Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
File:                     UW2UBk9zhVXozjZaGVfWnnaICcQ.mft (raw, json)
Hash identifier:          Js78Ub2OXkjqJ5uE0tQ6Y08sN16VsnpdgRBgeZecMJw=
Subject key identifier:   D0:CA:88:7C:01:B4:9A:B6:6E:F3:B0:48:A4:C4:AE:F1:BD:B5:53:50
Authority key identifier: 51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4
Certificate issuer:       /CN=516d94064f738555e8ce365a1957d69e768809c4
Certificate serial:       0199FBEBC1BE0276DE566436F3589296A008
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
Manifest number:          06C3
Signing time:             Sun 19 Oct 2025 10:02:35 +0000
Manifest this update:     Sun 19 Oct 2025 10:02:35 +0000
Manifest next update:     Mon 20 Oct 2025 10:02:35 +0000
Files and hashes:         1: UW2UBk9zhVXozjZaGVfWnnaICcQ.crl (hash: kMUQH4PNDcctfaTEH4+6g+bWTlx15iVWvnd54GsQ4Uc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:02:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:c1:be:02:76:de:56:64:36:f3:58:92:96:a0:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=516d94064f738555e8ce365a1957d69e768809c4
        Validity
            Not Before: Oct 19 10:02:35 2025 GMT
            Not After : Oct 20 10:02:35 2025 GMT
        Subject: CN=d0ca887c01b49ab66ef3b048a4c4aef1bdb55350
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:8a:36:5d:df:98:ab:c6:e2:be:b9:fa:7a:86:
                    de:a5:c9:ca:43:ef:71:76:5d:8a:49:56:a1:23:f8:
                    97:b9:39:bc:7b:33:04:54:01:d0:5b:72:66:85:58:
                    c8:42:2a:3a:d1:2d:6e:1c:db:19:20:23:c6:12:62:
                    c6:e8:b2:e9:cb:49:ec:d0:c8:61:bd:f1:fc:4b:28:
                    15:4e:b1:19:90:a3:d2:f3:12:b9:95:bb:23:fe:6c:
                    0a:ba:cb:89:1b:26:9c:ae:9f:7b:6f:f1:56:1b:6c:
                    ba:d7:f6:a0:d9:8d:19:62:5d:ad:ab:4b:0e:11:d0:
                    22:dd:2b:31:07:94:8d:b2:c6:c1:21:6f:03:a7:13:
                    96:3e:92:14:04:bf:ed:7d:09:60:64:f4:49:47:45:
                    81:28:19:8d:eb:d7:36:28:81:e4:52:06:da:c6:bd:
                    c6:78:d0:66:95:79:5d:03:d6:97:0e:dd:8a:85:5d:
                    1e:96:0d:97:3a:ca:fb:cc:c3:6f:16:f5:50:82:ab:
                    a8:11:e3:eb:d4:b1:7c:c8:e9:d4:6a:7b:b9:d0:d2:
                    fb:df:c5:da:01:d1:b1:0a:1a:46:52:df:eb:fa:04:
                    bc:9c:50:a3:3e:28:2a:69:c7:9b:47:94:6b:de:21:
                    a9:48:58:2e:96:47:0a:bb:ec:87:7d:14:8a:bf:19:
                    25:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:CA:88:7C:01:B4:9A:B6:6E:F3:B0:48:A4:C4:AE:F1:BD:B5:53:50
            X509v3 Authority Key Identifier:
                keyid:51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:e2:52:84:fd:c0:9c:d5:0c:8b:b7:08:e6:4f:76:cd:85:56:
         78:26:e6:1c:0b:68:71:d2:29:dc:d4:85:1b:05:ab:d2:5a:d7:
         8d:8a:df:43:a8:a0:30:ae:1e:6c:2d:0d:cc:e2:92:32:01:7d:
         e6:5d:d3:04:e4:74:84:c7:8d:f2:37:29:43:27:a5:92:07:07:
         0f:46:f5:38:eb:56:81:fa:af:92:d1:e9:76:d7:1c:9f:06:33:
         a6:c4:94:2f:ca:59:86:cc:32:d0:31:8d:5c:32:a6:fb:8f:1d:
         e7:81:6a:4a:46:5c:a8:45:b3:b0:a9:da:da:e5:8b:73:8d:e7:
         94:c9:df:ef:ba:aa:63:12:1d:0d:64:2f:11:14:45:c3:ad:ae:
         53:07:8f:1a:2e:bb:de:d5:cf:ba:50:76:e5:bc:a0:3a:84:8c:
         27:3a:a7:94:09:75:50:0c:19:4d:74:d9:57:64:69:8b:c8:f9:
         91:71:f1:8a:d6:04:b7:45:b7:99:ac:5f:3c:ea:5f:e2:a0:5f:
         63:6c:4a:74:22:d7:da:52:cb:4d:b9:48:c7:e9:8f:7f:84:2f:
         94:f1:fa:39:1f:26:65:3d:0a:59:a1:bf:99:ba:6b:fc:d3:b3:
         8b:8f:f2:ec:76:3f:ae:f7:64:81:70:1f:82:7c:6f:94:ab:dd:
         a3:d1:5e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----