Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft
File:                     qCYCgPNU92LV7fNMisgW4cIHG1k.mft (raw, json)
Hash identifier:          Ay3byYfH5Ho7rB9aRyF+jK2Z3FUSX0JVMx4XExpvDmA=
Subject key identifier:   D9:B9:F4:7B:F6:7D:36:C9:9D:69:19:BA:C8:27:F4:0C:17:5D:9E:A1
Authority key identifier: A8:26:02:80:F3:54:F7:62:D5:ED:F3:4C:8A:C8:16:E1:C2:07:1B:59
Certificate issuer:       /CN=a8260280f354f762d5edf34c8ac816e1c2071b59
Certificate serial:       0199FAD807CD278269EB8CCBD8EBB3D981F7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qCYCgPNU92LV7fNMisgW4cIHG1k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft
Manifest number:          16DF
Signing time:             Sun 19 Oct 2025 05:01:25 +0000
Manifest this update:     Sun 19 Oct 2025 05:01:25 +0000
Manifest next update:     Mon 20 Oct 2025 05:01:25 +0000
Files and hashes:         1: qCYCgPNU92LV7fNMisgW4cIHG1k.crl (hash: +iIXcdv+gbizVuUM8ZRPhpWTZ8l+/uRba/PHTf5616k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qCYCgPNU92LV7fNMisgW4cIHG1k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 05:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:d8:07:cd:27:82:69:eb:8c:cb:d8:eb:b3:d9:81:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a8260280f354f762d5edf34c8ac816e1c2071b59
        Validity
            Not Before: Oct 19 05:01:25 2025 GMT
            Not After : Oct 20 05:01:25 2025 GMT
        Subject: CN=d9b9f47bf67d36c99d6919bac827f40c175d9ea1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:04:9e:24:4d:fb:32:68:90:8f:83:64:d6:43:
                    9c:59:2b:64:f1:65:5e:19:d5:73:7a:8c:5e:9d:29:
                    d7:6f:2f:84:1b:c4:28:05:9c:e0:8e:d0:84:b2:ed:
                    e3:99:d7:7c:31:51:5b:ad:ae:6b:d8:ee:1d:77:fe:
                    b3:b9:73:43:30:ff:3d:dc:7b:83:88:bc:96:9d:11:
                    da:20:10:ae:ad:c4:41:e2:e0:18:5b:86:dd:4f:b7:
                    43:54:ca:3b:94:59:6e:dd:32:1c:fe:9b:1d:55:ac:
                    f6:a7:51:87:f4:88:dc:da:61:72:56:24:14:8d:99:
                    98:fa:cc:76:f5:5c:20:68:ea:97:71:41:04:b1:51:
                    3e:eb:10:34:20:6f:20:9a:be:fb:2f:44:90:23:76:
                    97:c7:be:52:b3:24:38:b5:5d:b0:a6:af:bd:83:f9:
                    81:9d:26:a9:69:06:0c:19:e8:0b:e5:f2:d8:37:4c:
                    02:3c:41:87:48:80:21:41:98:47:d5:26:77:23:6e:
                    25:7f:d6:29:2e:47:cb:7a:8c:6e:a9:dc:6b:2c:d1:
                    5a:96:c4:5a:21:71:8d:b3:ee:65:85:86:f9:71:69:
                    44:ad:b6:26:39:b5:42:94:f3:de:11:ed:cf:7b:f6:
                    a8:b2:86:a4:2c:f5:2f:ba:57:b7:bb:c1:dc:e6:d2:
                    4c:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:B9:F4:7B:F6:7D:36:C9:9D:69:19:BA:C8:27:F4:0C:17:5D:9E:A1
            X509v3 Authority Key Identifier:
                keyid:A8:26:02:80:F3:54:F7:62:D5:ED:F3:4C:8A:C8:16:E1:C2:07:1B:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCYCgPNU92LV7fNMisgW4cIHG1k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a303fd-36a6-438d-96da-183a47a45b2a/1/qCYCgPNU92LV7fNMisgW4cIHG1k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:ab:72:ee:f7:e4:67:3a:45:9c:59:c9:0a:b6:31:0b:ea:83:
         b4:9e:b6:cf:b8:3a:da:1b:d9:ac:9d:06:ae:37:e8:81:21:3e:
         10:57:9c:ef:e2:3d:48:15:b1:f6:2a:07:40:b1:40:f0:79:b5:
         63:1d:9c:50:60:53:2d:8b:f0:f3:87:54:79:20:01:a2:5d:a3:
         23:ed:ff:63:9e:ab:e2:16:bf:9a:23:46:79:ac:7c:3a:19:0c:
         67:98:ba:46:fb:36:03:87:43:ae:0f:7a:3d:74:73:85:31:d1:
         b4:16:4e:cb:a0:58:e7:c6:82:81:2a:b0:3f:70:fc:7e:fc:cd:
         46:b4:d7:e3:b7:1b:c0:da:2f:5e:01:dc:8a:b8:8a:74:7f:78:
         ee:78:dc:11:cb:4a:4f:62:ef:5b:a9:8d:91:20:65:62:ac:9e:
         9b:51:6e:1c:b3:d2:28:26:be:f5:cc:96:9a:e4:f2:31:1c:82:
         ce:26:fd:50:8e:f2:c7:60:7c:58:0b:55:9d:40:13:ce:b3:d1:
         7a:3a:4f:5c:5e:6e:86:06:d1:8b:3c:a8:17:f4:fa:99:b0:10:
         e6:5a:9f:e0:1c:76:51:7f:9c:63:5f:3e:b9:20:86:32:f9:36:
         98:7c:93:e1:5a:f0:c6:e4:18:0b:f1:e7:84:0c:db:cb:bc:14:
         ad:c4:b4:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----