Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
File:                     yFiMcrJRDxd7g18gHjNl7PnkWh0.mft (raw, json)
Hash identifier:          fo8ImeTI+hb3DMsydgrLjg8Qfyz3UAKInIuXCUJkXWQ=
Subject key identifier:   D3:E6:44:EF:06:E7:50:E0:FE:EB:E3:C0:9A:EB:4E:42:AE:DC:8E:70
Authority key identifier: C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D
Certificate issuer:       /CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
Certificate serial:       0199FAA14202BCC9014514AC88C6DE306A5A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
Manifest number:          1092
Signing time:             Sun 19 Oct 2025 04:01:36 +0000
Manifest this update:     Sun 19 Oct 2025 04:01:36 +0000
Manifest next update:     Mon 20 Oct 2025 04:01:36 +0000
Files and hashes:         1: yFiMcrJRDxd7g18gHjNl7PnkWh0.crl (hash: NStOdSURc9ZNkmuCk/VF0IRNqnDnLP3SkydbWHWmHuw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 04:01:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:a1:42:02:bc:c9:01:45:14:ac:88:c6:de:30:6a:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8588c72b2510f177b835f201e3365ecf9e45a1d
        Validity
            Not Before: Oct 19 04:01:36 2025 GMT
            Not After : Oct 20 04:01:36 2025 GMT
        Subject: CN=d3e644ef06e750e0feebe3c09aeb4e42aedc8e70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:68:b1:0c:68:99:00:3c:d5:12:27:2c:11:e0:
                    08:c3:8e:59:8b:c1:23:fd:23:04:53:ba:df:07:fc:
                    bb:5d:02:0c:2b:c2:77:7c:cf:53:84:7e:d5:41:0c:
                    52:41:42:e3:08:5e:30:2c:6c:ce:d1:57:27:07:d3:
                    03:dc:11:14:8f:2a:7b:0a:7d:21:9a:f3:ce:9f:33:
                    c7:34:27:3e:76:06:c1:e8:af:e9:51:27:7c:01:32:
                    1a:a1:6e:dd:d7:d2:64:bf:4f:e5:46:db:bd:81:6b:
                    9f:db:cf:08:36:2c:3c:2e:ab:3b:76:9d:5b:e8:39:
                    0b:ac:a5:bb:cb:a7:73:cf:88:79:32:54:a4:5b:a1:
                    64:b9:49:d7:cb:84:c7:0e:85:3a:0d:57:6b:da:b4:
                    64:8c:ba:12:4a:17:2f:18:33:60:31:8c:65:5c:43:
                    38:8d:76:53:52:46:94:b3:d7:d6:ae:3e:7c:bc:df:
                    6a:3d:a9:da:c9:ef:91:4c:72:57:69:b7:81:2e:69:
                    0d:d6:a4:85:08:7f:c5:db:73:2f:9f:92:a0:24:f5:
                    0c:37:a0:0b:33:46:de:06:25:be:df:95:f4:de:8d:
                    6c:07:54:6b:6f:ac:63:fc:6b:a5:0a:fe:fa:5a:18:
                    62:e4:63:f6:09:77:05:94:ff:8e:d8:37:0a:11:c7:
                    4a:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:E6:44:EF:06:E7:50:E0:FE:EB:E3:C0:9A:EB:4E:42:AE:DC:8E:70
            X509v3 Authority Key Identifier:
                keyid:C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:bb:2c:43:96:b0:08:39:0e:a7:b3:5e:7b:90:0d:3f:fc:c7:
         7a:d3:e4:76:90:86:9f:81:80:e4:6d:e2:a1:81:c2:ce:fa:b0:
         32:9d:56:2e:ed:ec:c7:91:69:76:29:3e:df:d5:bc:f6:6e:03:
         65:cc:27:3a:97:57:06:82:a9:e0:09:fc:0b:5d:94:1e:69:d6:
         94:55:57:07:51:2a:66:91:9f:ef:eb:55:ee:33:76:8d:4e:53:
         41:96:8e:cb:19:ab:4d:72:36:87:de:3e:2d:d4:1c:48:5b:8c:
         83:84:78:5d:b4:8b:58:e5:7e:0e:be:d6:e6:bb:56:87:9d:a3:
         d5:ef:cb:eb:6e:e2:02:bd:81:a9:05:55:a2:38:9b:16:0b:df:
         55:c7:5b:07:3e:f3:83:b6:1f:76:11:fd:ed:21:e2:39:d3:0a:
         47:b7:c4:05:a0:d5:e3:a8:49:e3:7a:71:ff:85:a8:b4:8f:f4:
         1e:0d:8d:1e:11:38:45:48:14:16:35:36:55:0c:0c:f7:40:fd:
         71:fa:d3:3c:1e:44:4e:bd:5c:07:5c:61:10:22:26:57:88:1a:
         ca:e6:e7:a0:50:a9:d4:9e:ec:6c:f2:b3:ca:2d:e8:18:74:f3:
         9a:f2:e1:0e:fa:17:90:f5:e7:78:82:95:ce:ad:be:ac:64:cd:
         a4:d4:8b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----