:63:91:05:d0:73:a7:32:b6:ac:a6:27:3c:
         cb:e4:8a:5d:e1:35:a4:41:af:74:cc:d5:e6:60:f3:b4:a0:06:
         15:7e:59:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+fZ7c0DlZkcbgED9PpmOoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNGMwNzYzZWRjYmEzMWViODlmMDk4M2RkZDhkZDE4ODkx
OGMyZWUwHhcNMjUxMDE5MjIwMTA5WhcNMjUxMDIwMjIwMTA5WjAzMTEwLwYDVQQD
Eyg5NDQxNzQ2NWI1NGQ0YzRkMzY4ODEzODk5ODcxYmZhZjYyNGNkNDc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNoUj/001DE0snJLt8UaABWl2rtE
TLFmlZIEobf8/kF5ftQ6y1UXf7bczv71Lgnaz5RNbJYQXhIBckElWiU4VUrY+BX4
O575WobcKfAoHAmq3Ml6Ds22E+aQtHKgDjqF/E9dJuBZVlRgPK0AWyzoYa1XKLEm
5GDnEmfzh9Yqam5/lg3s3pLolUjrms5T69nf46FzJJLLgvyz/Cx/0MfsZ/rTtj80
FuB0WVyKbY+NMhMsF9T0T9xEhHWqAgWUIF79OBjyY0WYUY/t0cAh26u8Bcs3Y9Z1
0JmgxWh0b8LfHW1bIhfibMK+ASox6LartVTXQQvbb4Qgtp1g+kQHPKNU2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJRBdGW1TUxNNogTiZhxv69iTNR3MB8GA1UdIwQY
MBaAFFBMB2Pty6MeuJ8Jg93Y3RiJGMLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9lMTlhM2YtMDVhYy00ZGNhLWE4OTUt
ODY2MmM3MTE4NmM2LzEvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9lMTlhM2YtMDVhYy00ZGNhLWE4OTUtODY2MmM3MTE4NmM2
LzEvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAku/sqxCD
QnyFY34C9Pu5PKKJy5DORhldC9H8KdFRF6QrQPsCeK9DZLA1bjQBl9G/pXzlPs/j
bBaXc0maZ+0FluyR8iaRpitX2JUuUghxqDFRc9mrerE3aRX6gRbTE3UYJtN/vAiL
nk2d5kiLTSdXN/76XtUtvK/5NeUiCZPEV8noDNwoLMSteEwnomXM0MdA/mZadKGK
pH/b2BwMkpizAyudoFnvF5LLOYVYr2uNyXFdK1/nAzmvCsVq4eKx5C4rjpDu0WF6
vzqndjz1Yxb26YO61CKCGQEh6TfjPABQY5EF0HOnMraspic8y+SKXeE1pEGvdMzV
5mDztKAGFX5Z3Q==
-----END CERTIFICATE-----