Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
File:                     H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft (raw, json)
Hash identifier:          PlSm3N44cuYENcM/dE9wzKl0h0rs3d1f+56MkrM0pdo=
Subject key identifier:   9E:80:24:25:58:31:D0:9F:15:66:DE:AC:CA:B2:8C:6D:3A:AF:52:74
Authority key identifier: 1F:B4:B2:3A:44:DF:C5:AE:56:9E:74:CF:BB:0F:03:E9:27:B5:61:E2
Certificate issuer:       /CN=1fb4b23a44dfc5ae569e74cfbb0f03e927b561e2
Certificate serial:       019A50E3C27D6C23718FEBA7F9558972BD3E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/H7SyOkTfxa5WnnTPuw8D6Se1YeI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
Manifest number:          0E83
Signing time:             Tue 04 Nov 2025 22:01:34 +0000
Manifest this update:     Tue 04 Nov 2025 22:01:34 +0000
Manifest next update:     Wed 05 Nov 2025 22:01:34 +0000
Files and hashes:         1: H7SyOkTfxa5WnnTPuw8D6Se1YeI.crl (hash: hn63iiy/j+rpxY04Kc3oRU8bdazY+eY5PhfGJB8aUZI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/H7SyOkTfxa5WnnTPuw8D6Se1YeI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 22:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:50:e3:c2:7d:6c:23:71:8f:eb:a7:f9:55:89:72:bd:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1fb4b23a44dfc5ae569e74cfbb0f03e927b561e2
        Validity
            Not Before: Nov  4 22:01:34 2025 GMT
            Not After : Nov  5 22:01:34 2025 GMT
        Subject: CN=9e8024255831d09f1566deaccab28c6d3aaf5274
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:cf:2a:6e:c8:8c:fd:8a:00:fe:60:60:51:44:
                    92:d8:79:ff:81:22:12:e4:d1:21:6e:c4:44:9b:bd:
                    42:4f:ec:ea:64:36:8e:38:aa:a3:ad:a4:a5:6d:5e:
                    4a:31:c7:67:a6:32:d8:e2:f0:e4:79:e3:1a:77:2a:
                    70:0c:33:33:d2:48:82:71:3f:15:05:34:37:3c:09:
                    01:32:66:fd:57:43:65:04:ed:05:a2:8c:60:27:49:
                    07:2f:ec:18:7c:3f:fc:44:d8:36:ae:2c:c6:13:c0:
                    d4:04:4d:9f:6d:a7:eb:dc:a4:a7:c9:9d:d8:ee:ac:
                    ba:e7:8d:b4:cc:08:14:1b:b1:d1:ce:63:dd:01:7c:
                    dd:5b:06:5d:39:cb:8f:2a:9a:44:68:1c:37:17:62:
                    9f:e1:5f:fe:64:7d:14:af:16:7e:ec:bb:4c:d5:28:
                    55:2d:3a:e6:6c:33:80:65:61:db:0b:1a:f0:73:6d:
                    a7:77:d2:80:f8:55:06:fc:a1:e8:65:b3:c1:c7:1e:
                    03:83:97:bb:c1:ef:c7:b6:36:b3:11:cf:a5:5d:76:
                    95:37:d9:33:e2:89:13:24:87:41:85:99:e2:fd:6d:
                    7a:21:5c:82:3c:ca:6c:d5:65:84:f2:30:d3:fa:b8:
                    29:d8:7b:0d:dc:91:e4:ec:9d:74:8c:32:d9:98:be:
                    77:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:80:24:25:58:31:D0:9F:15:66:DE:AC:CA:B2:8C:6D:3A:AF:52:74
            X509v3 Authority Key Identifier:
                keyid:1F:B4:B2:3A:44:DF:C5:AE:56:9E:74:CF:BB:0F:03:E9:27:B5:61:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7SyOkTfxa5WnnTPuw8D6Se1YeI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3bde7e-619a-484f-9d6a-49a2542f639e/1/H7SyOkTfxa5WnnTPuw8D6Se1YeI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:8b:e7:e8:21:84:76:69:d0:cc:6b:a3:8c:93:9e:a4:62:95:
         9e:f3:00:e3:25:f9:a4:d9:9e:af:32:8a:3d:b7:08:e6:a3:1c:
         45:29:d8:ac:d5:84:6e:e7:e5:a6:c2:63:62:55:62:76:b9:3d:
         0f:cf:f2:70:4f:77:20:8c:ba:22:59:b4:98:1e:9f:7a:82:0e:
         3a:59:40:79:ef:6c:c5:7d:e8:92:81:65:bd:f4:f2:fd:43:81:
         30:0b:6a:6e:8c:05:98:77:04:11:ce:74:cc:da:cd:49:d8:fc:
         eb:8e:63:8c:c0:18:33:22:61:78:ad:12:05:cc:9e:2d:6e:6c:
         42:87:67:e4:3e:37:7d:ae:04:ae:db:d3:f9:61:c1:91:a0:5d:
         18:20:90:ef:92:ad:b0:10:43:82:43:9a:d9:74:ee:a8:9b:bb:
         57:15:88:54:b0:a7:74:74:00:9c:bd:6d:9e:92:ea:d6:f9:d0:
         af:54:79:71:85:05:9e:b7:dd:f7:9c:38:92:13:d6:b5:d7:ff:
         de:94:05:99:f9:a4:01:26:4a:d6:07:7c:54:00:2c:e3:22:e3:
         14:67:07:db:33:63:6b:b9:19:12:fb:9f:6d:eb:dc:19:3f:51:
         84:59:9d:44:86:1c:6f:f3:a2:62:5b:ea:0a:0b:c6:85:40:b7:
         28:db:cd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----