Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
File:                     6YMf0OexWxfgoKfcz8q7Bj18R8o.mft (raw, json)
Hash identifier:          iGcXPcXPDiLSIKE6kvQ0vVGcwkq2CcaJZPUMkDCW+10=
Subject key identifier:   54:52:78:2C:DC:27:45:2B:08:A0:F6:72:B1:3D:DD:BA:17:82:7F:2E
Authority key identifier: E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA
Certificate issuer:       /CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
Certificate serial:       0199FBEC13A7BA4C8D179CFD43225ED75F6E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
Manifest number:          04C3
Signing time:             Sun 19 Oct 2025 10:02:56 +0000
Manifest this update:     Sun 19 Oct 2025 10:02:56 +0000
Manifest next update:     Mon 20 Oct 2025 10:02:56 +0000
Files and hashes:         1: 6YMf0OexWxfgoKfcz8q7Bj18R8o.crl (hash: Ut7Q55egaD2hTNvXTIUyGnyYRhsOKi/bP/T/bbAWaIM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:02:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ec:13:a7:ba:4c:8d:17:9c:fd:43:22:5e:d7:5f:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
        Validity
            Not Before: Oct 19 10:02:56 2025 GMT
            Not After : Oct 20 10:02:56 2025 GMT
        Subject: CN=5452782cdc27452b08a0f672b13dddba17827f2e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:1d:61:ab:c3:bb:01:15:35:26:64:db:04:ae:
                    76:08:3b:87:ab:92:7e:f1:4e:33:c3:7e:d6:bc:1e:
                    fc:7d:e8:14:be:dd:20:4a:36:a6:63:69:0a:ca:09:
                    ae:78:ce:07:47:d7:4c:34:7e:a8:d9:e4:66:5c:96:
                    e6:43:6f:9e:13:51:ea:82:87:dc:a6:c0:0c:84:1f:
                    e7:5d:f0:ee:43:36:1b:53:d3:2f:07:c7:1c:35:98:
                    58:bf:bb:77:d9:d5:a1:46:46:8d:bd:40:8e:05:5b:
                    98:81:27:73:68:28:4f:11:2c:5d:2a:50:35:e8:27:
                    62:b1:45:6e:f0:30:c1:58:0f:d4:bd:0b:0d:54:10:
                    0f:7a:e3:c3:bb:bb:94:8a:be:11:78:ea:05:e0:0a:
                    04:58:87:2a:df:1d:cf:41:4b:74:82:10:5e:0d:d6:
                    95:86:16:d0:1e:43:5e:6b:2e:3a:a7:fa:88:bc:2d:
                    c4:ce:95:cc:4f:58:1e:69:84:4d:aa:28:a7:d5:da:
                    8b:84:ee:69:1b:3d:76:95:ed:03:18:dd:40:ae:63:
                    11:5c:e5:67:81:f0:73:f2:ce:29:a5:d2:88:07:6d:
                    23:36:45:ef:a5:7d:43:51:4e:63:c8:dc:37:c2:5f:
                    49:f6:22:87:80:3b:4a:23:0b:a6:cb:ea:99:76:26:
                    42:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:52:78:2C:DC:27:45:2B:08:A0:F6:72:B1:3D:DD:BA:17:82:7F:2E
            X509v3 Authority Key Identifier:
                keyid:E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:cb:53:bb:72:c9:64:80:22:e0:8b:f7:fd:47:3f:2f:b9:42:
         07:45:82:db:f7:6f:7c:cb:60:01:0f:67:27:58:60:e6:20:c7:
         d8:25:29:2b:0e:a9:6f:8a:e5:e1:78:77:f5:7d:95:2f:86:26:
         0d:af:66:9f:f1:7c:dd:48:e1:92:67:35:4d:2e:3a:11:ce:d5:
         5c:38:ee:45:cc:aa:29:ba:55:29:56:7a:90:87:89:9f:72:b4:
         05:3b:2d:7f:91:41:ef:56:60:e7:b6:61:ce:52:6f:2f:18:45:
         ff:21:34:56:a2:31:13:58:f9:f1:2f:27:d4:6d:64:85:21:46:
         3c:89:c6:e2:15:63:39:ca:56:3d:85:c1:7d:67:ac:19:70:c3:
         ad:10:3d:0f:5d:fc:e6:73:50:e9:22:a5:0a:e9:e0:eb:ff:8f:
         25:3a:9e:16:85:8d:f4:3c:76:01:64:98:d1:9a:37:eb:ae:cd:
         97:9f:d2:85:39:2c:a4:f1:b5:ac:42:c1:b2:aa:7c:b6:d3:83:
         df:6b:02:b4:49:5f:ae:0f:ae:ab:69:75:3f:c0:c1:00:d5:f4:
         2d:ee:bb:d8:75:72:5a:3e:ce:80:da:ae:bd:cd:e6:73:ab:62:
         fa:5f:08:11:01:16:10:6b:d5:9a:87:43:3a:35:86:a0:40:af:
         63:a5:cf:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----