Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft
File:                     obeZgyScHV-GGfE1xtbn43379WI.mft (raw, json)
Hash identifier:          yjTgvMRizDPqxP0MZOMKx1dwx1fOzvz0ollOcCwUE0k=
Subject key identifier:   FD:3F:0E:20:B9:33:52:5C:D3:BE:24:F7:4F:8F:FE:CF:9F:D3:A3:B8
Authority key identifier: A1:B7:99:83:24:9C:1D:5F:86:19:F1:35:C6:D6:E7:E3:7D:FB:F5:62
Certificate issuer:       /CN=a1b79983249c1d5f8619f135c6d6e7e37dfbf562
Certificate serial:       0199FBEAD13612ACF1B60F1B636854DDE5C9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obeZgyScHV-GGfE1xtbn43379WI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft
Manifest number:          0EE6
Signing time:             Sun 19 Oct 2025 10:01:34 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:34 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:34 +0000
Files and hashes:         1: obeZgyScHV-GGfE1xtbn43379WI.crl (hash: J1Ss3PtgjNzp4NBbx8qmbMSr2v0HsxC9bLeR1mKv6uM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obeZgyScHV-GGfE1xtbn43379WI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:d1:36:12:ac:f1:b6:0f:1b:63:68:54:dd:e5:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1b79983249c1d5f8619f135c6d6e7e37dfbf562
        Validity
            Not Before: Oct 19 10:01:34 2025 GMT
            Not After : Oct 20 10:01:34 2025 GMT
        Subject: CN=fd3f0e20b933525cd3be24f74f8ffecf9fd3a3b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:54:ee:ed:a1:e6:a3:95:57:3a:24:b1:94:cc:
                    74:2d:06:87:30:89:b0:9a:d7:d8:3b:fe:2e:18:ef:
                    22:22:df:07:97:0d:58:c7:37:99:c0:9d:e5:8f:6c:
                    f1:34:38:53:d4:2f:7e:2f:33:34:90:17:69:b7:f3:
                    36:69:dd:a7:1f:21:70:47:73:44:1a:1f:c8:4e:2a:
                    98:ba:96:70:1c:81:cb:a9:83:68:c0:61:1a:b9:05:
                    8b:13:b1:72:68:60:f7:ca:38:b8:43:99:5b:a0:1b:
                    02:43:95:26:5b:a6:d7:78:78:93:ba:fc:06:1d:8a:
                    11:ee:e9:db:8b:f7:1e:c0:b6:54:c4:ba:3e:37:0a:
                    f5:23:39:8f:40:08:06:b4:89:5f:78:fc:e6:70:87:
                    36:65:5d:0e:1b:33:ee:1b:f8:7c:ba:05:c3:f7:fc:
                    9c:07:d7:cd:33:ee:c6:2d:5b:15:f0:e9:28:f1:4e:
                    8a:00:4a:ad:ac:9c:09:2b:3d:c5:c8:ce:d9:73:82:
                    0d:28:54:87:bd:42:69:e9:9a:48:03:b9:fc:24:85:
                    8a:a6:cb:c1:82:55:92:81:b3:9b:65:06:79:ee:36:
                    e2:f3:94:5a:97:ff:ab:08:3b:ec:30:77:d2:d9:3d:
                    f3:e9:5f:7b:fb:ac:ec:0c:81:aa:3d:75:30:22:1c:
                    fb:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:3F:0E:20:B9:33:52:5C:D3:BE:24:F7:4F:8F:FE:CF:9F:D3:A3:B8
            X509v3 Authority Key Identifier:
                keyid:A1:B7:99:83:24:9C:1D:5F:86:19:F1:35:C6:D6:E7:E3:7D:FB:F5:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obeZgyScHV-GGfE1xtbn43379WI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:99:a1:74:08:b8:0d:74:e3:d5:2a:a2:f7:4f:b0:35:9f:a2:
         4e:97:1c:5b:2d:da:c6:06:ba:a1:59:06:e2:27:a8:04:64:c4:
         f7:5c:b5:a4:06:89:bf:7a:f6:cf:52:ad:f9:95:20:fa:aa:d1:
         94:20:cf:ca:1d:b9:bd:0d:43:99:74:6b:d9:98:8b:68:12:bf:
         01:65:15:ad:23:60:07:8d:37:f4:32:18:d9:56:ce:cf:64:e7:
         50:f2:05:40:70:40:db:a7:ec:ba:04:ae:5d:14:01:6b:8a:e6:
         48:3c:3e:65:6b:d4:95:63:f0:6f:35:17:31:6a:09:dc:05:2d:
         d5:ef:2a:96:c9:18:f3:49:6a:fb:44:f8:aa:81:3c:ca:15:78:
         8a:30:d2:df:50:e3:7a:4b:e7:3f:c3:28:2a:79:4d:aa:a8:d0:
         ec:73:86:43:6e:74:65:97:0e:64:c7:46:de:be:91:d0:c0:3d:
         e8:5e:4e:33:d1:8f:5a:89:af:e9:30:f6:b0:09:93:44:1a:cc:
         74:a1:39:c8:25:df:27:dd:27:4e:ff:ea:86:89:d3:a1:9f:9b:
         10:75:9a:4e:14:23:09:29:75:9b:ce:17:69:db:a4:13:aa:bd:
         c8:55:39:67:68:60:5b:13:d2:bd:60:19:b0:7c:ca:da:b3:97:
         c9:6a:84:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----