Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/996da3-9f8c-475b-8bf6-c7467da2db60/1/mNtTOItvp7HlovTGhjq3Hxz7VRI.mft
File:                     mNtTOItvp7HlovTGhjq3Hxz7VRI.mft (raw, json)
Hash identifier:          b5yHQY6ZGeDerjbED5+6gfI01D5IGWpprhjh+vzXm3A=
Subject key identifier:   37:C0:48:45:E3:03:64:59:45:72:4D:06:38:C1:E5:53:A0:EA:7D:44
Authority key identifier: 98:DB:53:38:8B:6F:A7:B1:E5:A2:F4:C6:86:3A:B7:1F:1C:FB:55:12
Certificate issuer:       /CN=98db53388b6fa7b1e5a2f4c6863ab71f1cfb5512
Certificate serial:       0199FDD9B65B38B279F70DE4F23A63D876FF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mNtTOItvp7HlovTGhjq3Hxz7VRI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/18/996da3-9f8c-475b-8bf6-c7467da2db60/1/mNtTOItvp7HlovTGhjq3Hxz7VRI.mft
Manifest number:          03E9
Signing time:             Sun 19 Oct 2025 19:02:07 +0000
Manifest this update:     Sun 19 Oct 2025 19:02:07 +0000
Manifest next update:     Mon 20 Oct 2025 19:02:07 +0000
Files and hashes:         1: mNtTOItvp7HlovTGhjq3Hxz7VRI.crl (hash: rFKZh07790G2fFOZwjVqYdJTGp75rDadHYyOsawTk7A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/18/996da3-9f8c-475b-8bf6-c7467da2db60/1/mNtTOItvp7HlovTGhjq3Hxz7VRI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/18/996da3-9f8c-475b-8bf6-c7467da2db60/1/mNtTOItvp7HlovTGhjq3Hxz7VRI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mNtTOItvp7HlovTGhjq3Hxz7VRI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 19:02:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d9:b6:5b:38:b2:79:f7:0d:e4:f2:3a:63:d8:76:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=98db53388b6fa7b1e5a2f4c6863ab71f1cfb5512
        Validity
            Not Before: Oct 19 19:02:07 2025 GMT
            Not After : Oct 20 19:02:07 2025 GMT
        Subject: CN=37c04845e303645945724d0638c1e553a0ea7d44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:82:b6:02:cb:0e:43:55:da:ed:9d:81:ae:28:
                    84:6c:74:4b:56:94:d8:b7:49:13:86:8a:89:d0:1d:
                    4f:bc:79:a0:4f:22:38:bb:b6:b1:53:5d:b8:43:a9:
                    c9:2d:15:f7:aa:11:c0:dd:40:3a:4d:a4:c5:5c:72:
                    ce:8f:48:45:8e:3f:a1:c5:9b:95:eb:36:69:72:86:
                    64:26:43:65:9b:93:91:2e:3a:18:32:b1:6e:22:e6:
                    ed:1c:a9:58:2b:ec:6d:02:1f:eb:6e:bb:a6:13:bc:
                    02:58:69:1b:e0:ac:82:29:87:52:cf:89:b9:37:29:
                    50:94:e3:22:7f:d8:63:53:da:20:a9:8a:a9:b8:db:
                    73:34:2e:60:16:71:e4:b5:8c:fa:cb:5a:d3:04:92:
                    17:2c:81:6d:db:6c:9b:37:27:b2:9f:25:bb:97:2d:
                    e7:f9:6a:27:0b:d0:23:19:af:95:61:08:1d:cd:bc:
                    41:33:c8:2b:88:42:12:03:eb:f1:73:96:e3:a9:13:
                    4a:9a:04:7d:b6:9f:e8:c4:2f:86:71:d1:21:5b:c9:
                    2f:b6:d2:63:cb:a0:a2:bf:13:42:da:77:b3:0c:bc:
                    31:88:f5:d7:f0:36:63:72:52:5e:93:5e:c5:dc:30:
                    c3:0f:ec:96:96:13:ce:36:05:45:12:fe:23:24:91:
                    cb:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:C0:48:45:E3:03:64:59:45:72:4D:06:38:C1:E5:53:A0:EA:7D:44
            X509v3 Authority Key Identifier:
                keyid:98:DB:53:38:8B:6F:A7:B1:E5:A2:F4:C6:86:3A:B7:1F:1C:FB:55:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mNtTOItvp7HlovTGhjq3Hxz7VRI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/996da3-9f8c-475b-8bf6-c7467da2db60/1/mNtTOItvp7HlovTGhjq3Hxz7VRI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/18/996da3-9f8c-475b-8bf6-c7467da2db60/1/mNtTOItvp7HlovTGhjq3Hxz7VRI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:54:04:14:96:a8:8f:1b:f0:6b:60:51:42:27:ac:c5:4c:17:
         f7:d8:84:1b:64:7c:53:6e:4c:0e:17:fc:98:1d:ff:9d:29:a2:
         4e:6c:66:59:0a:4f:ac:50:14:21:ac:1b:e5:90:13:d0:cd:fd:
         dd:82:bc:71:a6:ef:d0:8b:36:25:4c:df:7e:b8:ec:59:a2:a2:
         bc:ca:f6:6e:75:e8:de:f1:fc:a9:90:1e:0a:29:71:78:89:e7:
         d4:f1:20:22:b5:c2:1f:30:10:51:2b:ef:ce:69:49:68:6a:9e:
         6b:e4:6b:62:50:e4:c7:e7:88:ed:5e:8c:7d:80:29:6b:02:29:
         d0:f2:0e:31:d1:1e:cd:f0:78:88:07:8f:c5:18:28:90:2e:20:
         14:ea:6f:d9:6b:bb:c1:a6:ca:91:9f:f1:39:8d:75:34:d6:49:
         5c:c7:47:78:31:59:32:27:dd:ce:41:c3:5f:34:b4:ca:8c:61:
         f8:b8:6e:53:86:df:79:9d:ac:a0:8f:96:2f:af:50:8e:0a:41:
         be:d8:23:40:a9:6d:b1:dc:40:f2:0b:1f:a4:ea:78:29:5c:e3:
         07:2c:b3:fb:b7:a5:e1:40:b9:cc:1d:d6:53:bb:f1:6c:98:fa:
         c7:77:8d:53:f6:02:7b:6b:be:e2:66:93:3d:d8:1f:96:2d:43:
         c1:33:6f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----