Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft
File:                     egadopx7Yd3rzAUk_QjlTf80wWg.mft (raw, json)
Hash identifier:          RqlS92K+PGdWVHOwlxqwURNDeGpCGiDLtJiqOjAvC+U=
Subject key identifier:   35:00:85:B3:47:0C:44:B8:9F:E3:64:19:7F:9C:AC:6C:9D:0E:4B:DC
Authority key identifier: 7A:06:9D:A2:9C:7B:61:DD:EB:CC:05:24:FD:08:E5:4D:FF:34:C1:68
Certificate issuer:       /CN=7a069da29c7b61ddebcc0524fd08e54dff34c168
Certificate serial:       0199FBEAFD44FECE67B125F48DC498ABEEEF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft
Manifest number:          16DF
Signing time:             Sun 19 Oct 2025 10:01:45 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:45 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:45 +0000
Files and hashes:         1: egadopx7Yd3rzAUk_QjlTf80wWg.crl (hash: huT7cYukdQL3JTQ82myO5Gn33HT8d6QagbI2tQl5s0I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:fd:44:fe:ce:67:b1:25:f4:8d:c4:98:ab:ee:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7a069da29c7b61ddebcc0524fd08e54dff34c168
        Validity
            Not Before: Oct 19 10:01:45 2025 GMT
            Not After : Oct 20 10:01:45 2025 GMT
        Subject: CN=350085b3470c44b89fe364197f9cac6c9d0e4bdc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:1e:30:7b:f3:b8:47:eb:8b:00:c2:25:7a:19:
                    0d:87:76:6f:c4:b0:f3:af:c3:a3:31:e8:fd:e3:65:
                    5a:9d:94:17:a7:76:14:2c:dc:e3:ee:c6:e0:b5:34:
                    ad:28:99:01:c6:77:f5:8f:3b:1f:9e:77:19:1a:73:
                    5c:1a:01:84:ae:17:a6:76:3c:b0:71:a5:79:72:a2:
                    88:c3:6a:10:49:80:f3:21:66:30:fe:b6:0e:26:8e:
                    d8:07:65:f8:cd:33:11:cc:f2:94:17:31:fd:5e:50:
                    ee:fb:99:0c:a9:cc:56:fa:13:e2:b1:36:13:5a:64:
                    b6:96:cc:74:63:89:76:28:ec:c0:67:2e:5f:49:fc:
                    6b:79:48:b3:37:e1:23:99:33:80:71:cf:87:c2:c1:
                    99:b5:4a:7c:10:2b:bd:7e:72:47:d0:ab:51:34:15:
                    f7:71:ff:ac:f2:e6:fe:4f:80:de:92:0e:24:6b:b1:
                    60:46:56:44:f4:e0:f3:6f:9c:33:0a:61:e1:13:8a:
                    e5:ac:01:87:26:89:f3:72:47:cb:60:30:33:66:a7:
                    f3:7b:87:93:b2:ba:f2:9c:4e:87:c4:17:a9:1a:e4:
                    7d:cc:7a:cc:d4:45:a1:7d:e5:a1:65:7c:29:16:de:
                    87:62:a1:1d:1f:e6:7b:9f:85:c5:82:d9:88:0a:b0:
                    4d:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:00:85:B3:47:0C:44:B8:9F:E3:64:19:7F:9C:AC:6C:9D:0E:4B:DC
            X509v3 Authority Key Identifier:
                keyid:7A:06:9D:A2:9C:7B:61:DD:EB:CC:05:24:FD:08:E5:4D:FF:34:C1:68

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egadopx7Yd3rzAUk_QjlTf80wWg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6039e8-2d68-4310-a3ac-4bfefe416f26/1/egadopx7Yd3rzAUk_QjlTf80wWg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:0d:a8:4d:d1:21:b4:f0:ec:2c:b4:2c:73:aa:2d:35:87:aa:
         9f:b5:ad:8f:6c:e6:84:b2:79:98:c0:14:8c:b2:6a:da:fc:35:
         e1:a3:29:26:ae:7c:35:ff:34:ef:7d:d0:08:6d:d7:76:1b:b7:
         4f:1f:00:05:d7:30:e2:39:5a:49:1f:54:5e:35:ba:bd:fc:67:
         89:34:e3:df:dd:64:d8:ca:cd:86:9b:2d:5d:43:25:fe:6c:47:
         3b:7e:d8:a9:6b:eb:3a:7d:08:05:85:2a:aa:b3:13:8c:58:51:
         7d:95:b9:9e:d6:04:66:9b:cd:89:e2:d7:3b:cc:60:4b:b1:02:
         69:fd:88:0b:94:62:8b:66:c5:78:e6:22:d7:69:52:4d:bb:c9:
         dd:f5:f3:da:89:16:18:a1:17:12:d3:b9:3e:00:ed:e2:2a:e1:
         8a:2c:da:62:71:1d:88:b9:d0:1e:ed:f1:40:e7:ac:85:b9:67:
         d5:20:3d:e0:e7:a5:e7:bf:ae:fa:6d:83:55:f8:7b:8a:b3:19:
         39:76:19:3c:b7:42:a0:0a:b9:60:f7:ec:60:92:50:fc:f7:fd:
         ca:43:0b:fd:54:67:ea:07:e3:dc:64:e0:bc:d6:25:ad:46:f8:
         db:a5:71:5b:27:85:d8:2d:11:8c:cc:78:8e:e9:8d:8b:db:31:
         06:b5:5d:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----