Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft
File:                     dNUnZVf32kEAET2Fc5VmSBVA5hw.mft (raw, json)
Hash identifier:          f/gKp/uOlBxjzmV0WzlYNLpMkKoaRHv2vZN+cq+WOuc=
Subject key identifier:   97:07:08:74:89:F3:1F:08:CB:CB:17:14:9F:3E:07:72:C2:56:28:B9
Authority key identifier: 74:D5:27:65:57:F7:DA:41:00:11:3D:85:73:95:66:48:15:40:E6:1C
Certificate issuer:       /CN=74d5276557f7da4100113d85739566481540e61c
Certificate serial:       0199FC5871CA61AB84BA7605E7A7B4FE4B6B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft
Manifest number:          0994
Signing time:             Sun 19 Oct 2025 12:01:18 +0000
Manifest this update:     Sun 19 Oct 2025 12:01:18 +0000
Manifest next update:     Mon 20 Oct 2025 12:01:18 +0000
Files and hashes:         1: dNUnZVf32kEAET2Fc5VmSBVA5hw.crl (hash: IhAeDh4W3WGaRP5hJ08BXU7Jl6kPHKJOyin5hOvQeB4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:58:71:ca:61:ab:84:ba:76:05:e7:a7:b4:fe:4b:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74d5276557f7da4100113d85739566481540e61c
        Validity
            Not Before: Oct 19 12:01:18 2025 GMT
            Not After : Oct 20 12:01:18 2025 GMT
        Subject: CN=9707087489f31f08cbcb17149f3e0772c25628b9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:27:48:74:7a:92:8e:46:4a:88:f8:c2:02:be:
                    eb:29:3a:25:f0:6f:b5:72:a8:17:0d:47:05:e1:11:
                    e5:f3:b2:24:0c:b0:90:73:88:ab:49:5a:5f:99:53:
                    b8:00:c1:88:46:ce:71:00:73:b5:e8:36:26:e9:76:
                    c8:8e:4b:e1:07:be:24:24:37:55:ca:75:d4:c6:5c:
                    6b:23:b2:d2:2d:86:f7:01:a5:18:b4:4e:e6:63:d8:
                    a6:17:f8:32:46:4d:1f:20:af:a2:14:70:27:69:df:
                    7a:f5:44:39:52:ac:8c:6d:80:4e:b5:f7:e3:1b:13:
                    18:18:6f:68:56:e2:72:cc:4b:cf:38:00:2a:4b:e9:
                    f9:b9:a3:fb:e5:c8:be:4b:22:ec:8e:e7:92:a5:a7:
                    a5:a6:91:c5:90:85:c5:a2:11:c9:eb:7d:ff:fe:ea:
                    16:ea:c4:d2:5e:6b:bf:2c:81:f2:49:73:87:c3:ce:
                    4e:45:a1:1d:e9:10:a4:e6:1a:a6:1a:d7:eb:54:01:
                    99:15:4a:6f:bd:c3:5d:71:c6:d5:b8:8e:e2:8f:76:
                    13:24:a7:dd:49:96:85:9c:9e:ab:20:c9:dc:b9:f1:
                    88:67:8f:ba:f5:94:82:c6:7c:ec:58:dd:04:83:5a:
                    f6:9a:77:9a:8c:0e:df:9d:a6:ec:1c:dc:ac:ba:07:
                    27:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:07:08:74:89:F3:1F:08:CB:CB:17:14:9F:3E:07:72:C2:56:28:B9
            X509v3 Authority Key Identifier:
                keyid:74:D5:27:65:57:F7:DA:41:00:11:3D:85:73:95:66:48:15:40:E6:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d1:d6:34:cd:e5:ae:08:ad:94:12:8a:16:65:b9:fc:f3:67:31:
         25:3e:f4:c5:c1:49:25:46:8f:c1:18:17:24:7a:a9:90:b1:3a:
         8e:54:de:e7:dd:ff:41:5d:5a:9e:b8:1e:22:f6:30:ed:ae:a5:
         48:c2:7e:d9:db:ab:8d:1d:f9:57:1e:52:42:e6:37:a1:19:24:
         dd:fa:45:58:d3:37:f9:11:33:19:8d:1a:c6:3a:93:7b:29:e3:
         78:69:92:0e:f8:44:d6:dd:a4:45:dc:36:e1:26:c5:6f:2b:8d:
         62:4c:59:e7:71:aa:b2:fc:82:34:e6:e0:6f:16:cb:ab:6f:a5:
         23:5b:c4:78:ea:5b:7f:09:6d:2e:2a:36:24:56:45:d2:6c:0a:
         7a:b0:92:dc:b3:68:07:fe:80:2c:e6:28:2a:bf:a7:14:9c:2e:
         93:32:cc:fc:bb:ca:93:0b:a5:a5:7d:c1:86:e7:4c:a2:ab:fc:
         ac:4a:7d:9c:17:a0:32:b7:fe:58:45:fa:6b:a0:ee:72:a8:c1:
         e4:03:6d:dc:fa:1b:13:b5:6f:2e:a4:d5:2d:59:3a:65:16:af:
         8b:43:a8:44:50:41:13:2d:6d:20:80:1e:27:05:ea:85:83:81:
         c3:8b:06:81:53:94:42:04:30:6c:fc:b9:d1:9c:5e:7f:18:d5:
         30:0f:f3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----