Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File:                     6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier:          1O5V0Tz49JMcLijhEzQXghdnWIc59s0aTw5Lj3fj5eg=
Subject key identifier:   19:EA:58:99:0A:02:12:54:D0:39:70:A7:EF:0E:43:2B:71:FE:10:9C
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer:       /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial:       0199FBEA97CD8422D6A270A562907DB96EBD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number:          0331
Signing time:             Sun 19 Oct 2025 10:01:19 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:19 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:19 +0000
Files and hashes:         1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: DhtkXqvUEh4W987IpeIy+QxtroEpy5V9L0te6UFqEUc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:97:cd:84:22:d6:a2:70:a5:62:90:7d:b9:6e:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
        Validity
            Not Before: Oct 19 10:01:19 2025 GMT
            Not After : Oct 20 10:01:19 2025 GMT
        Subject: CN=19ea58990a021254d03970a7ef0e432b71fe109c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:fd:d4:01:05:d7:98:5a:c3:8c:db:d9:c0:48:
                    69:d4:b5:47:3f:29:eb:0f:76:57:fa:b3:42:ce:97:
                    cd:f3:ea:36:f9:73:52:54:01:08:f1:6b:bb:e8:1d:
                    eb:82:00:2a:53:00:01:20:7d:33:01:e3:cf:be:55:
                    0e:7e:e4:aa:b2:27:ff:69:49:5b:fb:4a:a8:43:72:
                    35:1c:2d:29:c9:c7:a3:08:3c:1b:d8:6f:c3:ac:13:
                    68:51:5f:1c:86:34:73:2e:4c:1a:43:18:ce:dc:12:
                    a9:62:34:0f:92:5b:4e:47:ac:79:3f:0b:3d:4a:54:
                    27:ba:91:79:1c:c1:06:d7:b5:c7:0b:13:a2:5c:13:
                    ce:e7:cb:a1:dc:c2:f1:4d:8b:e4:51:65:99:3d:ca:
                    43:f3:7d:2c:a7:68:dc:81:2f:e8:a6:b4:88:63:40:
                    d1:22:69:b2:19:36:99:68:46:8e:4c:ce:0d:ff:b9:
                    6d:24:84:f6:db:7b:de:67:3a:6b:a1:22:97:9b:97:
                    a4:17:32:03:2a:f7:ca:34:aa:db:26:a6:10:c2:48:
                    ca:cd:1c:44:7e:22:57:1d:12:61:9b:b9:d8:e2:80:
                    03:72:3f:29:e4:78:4a:93:2c:57:b7:ce:90:c4:d4:
                    d5:91:6d:66:a1:af:3d:80:86:cb:49:bb:84:e2:97:
                    bb:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:EA:58:99:0A:02:12:54:D0:39:70:A7:EF:0E:43:2B:71:FE:10:9C
            X509v3 Authority Key Identifier:
                keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:8e:51:08:4f:0d:56:a6:0a:ed:41:f9:f2:47:2a:be:01:d5:
         2d:cd:e4:66:c7:8b:2e:cf:6a:9c:32:93:a4:fa:73:44:91:71:
         59:73:98:0b:aa:f2:d1:b9:fa:56:73:0e:1f:ee:5a:7b:88:3c:
         a7:64:c6:21:a8:58:b4:b0:f2:16:b6:2d:85:24:a7:7c:01:36:
         ca:c4:bc:8d:39:db:11:cf:f9:f2:4a:c9:68:cc:5b:1f:2e:e6:
         a4:a5:04:f1:12:77:4d:de:36:ad:5b:c4:62:01:1c:bd:8d:47:
         7f:a8:b5:05:a7:57:44:ac:d8:00:95:fa:76:20:9c:1e:98:8a:
         a1:67:0c:ff:95:77:aa:be:3c:5d:ce:35:d7:b2:c8:3d:e3:a5:
         6e:72:cd:97:c8:3d:f3:9e:1c:cd:7f:16:14:e9:08:f7:4c:2c:
         01:07:93:7c:35:72:26:52:39:02:2d:2c:df:00:fc:fd:6e:35:
         0f:43:c9:f7:53:d5:db:f9:da:fd:8d:ad:10:75:fe:4b:78:2c:
         ce:2f:59:7c:84:e0:c8:5c:e2:fe:29:cc:b1:f7:b8:b2:ef:7a:
         0d:dd:c8:41:71:fa:f7:26:7e:21:e6:ca:21:2d:c1:91:8a:e2:
         f0:cd:30:f4:37:2a:00:39:cb:10:fa:ab:bf:03:a8:df:47:6a:
         38:5a:bc:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----