Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
File:                     UEwHY-3Lox64nwmD3djdGIkYwu4.mft (raw, json)
Hash identifier:          85LDSjejE6EuWXG6LkNjQlRtqZjV0g80ZAwj5GIi5hs=
Subject key identifier:   28:5C:36:C7:3A:2A:F8:28:38:A2:70:2F:88:A1:11:60:10:6D:47:CA
Authority key identifier: 50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE
Certificate issuer:       /CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
Certificate serial:       019750EA63C1AA9EF389CF28105B640DE3B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
Manifest number:          08A9
Signing time:             Sun 08 Jun 2025 19:00:27 +0000
Manifest this update:     Sun 08 Jun 2025 19:00:27 +0000
Manifest next update:     Mon 09 Jun 2025 19:00:27 +0000
Files and hashes:         1: UEwHY-3Lox64nwmD3djdGIkYwu4.crl (hash: FFQO/UnDfPneNl3FAfim2k37UjcQ4XZVAWiMaOsBxUc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:ea:63:c1:aa:9e:f3:89:cf:28:10:5b:64:0d:e3:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
        Validity
            Not Before: Jun  8 19:00:27 2025 GMT
            Not After : Jun  9 19:00:27 2025 GMT
        Subject: CN=285c36c73a2af82838a2702f88a11160106d47ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:ac:20:f1:23:f1:62:78:8b:2d:74:75:58:9a:
                    36:5e:41:00:22:be:3d:c9:96:d7:06:82:27:41:69:
                    a9:23:38:66:2f:c3:31:73:7d:47:5e:e2:ff:5b:db:
                    4d:04:97:6a:c7:d6:34:54:66:ec:a5:e4:1b:54:f4:
                    7a:8d:ca:9a:55:18:bb:75:68:f1:e4:86:d1:33:93:
                    37:2c:c9:96:cf:04:f7:34:55:fe:d1:cb:e2:83:fb:
                    d6:d8:0b:e8:f1:db:0d:12:b7:ce:b9:fb:25:42:91:
                    2b:4d:9e:b1:b1:bf:57:51:38:69:8a:79:f8:4c:d2:
                    b5:69:4b:f0:26:05:13:72:dd:03:fb:1a:6a:be:c8:
                    1c:0e:13:9b:25:ce:49:3c:80:37:f0:c0:24:92:46:
                    9d:01:a7:3b:3d:02:cc:74:94:4c:ff:e3:ac:3c:27:
                    8f:c2:7b:c3:ec:86:ad:e9:42:40:4c:0e:22:21:51:
                    58:26:92:47:91:e6:35:4b:b1:40:a8:36:e9:ad:a0:
                    f1:63:99:ac:c1:e6:82:a0:dd:90:f7:18:8a:14:8b:
                    f5:1c:5b:46:9e:ef:0c:b5:e0:fd:32:c6:95:be:a5:
                    a9:e8:df:d0:72:48:cf:61:31:e7:dc:32:6d:a5:51:
                    19:e7:d4:6c:6b:98:96:e2:a9:fc:9c:97:7d:bb:73:
                    62:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:5C:36:C7:3A:2A:F8:28:38:A2:70:2F:88:A1:11:60:10:6D:47:CA
            X509v3 Authority Key Identifier:
                keyid:50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:42:1b:ca:47:ee:de:79:69:cc:c1:9c:fa:e8:cb:d6:f5:8a:
         1a:53:77:b0:48:62:55:d0:96:ed:c5:25:db:65:94:00:04:37:
         74:1b:49:e5:10:44:df:17:d0:b4:1d:1d:65:7c:6f:d0:4b:72:
         a6:85:40:27:f2:42:17:54:2a:02:09:7d:d9:fd:d1:24:27:c0:
         df:7f:51:95:0e:cc:dc:7a:ff:b0:48:a1:36:71:3b:8e:3b:78:
         ed:8a:f5:79:e9:9a:7e:10:fe:3d:a4:a4:c1:38:d6:d9:bd:8e:
         e2:39:f7:a5:4b:8d:bb:6f:74:a7:ff:98:67:1f:9e:a5:61:81:
         da:48:3a:28:2b:9d:4d:1e:03:36:eb:ce:cc:14:fe:60:76:91:
         a4:de:fd:19:bc:33:f8:00:1b:e4:aa:53:de:db:52:8c:78:9e:
         d2:64:c4:78:91:d9:18:40:28:6b:a3:7b:89:af:8e:56:e9:a8:
         10:69:d1:72:20:6b:79:33:3e:f1:50:97:51:b4:13:11:4c:e3:
         cf:99:8c:8a:86:46:93:6b:ad:3e:eb:25:82:80:dc:ee:04:70:
         4e:e3:39:a7:a6:1a:da:54:84:35:03:90:c7:58:fa:d7:40:d1:
         99:83:4a:a2:02:e0:b2:5f:ae:4b:ff:8a:af:60:e1:dd:1c:b5:
         b4:1e:4f:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQ6mPBqp7zic8oEFtkDeO3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNGMwNzYzZWRjYmEzMWViODlmMDk4M2RkZDhkZDE4ODkx
OGMyZWUwHhcNMjUwNjA4MTkwMDI3WhcNMjUwNjA5MTkwMDI3WjAzMTEwLwYDVQQD
EygyODVjMzZjNzNhMmFmODI4MzhhMjcwMmY4OGExMTE2MDEwNmQ0N2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKwg8SPxYniLLXR1WJo2XkEAIr49
yZbXBoInQWmpIzhmL8Mxc31HXuL/W9tNBJdqx9Y0VGbspeQbVPR6jcqaVRi7dWjx
5IbRM5M3LMmWzwT3NFX+0cvig/vW2Avo8dsNErfOufslQpErTZ6xsb9XUThpinn4
TNK1aUvwJgUTct0D+xpqvsgcDhObJc5JPIA38MAkkkadAac7PQLMdJRM/+OsPCeP
wnvD7Iat6UJATA4iIVFYJpJHkeY1S7FAqDbpraDxY5msweaCoN2Q9xiKFIv1HFtG
nu8MteD9MsaVvqWp6N/QckjPYTHn3DJtpVEZ59Rsa5iW4qn8nJd9u3NiewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFChcNsc6KvgoOKJwL4ihEWAQbUfKMB8GA1UdIwQY
MBaAFFBMB2Pty6MeuJ8Jg93Y3RiJGMLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9lMTlhM2YtMDVhYy00ZGNhLWE4OTUt
ODY2MmM3MTE4NmM2LzEvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9lMTlhM2YtMDVhYy00ZGNhLWE4OTUtODY2MmM3MTE4NmM2
LzEvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIEIbykfu
3nlpzMGc+ujL1vWKGlN3sEhiVdCW7cUl22WUAAQ3dBtJ5RBE3xfQtB0dZXxv0Ety
poVAJ/JCF1QqAgl92f3RJCfA339RlQ7M3Hr/sEihNnE7jjt47Yr1eemafhD+PaSk
wTjW2b2O4jn3pUuNu290p/+YZx+epWGB2kg6KCudTR4DNuvOzBT+YHaRpN79Gbwz
+AAb5KpT3ttSjHie0mTEeJHZGEAoa6N7ia+OVumoEGnRciBreTM+8VCXUbQTEUzj
z5mMioZGk2utPuslgoDc7gRwTuM5p6Ya2lSENQOQx1j610DRmYNKogLgsl+uS/+K
r2Dh3Ry1tB5PXA==
-----END CERTIFICATE-----