Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
File:                     mXFUBuche_wTgSpHBMYq4JnnyP8.mft (raw, json)
Hash identifier:          l2gnE+amMFJ/aKj7hzN2AKm64TjgTnXBHFrq+h5kKaY=
Subject key identifier:   F0:E2:A9:3C:88:B2:38:5C:A5:09:9F:E3:39:10:82:81:27:13:F0:1F
Authority key identifier: 99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF
Certificate issuer:       /CN=99715406e7217bfc13812a4704c62ae099e7c8ff
Certificate serial:       0199FB45ED02CCC644F226C14152BA6EDCBD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
Manifest number:          03FF
Signing time:             Sun 19 Oct 2025 07:01:27 +0000
Manifest this update:     Sun 19 Oct 2025 07:01:27 +0000
Manifest next update:     Mon 20 Oct 2025 07:01:27 +0000
Files and hashes:         1: mXFUBuche_wTgSpHBMYq4JnnyP8.crl (hash: G1I3izss5wPs9Y9wGmb0/w2ONwzASwuHqnAlxPeEKHc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:45:ed:02:cc:c6:44:f2:26:c1:41:52:ba:6e:dc:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99715406e7217bfc13812a4704c62ae099e7c8ff
        Validity
            Not Before: Oct 19 07:01:27 2025 GMT
            Not After : Oct 20 07:01:27 2025 GMT
        Subject: CN=f0e2a93c88b2385ca5099fe3391082812713f01f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:b2:20:6b:24:01:b2:12:93:2f:24:a1:78:1a:
                    74:a6:0b:5d:56:89:e8:72:4d:54:5f:e4:3e:69:5d:
                    df:fe:28:a4:ab:b5:4c:38:dd:b0:40:19:b1:3c:e1:
                    a1:85:06:df:a8:da:b1:79:cc:4a:31:7b:3e:80:75:
                    33:d4:8d:81:7b:f5:5f:5a:4f:5b:75:cb:0e:81:91:
                    bd:e3:1e:3f:22:b6:5d:0c:58:29:92:1f:5c:86:d3:
                    83:89:84:8c:6e:04:83:18:a3:f6:d3:e5:5c:1e:3d:
                    70:2b:35:f4:95:84:65:43:1f:44:ef:86:56:04:58:
                    7f:b5:d7:f6:14:8a:24:2d:9e:0f:75:39:97:1a:a5:
                    65:0c:c6:79:3b:9b:7a:80:a9:9a:fa:72:d3:34:ca:
                    14:6a:ac:3e:63:ed:67:bf:d3:22:66:96:55:22:f1:
                    89:7f:b9:21:b0:60:de:89:31:aa:71:05:fd:6f:45:
                    a5:25:fc:49:42:f1:e2:b6:7b:5e:98:bf:50:3e:f9:
                    19:41:70:9c:c9:ff:ab:50:eb:13:fe:33:6a:72:1b:
                    98:5e:cd:62:24:bf:4f:29:22:13:9f:97:d5:1d:35:
                    48:3f:89:5e:d1:70:89:b7:59:b3:93:11:1b:a7:29:
                    ec:2d:ac:80:44:45:04:4d:9d:59:2e:f7:e9:3e:f2:
                    b3:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:E2:A9:3C:88:B2:38:5C:A5:09:9F:E3:39:10:82:81:27:13:F0:1F
            X509v3 Authority Key Identifier:
                keyid:99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:ec:a5:dd:1c:a6:cf:b5:44:c7:49:05:57:9c:cf:f5:a5:b3:
         57:07:75:4c:5a:9d:39:58:ce:51:65:66:c1:2b:5a:2a:18:c5:
         32:b3:d2:86:e9:15:f6:e2:c7:67:56:ab:02:6f:35:24:4a:2a:
         de:b7:19:8c:a1:b6:9f:7e:66:f5:2e:97:a3:07:af:74:a2:ce:
         b3:15:97:22:fb:7c:bb:37:88:44:40:0e:23:ed:6c:bb:ad:3b:
         9d:74:8f:a4:8a:37:07:d8:d4:9b:cf:7f:00:f5:16:07:38:d9:
         f7:d4:0c:ef:d9:f4:f1:f5:13:8c:d0:8d:57:2e:47:0c:ee:28:
         cd:88:33:bb:34:58:7b:05:90:f9:3b:22:e2:c1:30:ea:1d:be:
         ba:88:28:c7:6c:8f:fa:03:c1:a9:61:79:9d:06:29:e6:f1:0d:
         db:a9:04:cd:6e:37:94:b3:93:54:16:d8:3b:8b:1c:26:3c:a5:
         5b:1b:00:dc:97:0a:38:52:a0:fb:5a:1a:ce:a0:a4:93:98:34:
         f7:16:54:a5:e6:37:ed:77:ef:71:c9:91:47:42:83:c0:a6:1f:
         74:f7:99:5f:3a:b7:1d:1b:98:ef:ac:83:9d:2d:5b:0c:4d:c5:
         c1:6a:c2:4e:91:e7:64:3a:0b:bb:62:a7:6c:64:7e:6b:a3:94:
         b4:dc:51:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----