Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
File:                     9xPX34BXC8z7JzeT8ApdRshT5Jo.mft (raw, json)
Hash identifier:          sD+Y2t5Kl8M+dD8UROeVaTGpSgejfaQDsgIZs1tEJik=
Subject key identifier:   57:80:73:EB:42:19:1C:A9:EE:B7:70:C0:BA:A9:84:AB:2F:D9:2A:E3
Authority key identifier: F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
Certificate issuer:       /CN=f713d7df80570bccfb273793f00a5d46c853e49a
Certificate serial:       019A4DE1B9C527BF908AD85DBA4A4F53E32E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
Manifest number:          062F
Signing time:             Tue 04 Nov 2025 08:00:30 +0000
Manifest this update:     Tue 04 Nov 2025 08:00:30 +0000
Manifest next update:     Wed 05 Nov 2025 08:00:30 +0000
Files and hashes:         1: 9xPX34BXC8z7JzeT8ApdRshT5Jo.crl (hash: mWs/E5OxbrLE7MgXmTTMcFpqATlO0VWhum93+JPa4sU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 08:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4d:e1:b9:c5:27:bf:90:8a:d8:5d:ba:4a:4f:53:e3:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f713d7df80570bccfb273793f00a5d46c853e49a
        Validity
            Not Before: Nov  4 08:00:30 2025 GMT
            Not After : Nov  5 08:00:30 2025 GMT
        Subject: CN=578073eb42191ca9eeb770c0baa984ab2fd92ae3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:45:c1:67:80:80:a7:8a:19:68:1e:05:07:54:
                    65:de:2f:6f:78:b6:a9:36:4c:f7:fa:01:f0:4c:53:
                    e5:b5:54:73:93:bf:86:33:2b:79:e5:37:2b:70:61:
                    75:cc:61:77:7f:45:1f:51:02:59:76:45:bf:fb:71:
                    42:24:b8:a9:53:4b:90:f4:7c:1a:22:7a:e3:93:e7:
                    bd:53:1f:43:75:0e:cc:61:21:b5:46:13:c0:0c:6d:
                    fd:92:1b:96:79:a4:55:61:c2:38:0d:dd:c2:44:41:
                    60:78:89:7a:b2:ff:8a:5d:42:63:e9:50:4c:2d:7c:
                    40:58:64:38:4f:bc:7d:35:ba:9a:d0:2f:e0:8c:da:
                    c5:f4:82:58:e7:fe:8b:ed:76:f0:05:b4:8f:08:52:
                    5e:08:1d:54:71:4f:5e:f8:20:26:c3:5f:23:71:90:
                    e3:31:8c:9b:33:79:93:9a:ff:e8:28:b8:bb:d7:d3:
                    0a:18:85:ed:50:ca:6d:24:3f:6a:cb:9a:b0:9c:53:
                    b7:2d:e5:9e:d8:50:aa:96:16:bc:39:e9:eb:3e:0e:
                    ab:77:38:d5:97:0c:33:2c:bd:9c:3e:e3:c5:25:9b:
                    be:d5:b3:a0:37:7c:c0:ae:95:64:c7:ab:fa:4d:5e:
                    ee:9c:04:05:b4:a4:0f:92:9e:eb:84:79:dc:26:1a:
                    a8:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:80:73:EB:42:19:1C:A9:EE:B7:70:C0:BA:A9:84:AB:2F:D9:2A:E3
            X509v3 Authority Key Identifier:
                keyid:F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:e9:ac:a2:a7:43:46:76:77:38:33:54:61:e9:99:9a:11:7f:
         6c:40:82:1a:94:70:37:be:d6:61:0c:a6:2e:2c:09:9b:04:28:
         c6:fc:92:49:f2:af:b9:3a:a4:9d:53:c4:a6:ec:93:5c:0d:cd:
         e2:3d:54:ce:92:b5:26:e0:f0:19:6b:62:65:7a:78:32:4c:0a:
         b6:30:e7:24:f6:59:27:0a:33:8a:7b:7c:da:53:4b:f2:8b:a3:
         bb:13:ec:1f:fe:f9:ae:a4:61:a5:f0:95:5c:12:49:aa:b0:02:
         77:b8:98:b4:7e:2a:42:16:2a:0e:4d:b0:9c:56:a9:41:3d:2c:
         dd:1f:49:42:f2:5a:9f:e0:9a:65:e1:41:ad:2a:52:0e:69:0e:
         f5:c0:11:fb:a9:18:3c:fb:37:39:3e:71:d9:dc:d8:87:17:34:
         e2:e1:b5:37:58:0f:d9:fc:1a:00:a7:14:82:d2:35:44:6d:36:
         52:43:09:34:f8:08:ce:0b:07:8f:89:e4:c5:a5:32:f1:c2:9c:
         fd:85:82:17:2d:6b:2a:c1:81:9f:7a:58:5f:68:65:f7:05:90:
         e9:ab:24:f8:90:38:62:74:ba:83:41:d3:30:bb:6b:2c:e1:ce:
         1e:8b:b8:b4:6d:57:10:24:a9:79:fb:45:42:cb:a5:84:a9:c1:
         08:0f:88:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----