Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File:                     DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier:          utGTF+pmcRfJRJhDrPnkQr2q8iPjYipffBmlhWqYrPs=
Subject key identifier:   46:2E:3C:3E:72:C9:51:8E:04:C3:8E:0D:55:FD:60:DD:EF:03:95:F9
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer:       /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial:       0199FE4744B5160E198B6FD46E70C9490294
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number:          0369
Signing time:             Sun 19 Oct 2025 21:01:47 +0000
Manifest this update:     Sun 19 Oct 2025 21:01:47 +0000
Manifest next update:     Mon 20 Oct 2025 21:01:47 +0000
Files and hashes:         1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: w6BzMiRYTh6ejp2e1UjwLbpXPYZthLn4hn5xom8inOY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:47:44:b5:16:0e:19:8b:6f:d4:6e:70:c9:49:02:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
        Validity
            Not Before: Oct 19 21:01:47 2025 GMT
            Not After : Oct 20 21:01:47 2025 GMT
        Subject: CN=462e3c3e72c9518e04c38e0d55fd60ddef0395f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:74:1b:b4:8a:61:c6:07:1f:dc:f3:14:f2:62:
                    bb:25:95:d7:34:90:78:52:d2:da:cf:54:85:9e:ef:
                    27:3e:66:49:d3:b0:7f:bc:78:13:83:ee:c0:47:63:
                    7c:36:8c:0c:45:22:8f:cb:e9:6f:5b:83:68:c0:3c:
                    b8:ec:85:6a:d0:0d:cf:e4:2e:82:ec:ed:08:d9:d8:
                    cc:b0:b9:63:a2:01:5d:d2:f5:30:8b:e7:72:ee:40:
                    1d:0b:fb:3e:20:db:4a:aa:55:02:91:37:5e:d6:1f:
                    2c:ec:7a:00:84:a6:34:9c:76:f7:4e:5a:b7:0e:0f:
                    79:7f:03:fa:d9:af:92:ec:11:2f:e2:c5:22:ce:de:
                    30:5d:5b:d2:e0:d0:d8:0f:f9:cc:5a:f9:bf:c1:6f:
                    7f:a7:22:b0:8e:a8:5a:dd:c8:61:ee:64:f0:96:29:
                    7d:d7:69:a7:bf:7b:1b:25:78:83:3f:14:23:90:c5:
                    36:53:61:ed:b4:07:92:47:74:2a:2d:d0:b2:8a:dd:
                    d6:4b:c0:d9:75:15:08:a5:d1:41:dd:48:4d:74:a7:
                    f2:ba:69:49:a0:2e:08:37:7e:1e:ae:ce:32:83:7c:
                    06:0c:15:7a:a7:a8:8a:c1:38:78:57:1a:8f:57:84:
                    62:19:f6:6a:ba:37:4f:97:41:e0:76:ea:c7:25:32:
                    03:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:2E:3C:3E:72:C9:51:8E:04:C3:8E:0D:55:FD:60:DD:EF:03:95:F9
            X509v3 Authority Key Identifier:
                keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:1c:c4:10:53:d3:48:7e:56:af:d3:8b:76:96:db:08:0f:37:
         f9:69:fe:f0:a1:26:d5:6c:19:40:55:7e:9b:3a:6b:6d:7d:e3:
         e3:6d:65:00:a1:76:24:cc:78:1e:a1:fa:f6:38:db:8e:58:c9:
         bd:a8:fb:01:67:16:b4:0e:b3:61:38:f2:35:74:b2:e5:bb:79:
         9c:7e:56:cb:2d:60:4b:5d:6f:ad:61:e2:67:c5:d3:a3:e9:3f:
         a3:c3:8f:3b:fb:2c:d4:e6:f5:63:0a:1b:28:0f:76:29:c5:74:
         47:59:a0:bc:15:f9:8f:92:94:ae:46:fb:02:60:9e:ac:95:4c:
         2e:7d:23:99:66:ef:94:aa:5a:b7:bb:47:3b:c5:aa:eb:51:67:
         a3:66:26:97:b1:85:bc:54:b3:99:41:3e:02:e3:11:b3:b7:12:
         e1:38:70:2e:4e:55:a2:63:8a:60:3d:61:d2:a8:e2:27:34:b2:
         d5:04:78:bd:5a:86:1a:82:6f:8d:9f:0d:dd:d0:45:41:bc:92:
         4a:33:12:3f:64:d7:c5:8c:9e:ab:da:09:06:3c:d5:9c:50:1e:
         ae:49:74:00:fd:80:3d:7f:76:e8:b0:3c:cb:bb:34:65:ec:c1:
         29:1f:01:c1:fd:b1:10:38:e9:9a:e5:16:53:a1:c3:39:00:66:
         ff:df:30:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----