Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File:                     obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier:          KticxUjGO+GQEjVRZwBp2z0/0ZTjuAw4TWCl8k4VzCM=
Subject key identifier:   9E:50:EA:29:11:D1:E5:93:84:DD:E0:6C:F8:A1:E0:7D:1D:67:7E:A4
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer:       /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial:       0199FCC6C1DF3A2E81C7CC747B4A457F18DF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number:          06F7
Signing time:             Sun 19 Oct 2025 14:01:48 +0000
Manifest this update:     Sun 19 Oct 2025 14:01:48 +0000
Manifest next update:     Mon 20 Oct 2025 14:01:48 +0000
Files and hashes:         1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: duiaVTat1iw+wNqLldtBtOW/Hc9UP0yK8xS5Qc4Onw4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:c6:c1:df:3a:2e:81:c7:cc:74:7b:4a:45:7f:18:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
        Validity
            Not Before: Oct 19 14:01:48 2025 GMT
            Not After : Oct 20 14:01:48 2025 GMT
        Subject: CN=9e50ea2911d1e59384dde06cf8a1e07d1d677ea4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:63:55:60:bd:70:7b:f9:14:9a:c1:cd:a7:46:
                    79:56:54:07:e7:6a:9a:9c:60:a1:10:73:17:03:e1:
                    50:51:80:ca:3c:79:fe:5b:f1:20:2c:30:10:65:7d:
                    5b:c4:80:bb:d1:39:e4:b0:72:fb:c6:2e:f5:45:f6:
                    bb:04:71:6a:40:d4:1a:3c:a1:d5:cd:6f:a9:93:01:
                    1d:75:01:dc:13:b8:0a:9b:9d:05:d9:67:dc:6d:3f:
                    43:e5:07:b3:17:58:46:76:9c:dc:2e:74:a1:d3:dd:
                    31:a2:9d:e7:d1:f4:37:20:2c:ef:bb:d8:0e:16:d2:
                    6b:7c:08:1e:68:63:89:0b:c6:22:a0:e5:52:43:43:
                    f9:28:a1:1f:77:f1:b4:7e:41:12:c5:0f:5f:1b:31:
                    a8:0c:fc:c8:cc:90:83:24:e4:cc:17:20:81:15:c1:
                    0e:70:af:7a:fc:41:9c:3f:1a:a5:d8:58:24:db:ee:
                    35:6e:10:2d:a5:98:60:59:9f:f7:01:37:11:07:8e:
                    9a:ed:03:03:4b:85:a6:72:7e:0d:96:59:e9:8f:1b:
                    31:c0:a5:59:56:8a:1c:6f:04:35:79:a4:90:cd:21:
                    e2:66:14:fc:29:5b:50:47:85:6e:4f:48:76:05:74:
                    76:21:7c:82:31:5d:6b:d9:a0:4c:f6:96:bc:5f:83:
                    15:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:50:EA:29:11:D1:E5:93:84:DD:E0:6C:F8:A1:E0:7D:1D:67:7E:A4
            X509v3 Authority Key Identifier:
                keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:8b:4b:c3:1f:9c:66:a7:aa:45:48:8b:d0:4c:ad:35:a8:b6:
         3d:b3:0c:d0:1d:9e:2a:00:17:8a:29:83:b6:15:87:5a:ef:2b:
         a2:56:c1:d6:4f:45:a5:a0:fc:17:68:d5:89:39:04:1e:d4:8f:
         a9:4c:cd:8b:ba:2b:44:c3:c4:69:db:da:51:87:e3:42:0a:a7:
         ce:16:ab:7d:2a:2b:d0:f1:26:11:93:2f:7a:e6:ef:4d:f3:7a:
         8c:f2:69:aa:58:a7:f5:25:86:0b:41:c4:37:e1:00:ea:6c:cb:
         be:ba:c2:21:22:ba:c0:cb:54:b9:0b:d3:50:f1:7c:6a:07:1d:
         7c:0a:a8:7e:39:09:8b:71:ed:63:1c:57:de:46:a9:40:22:29:
         37:11:9e:48:ff:1b:74:58:c3:b2:28:3a:7b:1c:f8:e8:f8:fe:
         60:50:a9:3d:9d:9e:d1:34:af:7a:bf:06:85:a9:f0:91:b5:d5:
         1c:cc:bb:d9:95:a6:92:4d:9d:9a:96:be:dd:be:bd:ac:da:dc:
         c3:08:f5:0b:c7:46:35:81:78:f6:7d:87:02:2a:a1:4d:b0:97:
         63:d9:79:78:d0:bd:c9:0b:28:66:68:a8:02:03:b2:62:4f:1c:
         20:e8:c7:9a:5f:fa:70:59:ae:9b:0a:79:bd:45:04:69:0a:01:
         fe:e2:8c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----