Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
File:                     9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft (raw, json)
Hash identifier:          B385QsbkBBEmAvE/+lQerK5AwNb2JTuMAQN1bk3+XKQ=
Subject key identifier:   D9:EA:FE:13:78:C0:94:E6:5B:1E:B3:E1:55:A4:E0:C7:3E:E3:B8:17
Authority key identifier: F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84
Certificate issuer:       /CN=f70592c90b4cb245e54718d7c5799b47d419a684
Certificate serial:       0199FD34833C5CF3AF35A728DBE0EA38E044
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
Manifest number:          16E0
Signing time:             Sun 19 Oct 2025 16:01:41 +0000
Manifest this update:     Sun 19 Oct 2025 16:01:41 +0000
Manifest next update:     Mon 20 Oct 2025 16:01:41 +0000
Files and hashes:         1: 9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl (hash: H6+DxskwNccFIqmtGywvQHEQTFSCNRdrF/V7rn8OBIY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:34:83:3c:5c:f3:af:35:a7:28:db:e0:ea:38:e0:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f70592c90b4cb245e54718d7c5799b47d419a684
        Validity
            Not Before: Oct 19 16:01:41 2025 GMT
            Not After : Oct 20 16:01:41 2025 GMT
        Subject: CN=d9eafe1378c094e65b1eb3e155a4e0c73ee3b817
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:58:47:9b:e4:16:22:c7:55:c4:d4:67:fc:62:
                    97:47:25:6c:b4:9f:2f:ff:d1:0c:cf:00:45:b4:aa:
                    8d:2f:e9:0d:2f:78:cf:6a:54:8b:43:d3:81:86:a0:
                    0e:de:d7:2f:58:ad:8b:a0:c4:7d:d3:24:dd:67:9a:
                    e3:71:69:1d:60:b7:43:10:4b:e1:a2:df:9e:13:52:
                    f6:94:2a:b8:af:3c:60:ea:d9:3f:f3:78:4a:ab:60:
                    5f:92:29:c7:e3:f4:eb:e4:13:13:14:40:6b:5b:a4:
                    c9:86:27:05:77:87:93:60:ab:ce:77:91:b0:dd:14:
                    70:c8:9a:f4:e2:34:02:f6:f2:88:6c:12:13:f0:2d:
                    df:c7:3e:1a:5e:3c:0b:45:ae:91:6e:9c:ef:52:4f:
                    cb:2c:cc:60:eb:35:25:76:a1:7f:34:5f:31:b1:83:
                    4b:35:ed:98:c4:9f:53:01:e9:31:01:f1:5e:56:c3:
                    2e:72:39:df:e0:5b:11:39:39:89:03:72:04:e0:cb:
                    05:0e:c6:8d:da:6c:dd:60:dd:5f:c3:d6:f3:cf:c8:
                    b6:d3:1f:52:4a:39:2e:ba:7a:b2:87:1c:cd:9a:d0:
                    44:65:ea:2e:fb:b5:8d:c0:78:ba:7a:6a:80:92:77:
                    29:dd:eb:69:3d:f9:eb:f5:9f:2d:ce:d3:ab:26:d4:
                    3b:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:EA:FE:13:78:C0:94:E6:5B:1E:B3:E1:55:A4:E0:C7:3E:E3:B8:17
            X509v3 Authority Key Identifier:
                keyid:F7:05:92:C9:0B:4C:B2:45:E5:47:18:D7:C5:79:9B:47:D4:19:A6:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9wWSyQtMskXlRxjXxXmbR9QZpoQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/dc0be1-adb8-4220-b4bd-1076242b3072/1/9wWSyQtMskXlRxjXxXmbR9QZpoQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:8a:ad:65:5b:39:29:eb:d4:a9:61:82:de:9e:cf:3d:ba:b8:
         d6:4f:17:89:50:7c:12:cf:1b:6b:f8:92:01:a4:d0:31:94:80:
         fe:a6:a9:d9:22:93:ac:0e:3a:08:a5:bd:3e:ff:6d:cf:28:0a:
         2a:32:5f:4b:94:d3:85:3e:fb:f6:20:80:4d:b0:e8:5a:23:03:
         4d:dc:73:18:17:7e:b9:7d:be:de:e0:a0:64:12:da:49:74:2d:
         04:5f:21:26:fc:18:78:d2:60:3e:2b:fe:7d:de:6d:e7:84:51:
         32:32:81:de:62:2a:42:13:d8:b6:78:69:68:ba:63:c3:99:de:
         3f:80:d4:6d:f5:fa:31:40:54:08:70:e3:6b:89:da:a7:a3:63:
         ed:69:06:b8:b9:f0:8d:80:73:d1:0e:e6:4b:44:d9:75:da:d8:
         e4:f3:48:9a:a6:26:5d:08:f7:8b:ed:44:10:55:6b:14:70:e1:
         7c:d0:16:7a:53:b1:f0:e6:69:21:04:92:c9:22:41:5f:5b:39:
         97:1e:7a:23:03:e5:fa:46:79:44:5e:98:ec:4e:02:66:d2:12:
         f8:51:68:44:ab:14:cc:2d:d4:23:29:20:08:1f:2f:56:9d:7d:
         72:77:db:11:94:b0:30:ba:fc:9d:79:d8:46:2e:b1:2a:8e:cd:
         66:1c:9a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----