Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File:                     2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier:          9AZHkwh+Bc/8yOleyp/n3yHskMmWcpAthaDAqMjWRuk=
Subject key identifier:   50:CC:6A:1E:E9:DA:B2:BD:CD:82:33:BB:C6:1C:05:0F:8D:A3:33:B1
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer:       /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial:       0199FD3459B91D95FF377FD1BBF2A0985A5D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number:          1466
Signing time:             Sun 19 Oct 2025 16:01:30 +0000
Manifest this update:     Sun 19 Oct 2025 16:01:30 +0000
Manifest next update:     Mon 20 Oct 2025 16:01:30 +0000
Files and hashes:         1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: M+JdoIOQ6MA5NosXkQ17zkNehMQBDk15HYzY2YwtbBg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:34:59:b9:1d:95:ff:37:7f:d1:bb:f2:a0:98:5a:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
        Validity
            Not Before: Oct 19 16:01:30 2025 GMT
            Not After : Oct 20 16:01:30 2025 GMT
        Subject: CN=50cc6a1ee9dab2bdcd8233bbc61c050f8da333b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:46:58:3c:09:8f:b8:52:31:c6:fb:c0:6b:00:
                    00:1a:97:14:c4:38:ab:a1:74:03:ce:3c:81:09:9e:
                    9d:3b:43:6b:65:59:d6:bd:85:5d:0d:3e:da:01:5b:
                    ce:15:49:00:a5:c4:90:a0:0a:f3:24:71:2c:ea:e5:
                    04:e9:3b:31:bd:44:30:1e:90:8f:05:e4:c6:3b:85:
                    e9:8a:45:2a:cf:6e:31:c7:08:59:cc:cf:e2:75:4c:
                    d9:99:40:19:cc:5a:f8:10:0d:c7:28:59:30:77:dd:
                    7a:c5:70:23:15:87:0e:6a:d9:bb:4e:43:9b:18:aa:
                    0b:f9:3b:b2:e1:c6:ec:9f:97:de:85:5f:2c:36:4d:
                    0f:cd:2b:e7:fe:9c:89:9e:37:83:e7:58:a6:88:9c:
                    b0:4b:22:5c:b2:c9:fa:41:71:61:b8:22:16:92:96:
                    ea:81:1b:cd:71:02:64:a2:8e:9a:02:a8:58:94:4e:
                    0e:20:76:32:f7:38:63:e4:ce:11:4a:00:06:e7:59:
                    77:b5:69:b7:9e:d6:c7:40:09:97:a8:34:d0:95:91:
                    3e:91:81:89:61:59:51:8f:2b:03:9d:e4:58:fa:73:
                    1e:f0:7b:9f:17:c0:ce:7c:ec:9d:82:83:13:22:f2:
                    7b:6c:db:94:ab:14:19:8e:8f:99:fa:0e:da:31:02:
                    98:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:CC:6A:1E:E9:DA:B2:BD:CD:82:33:BB:C6:1C:05:0F:8D:A3:33:B1
            X509v3 Authority Key Identifier:
                keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:a9:0e:f8:1d:9e:6b:59:cf:58:09:bb:9f:4e:48:ca:47:3e:
         92:f1:55:97:42:0b:4f:46:55:01:ac:58:34:e7:2b:cd:5d:62:
         07:4e:12:ee:5b:29:c3:1f:4f:c7:d4:34:8f:0c:83:d0:26:05:
         f6:b7:e4:3a:e5:c6:31:13:90:41:b0:3b:eb:a8:28:d1:0f:79:
         34:c1:57:60:f8:e1:e7:92:f9:a6:2b:5f:c6:ea:5a:d9:65:35:
         8b:df:87:87:db:18:ba:05:b5:9e:80:af:e5:ae:91:27:b2:e4:
         3e:80:c9:dd:dc:e1:d7:be:f4:62:63:79:92:87:e2:69:af:ad:
         9d:eb:3c:c3:63:c8:4f:4a:9e:72:e9:d6:07:d2:c1:90:46:39:
         b4:bd:c3:17:51:85:3c:fa:cd:cd:7b:e4:79:67:77:d8:c4:5a:
         f4:55:a0:0d:34:c3:ca:1d:0b:cf:a5:b9:97:2b:7d:ae:80:c1:
         be:99:34:73:84:81:01:32:e8:94:08:c0:d1:0b:1b:41:6f:da:
         9b:7c:68:05:93:70:52:f7:ec:08:a6:dd:d9:86:5d:a6:bc:34:
         fb:15:6d:54:e7:4f:d4:13:1b:81:22:4e:d7:dc:9b:2c:cf:07:
         81:0a:0d:6f:cb:b6:6f:66:c4:b8:60:31:52:1e:36:6a:9c:ec:
         a6:61:b4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----