Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft
File:                     IIP4tbYgnefJQAjzM3vjQ2866-Y.mft (raw, json)
Hash identifier:          oNVV/onjU92iApLbUAlJoKGyvn+WA1a7vxjgaDT0ZPI=
Subject key identifier:   D7:2F:CC:AF:46:D7:F2:25:FC:43:6E:CE:E1:0B:83:43:23:B4:42:29
Authority key identifier: 20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6
Certificate issuer:       /CN=2083f8b5b6209de7c94008f3337be3436f3aebe6
Certificate serial:       0199FB0EF6A01846A75F26A348B32D01A8A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft
Manifest number:          0736
Signing time:             Sun 19 Oct 2025 06:01:25 +0000
Manifest this update:     Sun 19 Oct 2025 06:01:25 +0000
Manifest next update:     Mon 20 Oct 2025 06:01:25 +0000
Files and hashes:         1: IIP4tbYgnefJQAjzM3vjQ2866-Y.crl (hash: phZjiuWPkGhOVz5AguEUOlmPlo/zHb9I0ClyvmZRxkY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:0e:f6:a0:18:46:a7:5f:26:a3:48:b3:2d:01:a8:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2083f8b5b6209de7c94008f3337be3436f3aebe6
        Validity
            Not Before: Oct 19 06:01:25 2025 GMT
            Not After : Oct 20 06:01:25 2025 GMT
        Subject: CN=d72fccaf46d7f225fc436ecee10b834323b44229
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:ea:52:1b:69:b6:cf:c3:6b:47:0c:b0:18:5b:
                    b7:80:1c:76:bb:99:60:fd:00:12:af:bb:af:b0:f7:
                    c7:6c:ee:e5:cc:35:18:88:7d:9d:e9:c8:fc:62:28:
                    99:31:f7:70:e2:34:e5:14:c4:44:59:5e:3f:db:5c:
                    32:6b:bc:b0:f7:eb:57:10:ef:33:ae:ff:61:c1:b8:
                    74:2c:93:ce:ca:1d:4e:6d:93:6b:b7:12:64:8b:82:
                    cf:47:bc:a1:82:6a:e1:63:2c:79:e8:bb:3b:23:0a:
                    fd:6f:45:97:db:dc:02:de:16:eb:c5:b1:05:ff:ad:
                    fc:1a:46:24:b8:1d:ff:9a:47:82:e5:cb:6e:1a:a1:
                    d2:47:78:21:ac:81:4b:f0:f5:32:0c:bf:56:a5:8f:
                    3a:3f:4f:8e:a4:41:b9:d4:63:e5:cc:69:e2:15:e1:
                    f5:b4:2d:8a:d5:7d:ca:40:98:4c:ea:56:a8:fc:bd:
                    af:5a:a3:29:7d:ce:70:3c:76:c2:39:3a:d1:d2:c4:
                    ef:6a:34:60:b6:8c:81:be:e1:e2:65:f1:a4:6c:ca:
                    e9:6e:bb:af:f2:9d:aa:56:15:dc:f1:60:4f:45:31:
                    7e:9a:e7:37:d4:12:c9:60:27:2f:44:5a:4f:15:b2:
                    16:bb:64:9f:a8:f4:1c:87:3a:64:00:ec:af:dd:76:
                    6e:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:2F:CC:AF:46:D7:F2:25:FC:43:6E:CE:E1:0B:83:43:23:B4:42:29
            X509v3 Authority Key Identifier:
                keyid:20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:c6:3b:8f:d3:35:b0:13:d5:be:2f:ad:7f:a0:0f:bd:bf:c7:
         43:08:a5:34:34:4b:41:2c:fa:88:67:94:a6:d4:fa:8a:0c:ef:
         c4:a6:14:30:1b:9d:1c:57:43:59:69:5e:f6:0b:12:9f:0e:e6:
         44:56:71:2f:44:1a:e9:dc:07:75:b4:58:95:38:5d:fd:c2:2c:
         2b:c8:90:b2:9e:3e:2f:39:82:ba:3e:39:02:63:aa:44:f3:0a:
         65:1e:a2:1c:12:c8:6f:79:db:b5:87:47:56:51:8a:d7:e3:26:
         60:4c:15:78:66:79:c0:2e:fe:70:bd:25:58:fe:c7:85:3d:2c:
         09:c5:e8:1f:b9:be:34:ca:3a:5e:25:bb:2f:66:91:e1:5f:3a:
         18:55:2d:18:da:a5:83:f1:67:de:d8:8a:d6:b6:72:04:21:a8:
         b4:85:89:be:45:1a:c5:41:2d:1c:a0:f3:cd:e2:23:5b:a1:49:
         dd:27:be:66:ed:06:94:9d:81:63:1f:8c:6f:7b:7f:0c:95:8a:
         99:97:63:08:1b:46:74:09:d8:15:57:f7:af:22:27:27:0b:12:
         a5:ac:b5:ef:16:d6:7b:4b:ae:b8:83:ab:29:89:03:10:1e:08:
         b2:9d:e5:96:56:5b:63:b0:db:6e:34:4c:a5:e4:94:59:e0:43:
         c0:a6:4c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----