Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
File:                     tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft (raw, json)
Hash identifier:          NTkpdEJLhbhuULGow+JvrgHBHwGvSRbF43LQiYXNFp8=
Subject key identifier:   0B:51:85:B5:FA:E3:C3:BE:27:DC:FA:B4:1C:23:57:8E:EE:8B:DA:79
Authority key identifier: B6:91:9F:E8:CB:EF:9A:B3:20:AC:7E:0E:34:68:79:D4:9D:18:57:D6
Certificate issuer:       /CN=b6919fe8cbef9ab320ac7e0e346879d49d1857d6
Certificate serial:       019A4EF53307BEC6F0D9C789056CF12863B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
Manifest number:          07C4
Signing time:             Tue 04 Nov 2025 13:01:23 +0000
Manifest this update:     Tue 04 Nov 2025 13:01:23 +0000
Manifest next update:     Wed 05 Nov 2025 13:01:23 +0000
Files and hashes:         1: tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl (hash: 5pjG3fIdk99JeS8sqyIakw8XNbLjsr1zTkzfCOWYIBo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 09:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4e:f5:33:07:be:c6:f0:d9:c7:89:05:6c:f1:28:63:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b6919fe8cbef9ab320ac7e0e346879d49d1857d6
        Validity
            Not Before: Nov  4 13:01:23 2025 GMT
            Not After : Nov  5 13:01:23 2025 GMT
        Subject: CN=0b5185b5fae3c3be27dcfab41c23578eee8bda79
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:5b:25:06:23:1f:84:70:9e:17:57:99:eb:06:
                    1f:95:6c:ce:d5:71:40:10:36:c1:39:47:40:97:fd:
                    3f:8a:81:79:f5:38:8d:84:aa:b0:9d:a5:fb:e9:28:
                    b0:4f:be:26:39:2f:56:99:40:34:e2:cc:40:64:29:
                    35:13:bd:58:ec:bf:48:9e:59:c0:50:7e:33:d2:70:
                    dc:39:66:f6:96:6f:69:6d:ad:2b:fb:de:81:a7:94:
                    54:0a:91:da:08:3f:c3:3f:dd:4c:dc:4b:97:ee:e1:
                    ea:2f:d0:45:fd:a1:df:87:49:c8:fd:ff:fd:98:be:
                    c0:af:e9:0a:27:c9:a8:76:07:14:4e:a3:ea:9a:34:
                    a7:60:cd:5c:36:b8:be:ba:37:0b:c3:15:15:37:24:
                    5f:55:6c:80:35:29:4a:0e:f6:68:3f:69:88:03:7f:
                    43:68:0f:09:3f:f0:d1:52:98:29:10:78:72:f0:de:
                    b7:07:b7:23:e5:7d:9d:25:b2:02:15:9c:4a:e5:de:
                    dc:f4:a5:c7:99:a7:d4:56:19:fd:72:ac:7a:70:65:
                    16:cb:a4:10:4d:52:01:7e:b4:73:19:7c:66:1a:3e:
                    f6:62:d4:2f:5e:04:09:05:46:d6:6d:7d:d0:7f:29:
                    8d:11:c3:10:b4:42:61:51:ce:bb:d2:5f:b7:0d:d7:
                    93:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:51:85:B5:FA:E3:C3:BE:27:DC:FA:B4:1C:23:57:8E:EE:8B:DA:79
            X509v3 Authority Key Identifier:
                keyid:B6:91:9F:E8:CB:EF:9A:B3:20:AC:7E:0E:34:68:79:D4:9D:18:57:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:45:b3:75:8f:59:e0:47:b8:fd:51:d1:83:70:5b:5e:51:30:
         c7:b4:fa:d5:9b:2f:c3:61:23:58:7e:2e:94:ff:28:76:9b:27:
         23:ad:3f:f0:61:29:2b:5c:a8:c5:59:3c:d4:7b:e0:8b:2f:a7:
         94:b5:fc:87:36:3c:81:f1:3b:84:8f:72:72:57:a9:e7:9f:e8:
         c6:4e:95:ce:22:84:a7:1e:35:6c:f3:a1:76:c2:a9:ff:60:e9:
         ce:c9:c3:04:9c:e8:be:e6:a0:c4:ae:e4:22:3b:17:83:22:a4:
         1d:4b:b8:0a:ea:e8:76:fa:aa:96:94:5f:d0:89:74:32:b6:34:
         87:4b:eb:a4:4f:93:8f:c8:ec:27:be:65:85:8a:73:00:76:24:
         a6:12:da:21:43:b0:ba:51:b1:a6:f8:19:6c:f3:d1:aa:53:e3:
         26:eb:7f:c7:1c:71:88:26:91:4a:ff:3e:a8:20:91:33:da:06:
         72:99:6a:0a:be:9e:a3:92:3a:9a:9f:39:7c:c2:4e:ae:f6:34:
         af:ca:7c:b7:b0:e7:c7:5d:ad:4b:e3:00:76:37:b1:31:0e:98:
         de:9a:4e:31:cd:45:49:8f:8c:fd:51:cf:e8:f4:dd:91:57:56:
         aa:27:af:30:32:c4:a2:23:04:f3:3f:ad:92:fb:66:e2:47:e7:
         c4:23:5c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----