Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File:                     uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier:          8+oZYYp/kwWIjczghLfA51WrXtzFIjHMcRr4hD4f8/E=
Subject key identifier:   2B:C9:5D:26:AF:F8:4B:39:31:35:35:2F:15:32:87:8D:6F:DB:C4:5A
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer:       /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial:       0199FE103AD4F71BD7C3363295D10F204D4D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number:          0B63
Signing time:             Sun 19 Oct 2025 20:01:40 +0000
Manifest this update:     Sun 19 Oct 2025 20:01:40 +0000
Manifest next update:     Mon 20 Oct 2025 20:01:40 +0000
Files and hashes:         1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
                          2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: qZOhVB89b+9h4NOepozsnqSDXCoQ1UI+F/GISoNY/UY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:10:3a:d4:f7:1b:d7:c3:36:32:95:d1:0f:20:4d:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
        Validity
            Not Before: Oct 19 20:01:40 2025 GMT
            Not After : Oct 20 20:01:40 2025 GMT
        Subject: CN=2bc95d26aff84b393135352f1532878d6fdbc45a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:c7:1d:1b:a1:59:b6:64:fa:00:4e:f3:ff:47:
                    5c:6c:44:4f:39:ae:1e:64:d4:d1:56:80:8c:8f:8f:
                    cc:d6:a5:b4:e3:a4:4d:86:c0:85:b8:82:7c:e7:40:
                    04:4c:0e:d6:ac:69:04:9f:4f:12:11:88:69:b2:80:
                    8a:22:ba:a4:2c:d3:a7:06:ad:10:ce:02:4b:b6:12:
                    d7:24:7a:54:23:1c:14:4d:10:2c:cc:cd:06:80:46:
                    d6:55:e9:b1:79:ed:6d:38:ed:30:a3:b4:f2:5e:34:
                    d7:6c:75:0d:4c:93:a6:ae:73:b1:40:0a:d4:28:d3:
                    a7:f4:b9:5b:3e:50:71:4b:f5:73:5e:49:42:7d:9b:
                    b5:e7:70:5a:42:e6:0a:29:34:4e:2d:b2:4e:df:66:
                    a3:83:0b:76:b1:85:f0:a1:c2:a5:fb:4d:e3:2f:79:
                    70:76:b3:aa:2c:8e:1b:0a:04:ec:11:cb:6f:eb:23:
                    c7:1e:e5:5c:fb:ee:3d:16:b1:95:9a:9d:6c:3a:a0:
                    c5:20:ea:38:7a:a2:2f:69:c9:de:86:19:81:ba:a9:
                    61:c9:b2:64:35:89:0e:69:92:11:ef:c1:2f:46:3c:
                    3e:eb:f4:b1:be:d5:5b:da:88:88:54:e3:30:0f:6c:
                    71:2a:26:2e:d7:e7:22:7a:47:45:44:fc:3c:7b:f9:
                    16:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:C9:5D:26:AF:F8:4B:39:31:35:35:2F:15:32:87:8D:6F:DB:C4:5A
            X509v3 Authority Key Identifier:
                keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:d9:78:6e:73:46:94:5f:b6:6e:2d:86:0b:39:cb:f6:e3:1a:
         d9:cc:6a:d1:7d:9a:16:bb:9b:e6:df:9d:e0:29:2d:4a:06:9e:
         b9:57:85:a3:75:ed:c0:f0:96:dd:24:75:9a:16:8e:d6:6c:d8:
         da:1a:0d:8c:37:e1:f4:b7:b7:70:2a:9c:7c:11:44:2a:ad:28:
         d4:0e:d4:b7:1e:da:e9:09:c8:d3:6d:59:e2:e9:ab:6c:d8:f6:
         99:9d:8c:5f:e1:de:0a:8a:14:49:b1:0a:0c:6e:b1:37:75:87:
         39:bf:3b:2e:50:8b:bc:cd:42:cf:c6:15:44:22:05:be:e5:01:
         5c:27:36:91:46:48:bb:66:ab:4b:94:67:a8:c1:9b:d9:9d:a7:
         92:e5:9e:01:4f:d3:a6:10:7b:84:9b:71:0b:d2:54:b3:66:ab:
         c2:a4:9a:b3:fc:d3:be:bd:7d:17:21:34:4f:3c:1a:ec:f5:89:
         ae:9e:c5:1a:98:82:f7:3b:37:57:23:ed:72:5f:7d:f5:5d:7b:
         6f:84:60:93:9d:6a:86:d6:e0:52:47:cb:5e:17:46:0a:f1:bd:
         3d:e6:1a:b4:a4:63:29:d4:e1:b7:f0:d2:2f:89:54:2d:69:5b:
         fa:f1:a0:c0:b2:a0:a9:1c:e7:60:a9:8a:6a:e7:d0:b7:dd:85:
         90:18:6e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:31:04 2025 by rpki-client