Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
File:                     UEwHY-3Lox64nwmD3djdGIkYwu4.mft (raw, json)
Hash identifier:          MZX7mYDQuhZwWmRIn41E1n+PBsydKIlmcy2jVUFeQH4=
Subject key identifier:   45:B1:31:E7:9F:ED:30:48:BD:B8:CB:38:7D:15:92:6E:F7:83:7D:79
Authority key identifier: 50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE
Certificate issuer:       /CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
Certificate serial:       019916BF9BAA8789EF79688C6AE5CDACAFB1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
Manifest number:          0994
Signing time:             Thu 04 Sep 2025 22:01:19 +0000
Manifest this update:     Thu 04 Sep 2025 22:01:19 +0000
Manifest next update:     Fri 05 Sep 2025 22:01:19 +0000
Files and hashes:         1: UEwHY-3Lox64nwmD3djdGIkYwu4.crl (hash: Z7802I9lbbQMpB2tzdsdY/EUWqeveM+UiqVOD8eMdPk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 05 Sep 2025 22:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:16:bf:9b:aa:87:89:ef:79:68:8c:6a:e5:cd:ac:af:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=504c0763edcba31eb89f0983ddd8dd188918c2ee
        Validity
            Not Before: Sep  4 22:01:19 2025 GMT
            Not After : Sep  5 22:01:19 2025 GMT
        Subject: CN=45b131e79fed3048bdb8cb387d15926ef7837d79
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:88:b9:7d:fb:50:02:cf:61:0e:64:b6:da:54:
                    a3:39:ab:53:33:71:2f:de:03:b8:5a:8e:9f:c1:4e:
                    1b:29:44:13:2a:bc:f2:30:b5:92:48:8a:72:c2:18:
                    64:60:13:c8:c2:15:77:cf:03:97:e8:f6:f6:8e:33:
                    8e:08:74:1d:ec:48:bd:ea:1d:25:8f:8e:66:3d:70:
                    2f:cc:09:79:8d:95:79:a5:aa:38:cc:6b:14:8d:c3:
                    99:61:65:7a:13:84:f0:5c:a5:81:e9:e7:29:a3:1e:
                    4e:22:f2:99:c2:e6:22:74:e6:81:b1:0b:ab:67:5f:
                    09:cc:b2:02:dd:8c:69:5e:1d:c5:cd:17:13:16:d0:
                    1c:69:17:10:61:b9:1c:51:77:8a:ad:25:ba:83:2c:
                    7f:5f:af:7b:fd:9e:c3:62:72:3a:c8:98:73:02:bf:
                    f8:af:ac:82:c7:14:0e:77:44:4f:ae:9c:57:7f:15:
                    c3:fa:a5:09:b8:ad:85:c4:b4:11:cc:10:59:44:d8:
                    01:be:c7:75:67:81:fa:41:f8:ea:7a:0f:32:2a:1a:
                    42:34:75:c8:ad:55:34:f1:94:3f:04:6b:78:94:eb:
                    ad:b8:cd:0b:af:8d:30:3e:2a:31:2e:14:50:d9:e3:
                    f1:54:1c:c2:94:3c:cd:fa:b7:ab:44:52:23:59:ac:
                    f3:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:B1:31:E7:9F:ED:30:48:BD:B8:CB:38:7D:15:92:6E:F7:83:7D:79
            X509v3 Authority Key Identifier:
                keyid:50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:45:c9:96:03:b5:6b:68:82:5f:50:f7:7a:99:3d:be:f2:36:
         90:54:93:2c:12:33:17:64:3f:f2:8c:50:a6:a8:6d:37:ac:26:
         fa:c4:62:d7:4d:aa:ef:5d:e5:cf:06:32:5d:f2:86:3b:5e:16:
         1a:df:8b:56:bc:b7:66:6c:ad:7b:2d:a8:2d:b3:69:3b:6b:b6:
         9a:23:65:28:4a:15:3d:27:69:1e:05:55:ef:5b:84:f7:31:ab:
         4e:a2:5e:4d:06:08:0d:72:d7:70:ad:ae:44:50:e9:38:0d:e3:
         7f:22:88:a4:9e:f1:1c:79:35:d4:68:a6:6d:b1:04:3a:c3:68:
         0c:a2:b1:ff:fc:c0:9b:cd:15:e1:6e:c6:93:a4:64:ef:5c:5c:
         7b:6e:5c:aa:f5:8f:d5:94:af:e4:c4:9f:fb:4e:30:14:be:88:
         41:39:91:70:12:ed:01:52:9e:af:d6:d6:40:ff:c8:d6:b8:51:
         a3:1c:d3:a3:cc:2e:a9:84:ed:e8:76:97:86:b1:55:4d:ae:8d:
         02:02:c7:11:23:3d:69:87:c8:96:8c:fd:2a:ac:65:4d:3f:64:
         b6:86:a0:3b:aa:14:a8:6c:02:04:e4:66:5e:9b:3d:e7:e0:fa:
         50:0a:5b:b3:d4:da:de:6d:5e:f6:bf:18:e0:82:0c:16:ae:f2:
         d5:3c:46:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----