Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
File:                     dCadQgSZl1rpNPNM45WTgRTJuns.mft (raw, json)
Hash identifier:          V7cT8i/FDDSpXAMKYlfeQEBYu3wzxP2xBY+bK60x6m0=
Subject key identifier:   95:28:CB:3E:D4:39:56:BB:BB:BC:76:76:18:7C:6B:06:A4:30:AB:C2
Authority key identifier: 74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B
Certificate issuer:       /CN=74269d420499975ae934f34ce395938114c9ba7b
Certificate serial:       0199FDD8DB2893FFC94023FD9B5CB48D5C7E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
Manifest number:          1237
Signing time:             Sun 19 Oct 2025 19:01:11 +0000
Manifest this update:     Sun 19 Oct 2025 19:01:11 +0000
Manifest next update:     Mon 20 Oct 2025 19:01:11 +0000
Files and hashes:         1: dCadQgSZl1rpNPNM45WTgRTJuns.crl (hash: CBxpIFIUOHj9me9EUlzc944oPAo8ua8HZaOTpe9zK3I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 19:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d8:db:28:93:ff:c9:40:23:fd:9b:5c:b4:8d:5c:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74269d420499975ae934f34ce395938114c9ba7b
        Validity
            Not Before: Oct 19 19:01:11 2025 GMT
            Not After : Oct 20 19:01:11 2025 GMT
        Subject: CN=9528cb3ed43956bbbbbc7676187c6b06a430abc2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:7f:7c:1c:a9:65:60:87:9b:bf:a0:9e:2b:ee:
                    4a:30:26:25:61:77:0e:8c:e6:3f:a6:da:df:29:bc:
                    76:bb:72:22:bc:8a:34:c5:bd:07:a3:02:80:fc:71:
                    b8:75:25:3e:76:1e:f5:e5:5a:26:0d:d6:2a:72:33:
                    6a:1d:59:bc:fd:49:89:8c:2d:bf:9c:b5:f8:e7:d4:
                    b2:03:bb:31:16:4f:83:2e:f8:de:a9:c7:0b:1e:bf:
                    10:d4:94:90:ee:86:a7:aa:ac:35:80:0f:3f:95:d2:
                    3c:64:70:37:0a:8b:69:2e:c1:ef:e0:a6:52:0e:0a:
                    0a:94:92:d3:02:f6:c5:ec:ec:c2:da:f3:16:5c:78:
                    82:a8:55:7b:6c:1f:bd:84:06:72:44:99:17:e4:82:
                    b1:fb:5a:43:27:3c:3c:05:2c:b6:14:c5:4e:7d:c7:
                    f8:26:c8:ff:4c:2b:33:cc:6c:c4:b0:c8:b6:80:ea:
                    e5:66:f4:42:3a:cb:73:17:5b:d3:ec:63:28:00:5b:
                    8b:ad:a3:8c:21:fe:dd:94:ed:e3:83:a1:8a:25:87:
                    60:50:e0:37:1a:d4:08:7a:91:2d:4e:b0:d8:56:58:
                    45:52:d7:76:ff:91:4f:09:33:75:fe:12:2f:f6:54:
                    53:e2:82:6d:d9:11:da:8b:3e:02:20:77:53:70:5e:
                    20:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:28:CB:3E:D4:39:56:BB:BB:BC:76:76:18:7C:6B:06:A4:30:AB:C2
            X509v3 Authority Key Identifier:
                keyid:74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:31:46:06:dd:9d:dd:82:90:26:9c:89:6f:4a:7c:98:60:2b:
         5b:64:97:89:84:70:53:87:99:e2:a3:cd:8d:af:75:69:72:51:
         a4:10:20:9d:42:50:2c:0c:b8:be:fa:ae:d4:c2:a3:5d:6a:2e:
         01:1b:82:86:41:27:e5:b5:a4:f3:43:c3:30:92:3b:ec:f9:f5:
         08:46:2c:a3:39:e8:b4:5f:c3:e8:a3:83:d7:1d:61:2a:5d:f3:
         9e:56:c8:56:67:b7:ea:81:f4:08:35:a1:2b:ac:68:d2:9b:46:
         e8:45:51:64:44:72:16:37:4f:ae:ad:ca:c3:51:fc:ab:41:16:
         75:df:98:7a:82:e4:5f:8d:ea:6a:12:fd:6a:2c:d4:91:17:c2:
         49:51:52:69:3a:0d:4a:0a:a1:f7:a5:c5:6f:76:a6:da:ce:83:
         c1:07:92:1c:8d:1c:ab:d5:4d:8e:02:22:31:89:1c:e8:b6:ff:
         be:34:1a:5e:7c:a8:1d:ec:1b:e7:6b:ca:a1:de:75:74:cc:c8:
         4d:8a:d8:4c:73:9e:8a:d0:f0:5e:78:3a:a8:f1:bb:e7:d5:05:
         9e:82:fc:15:03:10:37:0a:4b:5b:c4:15:d3:53:a8:b7:3f:95:
         a2:36:02:8d:67:2f:80:a2:a5:d0:8e:b4:8b:4a:30:1b:e6:b0:
         a5:8b:38:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----