Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
File:                     yEg4FrQ75KdvYGCDK-xJkvpamM4.mft (raw, json)
Hash identifier:          Nzx3ccJMcqXw7xcJaBf3bZmTlFsuzmeazta+6ljosqc=
Subject key identifier:   90:2D:6C:48:C7:42:B6:2F:E1:66:8E:28:E7:13:42:84:92:84:CE:DE
Authority key identifier: C8:48:38:16:B4:3B:E4:A7:6F:60:60:83:2B:EC:49:92:FA:5A:98:CE
Certificate issuer:       /CN=c8483816b43be4a76f6060832bec4992fa5a98ce
Certificate serial:       0199FC21965546979CF1F0594AAFABB97ADE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
Manifest number:          0706
Signing time:             Sun 19 Oct 2025 11:01:23 +0000
Manifest this update:     Sun 19 Oct 2025 11:01:23 +0000
Manifest next update:     Mon 20 Oct 2025 11:01:23 +0000
Files and hashes:         1: yEg4FrQ75KdvYGCDK-xJkvpamM4.crl (hash: oH9XwpQcOw8gW1MN4LG1X6E/ebQfB71OQE0y7nm8ucU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:21:96:55:46:97:9c:f1:f0:59:4a:af:ab:b9:7a:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8483816b43be4a76f6060832bec4992fa5a98ce
        Validity
            Not Before: Oct 19 11:01:23 2025 GMT
            Not After : Oct 20 11:01:23 2025 GMT
        Subject: CN=902d6c48c742b62fe1668e28e71342849284cede
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:c2:1c:98:1d:a3:4f:9c:0e:59:5f:b9:fe:1b:
                    2c:8c:fa:52:ca:9a:1d:ab:ac:2b:f4:7a:61:07:73:
                    fc:91:c2:ed:b1:3e:d6:a6:ff:8a:25:41:61:c9:c7:
                    12:eb:de:15:a1:d9:2c:a5:01:06:9d:62:3c:2b:35:
                    be:da:19:a4:88:b7:e4:8e:9f:d8:9b:97:01:aa:cc:
                    cc:bf:8a:96:9a:a3:50:e7:a5:ae:be:e7:12:68:40:
                    2e:f8:7a:00:0a:75:c3:60:74:dd:43:39:f4:fa:cd:
                    f4:e2:ac:18:54:95:a2:07:67:40:09:2b:f0:da:f9:
                    57:e9:13:ce:da:84:1d:df:21:04:b3:0e:ed:66:b4:
                    b5:32:4b:4f:38:a0:af:9f:15:e7:cf:68:02:d9:d3:
                    af:57:33:b8:65:d6:65:cc:7c:42:e2:2b:a6:ee:4f:
                    d6:b5:fc:b9:e8:b3:fb:12:36:7b:c5:24:37:5b:c4:
                    03:3f:5b:a1:7a:a5:59:c1:95:36:88:27:7b:ee:7b:
                    66:e1:c2:50:dc:52:ba:24:27:56:1b:1a:06:bb:9c:
                    b0:93:32:9e:da:30:bc:74:53:c4:1c:a0:d9:81:ac:
                    58:ea:e7:02:e6:22:21:ce:e7:1d:17:7a:31:95:4a:
                    0f:c7:2a:d7:59:fd:36:0f:51:31:7c:b8:76:8a:c4:
                    a8:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:2D:6C:48:C7:42:B6:2F:E1:66:8E:28:E7:13:42:84:92:84:CE:DE
            X509v3 Authority Key Identifier:
                keyid:C8:48:38:16:B4:3B:E4:A7:6F:60:60:83:2B:EC:49:92:FA:5A:98:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:3c:69:79:6c:6b:80:f9:70:a8:1a:89:9e:a5:23:57:6a:fe:
         ef:da:e1:dc:a5:3b:77:4c:93:bd:c2:78:32:70:0a:9b:79:8e:
         ec:17:a0:27:5f:f3:66:d2:e1:bd:d8:8e:0c:8c:85:c0:c3:72:
         2a:6a:b5:f5:40:62:41:35:0d:07:e8:37:a0:a7:e1:1f:92:0a:
         f4:98:34:43:b4:d3:61:59:95:f2:b5:ad:b1:39:6c:d4:b5:fe:
         6b:ed:86:8c:cc:b2:02:3a:9f:18:fb:d1:53:9a:b4:27:62:86:
         cb:bd:82:02:3c:ff:01:f2:c4:49:c3:bd:73:6d:9b:5b:ff:d9:
         69:fb:55:e7:f4:51:96:9c:20:2f:c7:e7:69:3d:bd:a1:11:34:
         07:f3:3f:83:48:12:8f:9b:23:a8:e1:33:3a:8c:e9:f7:1d:bc:
         92:1e:34:8b:ca:97:61:46:ca:56:5f:ab:79:9f:a1:71:52:87:
         d3:de:fa:9b:27:43:43:be:75:7e:e4:77:68:fd:13:1d:60:a9:
         1f:80:18:bf:47:64:86:af:0f:6e:93:65:35:66:f2:6b:c6:3a:
         5a:34:65:38:ee:c3:26:23:3c:8c:2b:36:c3:f1:18:bf:eb:ea:
         af:e2:4a:9f:83:0b:e4:4f:4c:22:5c:b7:c8:1e:27:5f:4a:f3:
         7f:9e:6d:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----