Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
File:                     2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft (raw, json)
Hash identifier:          L/GK0Yokh1oyNyq+iseJ8cQGpyJPD892Q5EE+ZJCq2g=
Subject key identifier:   74:B9:B2:42:CB:B2:DD:CE:14:92:14:7F:8E:A2:56:47:18:A3:D8:18
Authority key identifier: D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5
Certificate issuer:       /CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
Certificate serial:       0199FBEBEF6BE6FDF2C777015910DC54AC8A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
Manifest number:          0B80
Signing time:             Sun 19 Oct 2025 10:02:47 +0000
Manifest this update:     Sun 19 Oct 2025 10:02:47 +0000
Manifest next update:     Mon 20 Oct 2025 10:02:47 +0000
Files and hashes:         1: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl (hash: iC15+j6MkRjOITgU7Efw9htpmI2tI36YB/EnBCXzbU8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:ef:6b:e6:fd:f2:c7:77:01:59:10:dc:54:ac:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
        Validity
            Not Before: Oct 19 10:02:47 2025 GMT
            Not After : Oct 20 10:02:47 2025 GMT
        Subject: CN=74b9b242cbb2ddce1492147f8ea2564718a3d818
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:e7:67:c9:7b:56:5f:31:00:0b:88:1d:c5:c3:
                    d2:6d:0a:27:80:ed:6e:89:f4:b9:e5:ec:d9:22:81:
                    2b:45:1f:56:8f:7e:8e:d7:65:43:60:fe:3e:95:34:
                    43:03:fd:61:ef:b5:cf:2a:c5:1d:91:47:27:27:6f:
                    9f:ab:91:43:6d:e8:20:c0:49:4f:0b:3a:26:8a:8c:
                    ad:c1:cb:2d:7b:6e:fc:56:9c:8a:de:5c:e9:16:d2:
                    1d:a7:dc:c9:61:d8:81:f0:a5:af:1b:32:26:29:f0:
                    41:99:de:08:6e:55:e0:39:5a:c6:37:64:6e:80:cb:
                    4d:f7:6f:68:46:c2:f3:2c:bc:2f:0c:e3:96:1e:85:
                    26:96:3e:46:89:0a:81:1c:13:6f:72:a2:38:77:df:
                    40:7f:c4:be:00:fc:3d:6b:03:34:cf:95:5f:77:19:
                    21:11:d5:ef:bd:e5:a7:2f:10:c6:42:70:d7:6d:5f:
                    c0:ac:e3:c3:62:04:2a:18:4f:23:30:63:a5:a2:d3:
                    0e:74:67:ad:80:13:6b:00:c2:f0:c5:02:17:56:53:
                    00:f5:3c:04:a7:1c:ba:92:9d:c4:c1:5b:f3:3d:a0:
                    59:e2:26:11:1d:7a:92:64:a9:04:3c:14:b9:c1:dc:
                    af:43:12:7f:8f:b1:20:7a:58:2d:e0:91:7b:57:b9:
                    e1:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:B9:B2:42:CB:B2:DD:CE:14:92:14:7F:8E:A2:56:47:18:A3:D8:18
            X509v3 Authority Key Identifier:
                keyid:D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:76:7d:2c:08:20:47:41:a1:34:48:5e:b4:73:10:02:f0:41:
         c9:e4:6f:1a:18:aa:6e:51:58:5f:8f:5e:93:53:f4:4c:55:e6:
         e8:10:2f:fe:24:24:81:3d:52:c5:cd:3e:67:16:c1:68:25:27:
         69:15:df:52:86:db:49:24:43:ea:10:2e:9a:2b:90:15:6d:46:
         43:d6:a4:84:65:ed:e9:9c:a9:5b:3a:90:a9:91:4b:25:d3:ed:
         1f:54:01:d0:02:59:97:9e:68:27:c6:2f:02:c5:67:4b:b9:44:
         b3:d0:4b:ae:db:52:08:e0:8a:7e:57:e3:8e:7d:6c:a4:c8:f8:
         7e:6d:aa:e7:2e:5d:b3:fd:ec:3e:fd:a8:a9:c1:ae:e5:57:3d:
         dc:6c:a7:1d:ce:ec:7e:8c:23:0c:80:9b:84:97:08:c4:b1:39:
         5f:a0:e8:a5:31:81:5d:d1:27:48:1a:64:3a:11:e5:83:11:e5:
         3b:42:b5:8f:cd:da:83:02:38:70:2a:b3:b1:72:96:98:1d:5d:
         38:5c:a6:26:04:d3:5f:cb:d1:ae:97:a3:1c:aa:12:3b:df:47:
         0e:b9:68:3a:4c:2b:03:96:98:f6:f9:4d:1e:56:41:db:e6:bd:
         b1:dc:29:a5:92:c7:56:42:f1:18:e1:82:85:c6:b5:b2:ac:ac:
         f7:19:61:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----