Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
File:                     sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json)
Hash identifier:          UlMcEFVpCYYx6OQS6F0iR0mFPSrpFQBz+vBaUMTxK1c=
Subject key identifier:   FC:7F:79:1D:08:F0:DB:25:35:B3:07:E9:D0:43:9E:24:61:A0:79:B5
Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
Certificate issuer:       /CN=b0b42f094cba974c1faec6bdec1560f663878911
Certificate serial:       0199FDD9C2960AE605ED0F2D7440C206F815
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
Manifest number:          1374
Signing time:             Sun 19 Oct 2025 19:02:10 +0000
Manifest this update:     Sun 19 Oct 2025 19:02:10 +0000
Manifest next update:     Mon 20 Oct 2025 19:02:10 +0000
Files and hashes:         1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: ql9ImUB3JmDCRygiyIHyUtWnlsRpQXNWaz08BglmcZ0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d9:c2:96:0a:e6:05:ed:0f:2d:74:40:c2:06:f8:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911
        Validity
            Not Before: Oct 19 19:02:10 2025 GMT
            Not After : Oct 20 19:02:10 2025 GMT
        Subject: CN=fc7f791d08f0db2535b307e9d0439e2461a079b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:db:ce:30:b9:ac:35:a8:8e:89:e0:ed:e7:11:
                    a1:22:43:c8:a8:fe:88:0a:59:ad:5a:05:7a:20:6a:
                    c9:c9:0f:d5:53:b9:6f:0e:c3:b5:07:9f:91:30:31:
                    79:f3:9a:8c:d5:97:e6:1a:65:20:ec:4b:6f:b5:97:
                    e8:da:21:d6:81:a1:e9:79:c3:b5:ef:4c:b2:bc:7c:
                    77:95:a7:bb:de:b3:a1:7c:ab:c3:01:e0:df:05:c1:
                    0c:c1:41:3e:fd:eb:e8:96:bc:52:09:ec:1b:db:96:
                    81:6f:78:6b:43:75:40:9c:00:43:4f:78:85:57:c4:
                    60:6b:2a:0f:22:cb:7e:aa:20:b7:7a:5a:ee:94:95:
                    5a:86:78:b0:ae:f4:6f:9c:84:f1:d2:92:4c:27:c0:
                    79:7a:a9:3b:b5:7e:86:66:a7:f0:f4:5b:c7:56:82:
                    a1:b2:71:4d:64:26:98:82:a1:cd:f8:43:80:dc:ea:
                    ef:51:a5:ff:7f:71:61:7f:86:f8:a0:c1:31:a7:3c:
                    77:f7:82:52:a4:e5:d6:66:11:49:ab:6f:32:ad:f3:
                    86:9c:f7:d3:bf:a5:97:9e:32:aa:9d:a0:8f:e2:a8:
                    5e:bd:69:3b:81:62:4b:75:08:c2:5f:c4:d5:c1:4b:
                    54:87:24:db:24:e7:87:78:e3:c2:94:86:53:e4:74:
                    42:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:7F:79:1D:08:F0:DB:25:35:B3:07:E9:D0:43:9E:24:61:A0:79:B5
            X509v3 Authority Key Identifier:
                keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:41:7a:1a:96:e6:ef:aa:61:59:4a:54:86:ce:e5:81:29:49:
         98:8e:8a:c0:a7:97:68:5f:97:fe:cc:5e:d7:2a:03:c8:ef:25:
         34:63:ec:10:e8:55:1f:f1:00:49:00:30:c6:b4:a3:42:3b:39:
         ec:1d:7b:9e:25:a1:60:3c:41:06:be:7e:92:7c:82:dd:6e:d7:
         79:ec:6e:d0:f8:9a:82:4a:ad:00:92:a3:56:fb:a3:d4:6a:7c:
         6b:82:d9:e6:8c:f1:bd:a8:9e:9a:bb:6c:a5:16:c8:80:93:1b:
         3b:fb:76:60:5f:df:50:73:ad:2c:36:05:f4:ac:3b:40:a7:a0:
         75:d9:6a:22:bf:5e:19:8e:4a:f8:40:30:2c:fd:cd:88:f1:a1:
         d1:4c:2a:ca:06:e4:04:0c:03:84:05:a1:21:d0:ae:e0:ab:e1:
         ba:af:9d:4e:d9:a5:cb:9f:5a:c9:42:3b:99:20:8b:83:8b:bd:
         19:64:3f:18:31:75:7a:92:fb:8e:ae:09:59:44:af:74:0c:44:
         9b:01:6b:ce:f5:67:7e:af:99:8a:01:cf:55:87:ac:a3:31:63:
         eb:c7:35:75:1c:bf:60:ea:66:20:b2:e1:4b:65:53:57:93:96:
         73:2d:fa:52:99:65:b0:b2:e9:12:1f:ae:32:b4:25:ed:73:1e:
         da:80:7a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----