Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File:                     hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier:          VWRdzTGdaAY17XZQzOrTFZoG7p35b1I2qXugGJ0B2TU=
Subject key identifier:   92:A0:AD:0E:CE:77:75:29:69:6F:F0:7F:74:92:E0:93:3A:98:18:CE
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer:       /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial:       0199FDD8B04AB3FE7783600B7B353DCB66D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number:          116B
Signing time:             Sun 19 Oct 2025 19:01:00 +0000
Manifest this update:     Sun 19 Oct 2025 19:01:00 +0000
Manifest next update:     Mon 20 Oct 2025 19:01:00 +0000
Files and hashes:         1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: kE9fkBDRFzMrrdnInvCHElqQLmj8O53rMueqkLb9Hwo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d8:b0:4a:b3:fe:77:83:60:0b:7b:35:3d:cb:66:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
        Validity
            Not Before: Oct 19 19:01:00 2025 GMT
            Not After : Oct 20 19:01:00 2025 GMT
        Subject: CN=92a0ad0ece777529696ff07f7492e0933a9818ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:49:31:2c:90:36:bd:27:e7:02:35:7a:96:25:
                    b3:bd:cc:22:12:55:e5:11:8f:38:c5:86:e5:0f:43:
                    38:79:fe:01:a4:6d:3c:c5:e5:26:13:72:c7:0c:af:
                    94:51:d6:70:d0:ef:ee:cf:76:8b:8c:3a:18:73:f4:
                    db:13:1e:9b:52:cc:12:79:af:fe:e4:4c:96:53:57:
                    3d:12:fa:62:cc:4f:91:99:bb:49:94:db:2e:58:3d:
                    d6:4b:1f:a5:89:fb:81:73:e6:cd:75:fc:d9:50:8c:
                    a6:17:0c:e4:4c:0d:b6:19:fe:dd:35:84:17:74:68:
                    27:36:a4:cb:3e:17:38:2f:a0:22:29:2a:db:4d:31:
                    dd:4f:de:af:99:f2:03:4c:99:fc:8a:da:1a:06:ed:
                    08:ea:82:f7:a9:7b:97:8c:03:ab:a6:c0:4c:86:a5:
                    37:4f:0b:93:49:4d:4b:db:81:51:26:21:bc:5e:fb:
                    d0:9c:f2:d8:51:45:c1:3d:88:02:73:a0:72:26:8b:
                    05:11:99:f6:a3:44:bb:5e:a9:6c:b9:1e:e0:a2:2d:
                    ab:96:e9:5e:41:68:c0:0f:8b:75:8f:8d:ac:48:ff:
                    26:de:30:78:07:83:f3:3d:38:f3:27:9f:01:ea:dd:
                    97:52:08:84:f9:b9:28:e0:44:23:93:f3:24:40:ba:
                    c1:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:A0:AD:0E:CE:77:75:29:69:6F:F0:7F:74:92:E0:93:3A:98:18:CE
            X509v3 Authority Key Identifier:
                keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:34:83:2a:f6:f0:5d:3d:85:c8:d0:72:5c:15:84:b1:14:7e:
         b6:9f:92:1f:47:77:52:27:7a:d3:34:cc:f5:fb:bd:1e:5b:83:
         e9:e1:66:ae:a9:17:13:98:e0:e2:f8:7b:a7:37:69:e4:bf:a1:
         2b:09:0c:eb:9e:33:54:bd:11:48:67:11:d1:55:dd:8a:00:70:
         4f:0d:df:fe:5d:01:c3:45:f3:55:ea:a6:ee:a6:40:ef:e8:67:
         d6:01:3f:d6:f3:35:e7:26:fc:4a:92:22:68:74:31:d0:71:09:
         f2:9b:b9:33:7c:95:2b:b5:17:af:0e:7b:3c:70:6d:70:83:e5:
         d7:68:a0:6d:44:a1:21:66:91:c9:54:72:d1:7f:5c:f6:14:f7:
         40:b9:f0:16:21:af:c0:59:0e:bf:11:0b:de:c4:a4:0a:b3:05:
         9a:de:d4:20:ee:a0:99:a8:1a:ad:4f:ff:92:10:7b:b1:d4:35:
         2d:3e:7e:4c:56:61:6c:5d:d9:90:8d:e4:6e:54:cf:e1:c6:19:
         96:c8:2c:9a:75:a6:e9:9e:67:81:47:be:52:ba:fa:d5:c6:c4:
         d1:eb:81:c0:7c:81:68:8b:ac:9e:5a:0b:cb:95:99:29:ca:0d:
         bb:60:05:13:01:57:05:6b:cc:99:80:01:ed:0f:c6:89:b5:2a:
         7a:15:42:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----