Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
File:                     UqWb8EMIAwY1n1opSR9UWwcFHAU.mft (raw, json)
Hash identifier:          lHrV7xoq2A0d8MYyOLzGQ8L6VJhXoc2YPLQDt34pHK8=
Subject key identifier:   D5:DB:0A:04:95:33:7C:DA:A3:32:32:0B:09:C4:18:0B:F4:D1:52:4C
Authority key identifier: 52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
Certificate issuer:       /CN=52a59bf043080306359f5a29491f545b07051c05
Certificate serial:       0199FBEA9CD20F4C083CCB1540037A085F56
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
Manifest number:          16E2
Signing time:             Sun 19 Oct 2025 10:01:20 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:20 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:20 +0000
Files and hashes:         1: GvWU7eZamVvazZtWUoco1OLF2MQ.roa (hash: 9kEJ/d7rwclzCBcSORu1ByXHG+IDCNPxceZqglg+1Hw=)
                          2: UqWb8EMIAwY1n1opSR9UWwcFHAU.crl (hash: SnFH243mqdmz/P3ORRdRvIde3QGW2Q90OyFNuWxPfTo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:9c:d2:0f:4c:08:3c:cb:15:40:03:7a:08:5f:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=52a59bf043080306359f5a29491f545b07051c05
        Validity
            Not Before: Oct 19 10:01:20 2025 GMT
            Not After : Oct 20 10:01:20 2025 GMT
        Subject: CN=d5db0a0495337cdaa332320b09c4180bf4d1524c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:52:87:29:cf:f3:f1:c5:92:11:2c:50:73:a7:
                    49:2a:6b:18:cd:02:2c:17:3e:96:8d:37:90:9f:91:
                    4f:0a:97:76:12:cb:0e:d5:c4:e0:d3:85:93:ed:b2:
                    2b:09:43:21:8c:7d:fa:ee:be:29:d1:ea:da:93:42:
                    68:71:1c:7b:45:f8:fa:eb:1b:e6:02:2b:96:f9:6f:
                    34:b4:e9:09:57:53:bb:e5:34:e1:0a:9d:8d:5f:40:
                    eb:df:c8:fe:2c:5a:de:f1:00:6a:b2:77:49:08:82:
                    e8:71:94:96:be:fa:b4:d0:51:5e:e2:5e:9f:a0:94:
                    45:e9:0d:dc:bb:ab:e3:9e:d5:bf:94:59:d9:05:d8:
                    0b:d7:e9:42:f8:80:d1:40:cf:59:0b:1b:2f:f3:c3:
                    ea:78:8d:f6:cf:63:1a:77:8f:f8:95:f8:a5:45:2d:
                    99:cf:25:26:48:59:79:5d:bb:03:c5:a6:c2:89:76:
                    2c:7f:50:3b:da:f5:8e:f9:97:92:da:7f:1b:3f:a5:
                    84:00:80:8f:20:7b:dc:b1:0d:dd:33:f6:bd:6a:7f:
                    f3:d0:60:de:e1:e8:03:58:9f:99:74:9e:e7:f9:b5:
                    d8:c3:96:1f:50:76:e5:b9:00:21:fe:4b:02:e3:da:
                    43:33:35:df:88:70:68:18:31:5b:00:e4:de:5d:bb:
                    6d:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:DB:0A:04:95:33:7C:DA:A3:32:32:0B:09:C4:18:0B:F4:D1:52:4C
            X509v3 Authority Key Identifier:
                keyid:52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:89:45:23:9c:7a:46:b9:df:a1:02:8e:19:69:a4:4f:f6:68:
         bb:ec:e3:0f:41:b1:fb:33:2b:11:29:eb:18:83:bb:4c:96:9c:
         04:0b:eb:90:77:4b:1e:c6:9a:00:18:d7:42:d6:3c:41:ba:fa:
         c6:08:ed:aa:8c:e7:bc:00:c4:bc:99:e4:0f:af:d9:ea:29:f9:
         65:d5:0e:b2:54:46:de:4a:85:26:63:3d:21:54:b1:e2:5c:20:
         21:9d:a9:e7:3f:e4:b7:f3:1f:07:3c:da:93:7e:35:a6:fb:b6:
         bd:dd:b4:16:d4:f3:e2:24:fe:1f:38:cd:8b:d5:7e:d1:e5:74:
         c9:7b:b3:6b:2b:08:f2:d6:f1:7d:3b:5d:87:58:46:00:84:12:
         99:e1:27:2d:eb:cc:df:c5:5f:49:90:29:e9:60:0a:5c:9f:92:
         82:94:3a:02:23:f6:2e:3f:be:57:01:91:f5:5d:95:35:3f:67:
         fc:ce:de:c5:62:77:cd:d1:1a:de:06:1e:c9:ed:c8:48:09:e9:
         46:80:0a:4a:7e:09:ed:bd:74:27:f4:fa:1e:b6:7e:c2:96:ff:
         96:e8:7d:19:39:55:68:e5:5e:45:a3:a7:8d:c9:6b:83:f2:0a:
         ab:e3:e7:57:82:ae:d2:6c:93:4b:d1:7e:8f:5b:15:d0:b5:21:
         1c:5a:2a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:08 2025 by rpki-client