Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft
File:                     5zcPsJ5SI60eRI9MDxYv6plae1Y.mft (raw, json)
Hash identifier:          VKHJ8Z6G49EFvnQ8wt3SHFzL/X0mrsDIuHDlVU8XmC4=
Subject key identifier:   04:65:D0:0B:20:EA:C6:D3:3F:07:CF:79:DD:FE:90:CC:81:B5:5B:94
Authority key identifier: E7:37:0F:B0:9E:52:23:AD:1E:44:8F:4C:0F:16:2F:EA:99:5A:7B:56
Certificate issuer:       /CN=e7370fb09e5223ad1e448f4c0f162fea995a7b56
Certificate serial:       0199FDD9A9877C806C5D3F4F225BD2424D88
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft
Manifest number:          1502
Signing time:             Sun 19 Oct 2025 19:02:04 +0000
Manifest this update:     Sun 19 Oct 2025 19:02:04 +0000
Manifest next update:     Mon 20 Oct 2025 19:02:04 +0000
Files and hashes:         1: 5zcPsJ5SI60eRI9MDxYv6plae1Y.crl (hash: 6g1mOCmwMj+C1xBbUzy0vBvDztHlsIKrEB8l0UX8skU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 19:02:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d9:a9:87:7c:80:6c:5d:3f:4f:22:5b:d2:42:4d:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7370fb09e5223ad1e448f4c0f162fea995a7b56
        Validity
            Not Before: Oct 19 19:02:04 2025 GMT
            Not After : Oct 20 19:02:04 2025 GMT
        Subject: CN=0465d00b20eac6d33f07cf79ddfe90cc81b55b94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:89:56:56:b8:07:b2:25:f0:95:fa:69:d7:c5:
                    08:6d:f7:8a:80:07:ec:2f:71:cb:e5:1a:b5:7d:d3:
                    b3:8b:9c:41:a2:a0:79:91:39:b5:95:19:f8:96:4b:
                    86:17:e6:2b:53:e3:21:5f:6c:f5:38:8c:bb:b1:91:
                    b3:e4:26:45:16:35:53:82:9f:d6:b9:6b:b8:28:45:
                    90:22:af:fb:85:61:0a:0f:f9:08:d8:87:71:6c:f1:
                    aa:27:58:3c:4b:6b:d7:e2:c5:9f:3d:08:bc:49:be:
                    3f:8d:4b:bf:ab:2e:95:4e:e9:01:6c:fd:b6:53:4a:
                    0f:76:27:ea:ec:8e:b6:4a:53:b6:65:a2:94:57:fc:
                    1d:75:8d:af:a9:95:c0:fe:11:97:56:64:2c:01:30:
                    d7:dc:ac:99:f0:e0:9f:1c:cd:b6:6d:63:18:1b:54:
                    9d:b4:9d:16:5a:18:6c:f8:bc:85:66:52:19:0a:d0:
                    29:c7:78:6f:e2:26:cd:30:bc:16:f8:29:59:75:39:
                    37:a7:35:42:73:eb:50:bc:80:12:89:ec:d2:6a:22:
                    7d:08:69:ed:d3:a7:10:95:2b:48:ff:a1:f7:15:d4:
                    6a:fe:5d:51:12:25:69:12:44:48:6e:21:29:b3:81:
                    ee:57:32:6d:c8:8a:91:f3:41:d0:fc:d4:9e:8f:c3:
                    89:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:65:D0:0B:20:EA:C6:D3:3F:07:CF:79:DD:FE:90:CC:81:B5:5B:94
            X509v3 Authority Key Identifier:
                keyid:E7:37:0F:B0:9E:52:23:AD:1E:44:8F:4C:0F:16:2F:EA:99:5A:7B:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:c7:90:ef:3d:d2:e9:4a:30:ff:47:a2:ae:03:27:27:9a:dd:
         d7:22:71:c1:7d:4b:00:10:44:d6:e9:13:56:53:2c:89:ca:89:
         96:38:c4:6b:30:1b:e2:e4:34:24:79:24:c8:23:f3:ee:09:42:
         de:2f:5d:62:81:b2:5e:9b:cf:54:46:fc:ba:d5:2e:4d:25:b4:
         d3:0b:bd:23:a0:7a:85:76:db:a0:78:95:bf:b6:e7:9b:71:42:
         2b:eb:bb:da:fc:7e:53:6c:c9:04:d5:39:84:cb:0a:13:4a:d0:
         51:73:eb:d8:e2:df:50:8c:79:16:84:0c:a1:aa:1e:1a:57:58:
         5f:85:0b:1e:e8:5b:8e:c0:86:77:69:85:4f:d2:34:11:10:f8:
         ce:29:dc:cc:8c:05:86:bc:9c:96:5a:19:df:8e:1e:2a:d0:15:
         b2:84:7c:39:40:3a:8d:d0:8c:72:9f:c2:ec:0a:fc:18:f2:cb:
         95:10:ca:7e:49:8f:5b:84:5b:03:27:f1:37:ba:bb:f9:f3:4d:
         da:8e:1a:21:65:f5:86:8f:f7:52:06:00:41:8e:72:f2:86:8e:
         b7:de:bf:a0:af:10:0b:c4:68:fd:3d:72:d2:6c:ec:2a:b0:bb:
         59:09:2a:ad:06:5c:db:e8:1a:b9:c5:56:10:e2:2b:e3:cc:b4:
         7a:28:fb:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----