Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft
File:                     5LDTQqkyMznAd8XGreEJO1pADyQ.mft (raw, json)
Hash identifier:          t4vetdcLuNijkjkyfKeZWLNzNGEvN6Hnee1BowlFpgE=
Subject key identifier:   11:DA:40:53:BA:AE:20:2D:1C:A9:5D:21:AA:A9:7F:12:C4:0E:75:AB
Authority key identifier: E4:B0:D3:42:A9:32:33:39:C0:77:C5:C6:AD:E1:09:3B:5A:40:0F:24
Certificate issuer:       /CN=e4b0d342a9323339c077c5c6ade1093b5a400f24
Certificate serial:       0199FB7CE93FD1A23BCD6C066FCEFD01A45D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft
Manifest number:          0346
Signing time:             Sun 19 Oct 2025 08:01:31 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:31 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:31 +0000
Files and hashes:         1: 5LDTQqkyMznAd8XGreEJO1pADyQ.crl (hash: 1AQy/IMSI+ZHfVgi7ivzwuJDvu5ngeVSTU+HWigU5gM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:e9:3f:d1:a2:3b:cd:6c:06:6f:ce:fd:01:a4:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4b0d342a9323339c077c5c6ade1093b5a400f24
        Validity
            Not Before: Oct 19 08:01:31 2025 GMT
            Not After : Oct 20 08:01:31 2025 GMT
        Subject: CN=11da4053baae202d1ca95d21aaa97f12c40e75ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:0e:33:a6:c0:22:5e:c6:34:6c:c6:a0:31:e2:
                    2c:76:84:a4:d6:cc:ad:ae:4a:16:64:cb:ac:12:f9:
                    75:10:13:02:d3:3e:d0:94:08:db:67:53:28:2f:68:
                    b4:a9:e6:3d:77:6c:8f:b8:bd:3f:c7:cf:b8:09:7d:
                    ab:16:29:a1:28:55:7e:c3:23:94:10:d1:83:cd:f6:
                    54:7d:cb:49:73:0e:26:c9:4f:43:94:ff:77:d1:ef:
                    48:8e:36:d9:bd:e8:c1:a5:47:27:37:ff:a1:28:dd:
                    0d:b6:e5:b5:ef:86:5f:1f:d7:28:70:ca:ad:5c:44:
                    86:17:08:e4:24:de:d2:45:6e:ee:ed:40:05:3a:78:
                    98:5b:4f:0a:f5:38:19:ff:a0:fb:d3:1a:30:08:ab:
                    84:10:49:d5:12:94:0d:2a:a1:15:40:f5:68:30:11:
                    ce:f2:6c:a9:2a:71:e3:14:c9:97:ad:45:66:20:37:
                    f0:fe:1f:02:16:dc:92:bb:ce:06:28:b5:c4:05:c2:
                    00:c1:43:e0:32:66:4d:54:a2:a9:e8:e3:b9:6b:df:
                    f4:e4:a5:c3:11:b1:7b:1e:39:3a:67:68:1d:6f:f0:
                    82:4c:b0:23:f8:aa:0b:83:5d:02:44:91:37:48:ce:
                    cc:ff:4d:57:32:e5:bd:6f:a4:c3:0b:5a:95:dc:36:
                    0d:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:DA:40:53:BA:AE:20:2D:1C:A9:5D:21:AA:A9:7F:12:C4:0E:75:AB
            X509v3 Authority Key Identifier:
                keyid:E4:B0:D3:42:A9:32:33:39:C0:77:C5:C6:AD:E1:09:3B:5A:40:0F:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:c2:99:77:2f:92:3c:ba:af:72:30:f3:57:b3:52:61:68:32:
         6b:ab:4a:d0:d7:54:c1:14:b2:84:60:f2:44:0a:4b:57:68:b6:
         fa:df:2d:52:45:ac:45:8c:4c:95:d1:f7:49:f5:43:df:55:38:
         95:ab:88:09:0f:ad:f0:66:d5:df:08:38:22:84:20:24:3f:48:
         22:8e:ca:e6:9c:93:17:d7:52:7f:2c:fa:ea:48:a9:82:3d:97:
         3a:5b:ef:03:d5:b8:2f:9e:35:fe:86:48:06:a1:4d:e2:ac:81:
         4f:1e:08:81:d0:dd:9e:63:11:be:7a:9f:11:d2:f4:4e:92:35:
         e0:3d:b0:a8:7b:b0:45:d1:36:17:c0:ba:0f:0b:ed:11:4a:cf:
         33:b4:b3:1d:a5:6f:8c:85:d0:a6:d0:2c:a2:7b:84:d7:a5:80:
         1a:b4:4e:77:c7:b3:bb:42:41:58:c9:fa:b5:f4:4f:3a:2c:c3:
         a4:24:78:5e:9c:10:cc:f3:3b:3b:64:da:5c:42:95:e4:16:63:
         56:46:9c:64:f3:dd:3a:69:83:ad:3f:e0:40:95:bd:8c:e4:5d:
         0a:35:08:e8:33:64:83:0f:92:90:58:08:fd:4c:28:7c:0b:cd:
         fd:76:64:7f:5c:ca:37:aa:9a:6b:1f:f6:0b:da:6d:e2:26:e8:
         16:ef:67:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----