Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
File:                     D4jGhrHhIvzcFlwCN6D149mQvwE.mft (raw, json)
Hash identifier:          Y+ZUl0ceBY0gCYOWAlwEdsi2jA2pZDtAx+o5VqrYIJw=
Subject key identifier:   F3:0F:BE:1C:60:EC:EB:63:15:FF:C4:41:37:5A:D8:D2:D4:93:67:7D
Authority key identifier: 0F:88:C6:86:B1:E1:22:FC:DC:16:5C:02:37:A0:F5:E3:D9:90:BF:01
Certificate issuer:       /CN=0f88c686b1e122fcdc165c0237a0f5e3d990bf01
Certificate serial:       019A01B5C8A74D9820CD8066DAE292202F76
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D4jGhrHhIvzcFlwCN6D149mQvwE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
Manifest number:          0C92
Signing time:             Mon 20 Oct 2025 13:01:21 +0000
Manifest this update:     Mon 20 Oct 2025 13:01:21 +0000
Manifest next update:     Tue 21 Oct 2025 13:01:21 +0000
Files and hashes:         1: D4jGhrHhIvzcFlwCN6D149mQvwE.crl (hash: Oi4deO/45u9BZFljpM0JbaB04jaGxWEgda1SrCmHZr0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D4jGhrHhIvzcFlwCN6D149mQvwE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 13:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:01:b5:c8:a7:4d:98:20:cd:80:66:da:e2:92:20:2f:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f88c686b1e122fcdc165c0237a0f5e3d990bf01
        Validity
            Not Before: Oct 20 13:01:21 2025 GMT
            Not After : Oct 21 13:01:21 2025 GMT
        Subject: CN=f30fbe1c60eceb6315ffc441375ad8d2d493677d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:32:ec:1f:83:98:77:5f:68:c9:cf:c8:a7:16:
                    33:22:7a:be:79:06:7f:2b:c8:57:f8:cf:bb:72:3f:
                    2c:53:22:d0:e6:de:bc:54:e9:bb:f1:b3:25:c8:0a:
                    ec:7f:f2:16:a6:f0:94:af:06:cf:f2:55:2e:6f:c1:
                    24:e5:f4:3a:67:a5:8e:c5:b7:ce:c5:97:fe:ed:ca:
                    12:09:6c:ce:33:da:1a:35:da:37:c4:98:75:c0:9d:
                    55:ce:7c:a2:1d:fa:cf:a5:d3:ee:fa:89:86:ff:fc:
                    fd:ef:55:f1:5b:cf:27:ac:74:44:ea:9d:20:98:7f:
                    ac:18:74:74:9c:c3:8a:b6:22:3b:33:50:46:5c:a7:
                    85:90:30:56:a4:ee:de:6f:24:5a:82:35:1f:a4:d7:
                    0c:74:26:70:b1:e2:1b:d8:73:6d:68:6b:03:84:2e:
                    fa:47:86:90:bb:40:cb:ee:e0:74:d3:bc:00:6c:12:
                    7f:c2:fe:e7:e8:1d:54:2e:bb:7a:16:13:84:95:36:
                    f3:89:c3:7a:88:23:cd:17:79:cc:5e:4f:b4:af:53:
                    16:48:de:58:a5:ba:78:3d:93:84:89:ee:1c:7e:7a:
                    d1:f3:3b:75:5d:42:a7:bb:c7:d6:ef:68:17:08:bb:
                    f5:bc:cc:c5:e6:59:4e:88:4f:a5:3d:31:1e:8c:07:
                    2f:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:0F:BE:1C:60:EC:EB:63:15:FF:C4:41:37:5A:D8:D2:D4:93:67:7D
            X509v3 Authority Key Identifier:
                keyid:0F:88:C6:86:B1:E1:22:FC:DC:16:5C:02:37:A0:F5:E3:D9:90:BF:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4jGhrHhIvzcFlwCN6D149mQvwE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e6f0c4-799d-4620-ab7b-b4225de2723a/1/D4jGhrHhIvzcFlwCN6D149mQvwE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:e2:5a:4c:83:1b:3b:ad:62:c4:73:f8:65:b8:54:89:e6:ba:
         16:fd:4e:ff:45:88:54:80:70:f6:9c:bc:f5:f1:fc:36:16:45:
         62:41:cd:bc:77:ef:d9:ef:b1:e4:89:83:f9:0b:fc:e2:87:e4:
         66:c9:f5:40:23:42:d6:42:41:8b:17:ec:15:7b:7c:3a:52:e8:
         38:e5:8f:c5:26:a1:43:45:c1:d9:60:7b:c3:4f:d2:c5:70:09:
         46:d6:77:96:56:70:85:c5:a4:8f:31:ed:ee:dd:90:5c:e8:a4:
         47:ba:e0:dd:43:2d:7f:33:43:e4:44:be:5d:e3:02:aa:eb:6c:
         53:fe:58:66:ab:f2:d5:92:3f:e9:dc:6a:6e:07:e5:80:4e:b8:
         a9:8c:2d:44:e1:77:f4:fd:d1:94:93:04:82:cb:3c:b0:91:37:
         70:d5:aa:9c:fe:85:05:45:f5:8f:41:ba:17:48:15:d2:4d:27:
         bc:a3:bb:c5:2f:f8:0d:85:d2:81:c0:60:ed:33:b8:f4:fd:70:
         8e:95:04:57:96:3f:af:73:e8:03:9e:ec:4c:73:13:5a:bf:86:
         89:03:9a:ab:ee:b1:24:41:d7:be:15:8e:32:6e:82:87:34:e8:
         7e:ee:bb:70:33:ab:f7:93:ca:8f:c8:9b:ee:a2:7e:fa:d6:70:
         f8:28:44:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----