Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
File:                     eXqQW0595YVil_bgOmViXeIsQvM.mft (raw, json)
Hash identifier:          ccL3Id9pItFI+H+psvleeVCtgwr3e8ZWZsmAbYv8oY8=
Subject key identifier:   9E:73:BB:89:0B:70:76:20:69:55:69:47:26:D0:2E:4D:52:BB:D9:52
Authority key identifier: 79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3
Certificate issuer:       /CN=797a905b4e7de5856297f6e03a65625de22c42f3
Certificate serial:       0199FDD8AC174A437B9150223D82B147D594
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
Manifest number:          0EAE
Signing time:             Sun 19 Oct 2025 19:00:59 +0000
Manifest this update:     Sun 19 Oct 2025 19:00:59 +0000
Manifest next update:     Mon 20 Oct 2025 19:00:59 +0000
Files and hashes:         1: eXqQW0595YVil_bgOmViXeIsQvM.crl (hash: 6PXZXb24gw+G/Ycc8GXnlrpDFNOOxBNiO0ygU1DPAT0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d8:ac:17:4a:43:7b:91:50:22:3d:82:b1:47:d5:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=797a905b4e7de5856297f6e03a65625de22c42f3
        Validity
            Not Before: Oct 19 19:00:59 2025 GMT
            Not After : Oct 20 19:00:59 2025 GMT
        Subject: CN=9e73bb890b7076206955694726d02e4d52bbd952
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:8e:77:4c:fb:5f:25:fe:e4:0c:60:d2:d2:5a:
                    c5:9d:eb:7e:96:f5:b2:57:df:8a:ec:01:bf:fd:1b:
                    50:6d:c5:c7:f6:ad:74:74:7d:72:79:5b:63:2c:7d:
                    eb:7f:76:7c:37:2c:53:1d:21:eb:cb:33:a4:c4:af:
                    f3:73:e8:26:d6:54:4e:cb:02:30:b0:6b:02:5c:81:
                    46:b4:3d:01:ab:a2:92:61:35:7c:5b:84:5c:09:96:
                    06:4f:89:91:17:cf:e1:b1:a2:7c:c3:8d:74:95:4e:
                    7c:5b:d0:b0:8f:be:b4:4a:9a:aa:b7:78:fa:94:a2:
                    39:f9:35:c1:4d:9c:e8:72:ff:5a:0b:42:31:d4:56:
                    e9:d9:55:c7:fd:cf:f5:fd:b5:a9:34:96:23:0c:2f:
                    9d:08:c0:71:f6:fe:b1:80:d3:31:2f:f1:0a:cf:5d:
                    22:b1:e2:a8:37:c3:3f:cc:9c:23:53:5d:bd:d4:f6:
                    b6:f6:fe:b8:e5:6d:db:44:17:f2:ca:89:0f:d7:f4:
                    84:a2:f0:7c:ba:69:75:b8:40:9f:aa:f5:38:12:8b:
                    a0:62:70:0a:58:b5:44:60:c8:2c:68:6b:82:3c:b1:
                    be:cc:2f:6b:e7:d7:f7:44:89:02:2c:c7:3d:fe:b0:
                    c6:5f:0e:39:cf:37:29:4b:55:cc:aa:a5:b1:20:fa:
                    b2:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:73:BB:89:0B:70:76:20:69:55:69:47:26:D0:2E:4D:52:BB:D9:52
            X509v3 Authority Key Identifier:
                keyid:79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:08:fd:c7:f9:c4:45:e5:af:8b:ce:7a:63:d9:4b:18:09:e1:
         ff:4f:52:1c:69:de:d1:26:76:95:48:b4:57:1a:2c:2e:d1:b9:
         2b:00:28:7f:99:46:b0:ac:a1:ba:9e:24:c6:1f:de:bc:45:96:
         a9:94:03:d7:c7:47:10:8b:c6:0b:f1:bc:7f:76:4a:24:d7:2f:
         81:ac:bf:e0:82:2f:cc:9f:e0:b7:e4:69:ff:a1:17:64:64:5a:
         92:a4:f6:f6:ce:5d:15:1b:db:2f:09:83:0a:84:15:07:95:f3:
         ad:d8:11:71:69:68:13:4c:db:d8:90:3b:a0:83:dd:10:b2:2a:
         d5:6b:26:c9:5c:1a:89:40:06:d4:b4:dc:f5:d2:ab:43:07:07:
         0c:33:07:eb:e0:23:b4:77:49:9a:b9:dc:a0:2a:93:a2:b7:26:
         ce:cd:bd:3f:64:b9:d5:d9:5b:75:f5:d6:25:cd:d3:f6:95:89:
         97:9d:1b:c1:31:4d:9f:29:86:82:fe:f8:30:75:9c:12:05:cc:
         00:81:94:39:df:03:6c:e4:8e:6f:55:67:4d:8e:0a:ae:5d:0a:
         97:29:4b:e9:e3:c3:2b:65:f4:21:f6:fa:b9:4a:12:15:71:5c:
         c5:19:16:14:14:40:06:f1:f5:2a:16:9f:34:11:32:98:32:d1:
         7f:fb:7e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----