Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
File:                     bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft (raw, json)
Hash identifier:          9r15cv/VKWUc+NjS7A9r6I+MqBk+NwQly5FvNSzCn7k=
Subject key identifier:   5D:F6:BE:CD:96:41:76:D6:44:B4:65:A0:97:56:41:43:34:71:67:2D
Authority key identifier: 6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7
Certificate issuer:       /CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
Certificate serial:       019A4F62E1C21530D096B565A6360FB736A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
Manifest number:          139F
Signing time:             Tue 04 Nov 2025 15:01:11 +0000
Manifest this update:     Tue 04 Nov 2025 15:01:11 +0000
Manifest next update:     Wed 05 Nov 2025 15:01:11 +0000
Files and hashes:         1: bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl (hash: McWL/MLGZe8c05PFVBi7Rr9jCf9l4MSVlDOC1pr8wtE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 09:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4f:62:e1:c2:15:30:d0:96:b5:65:a6:36:0f:b7:36:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
        Validity
            Not Before: Nov  4 15:01:11 2025 GMT
            Not After : Nov  5 15:01:11 2025 GMT
        Subject: CN=5df6becd964176d644b465a0975641433471672d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:59:ea:4c:9e:61:c7:f1:8a:46:17:2c:1d:9c:
                    61:8b:f5:c6:ec:f0:00:28:33:05:79:75:24:28:d3:
                    78:50:a8:d8:1c:f5:ee:52:fa:ff:11:79:f6:29:10:
                    f6:10:a7:80:37:39:2f:69:93:61:a5:5f:1f:3e:7c:
                    99:8d:86:76:8e:b4:20:75:42:78:e4:aa:f3:e8:08:
                    72:e4:3f:96:9a:c1:3b:d8:9c:16:9e:14:12:3d:bb:
                    87:2d:67:7d:88:f7:c0:81:2d:83:e2:cd:63:6a:f8:
                    0b:b0:4a:ea:9c:64:c6:7c:83:2a:f2:12:a5:88:18:
                    aa:be:64:e4:6f:eb:c4:ff:72:86:78:12:e9:43:17:
                    5b:14:5c:ca:40:e2:66:c5:00:f6:13:c3:ef:bf:66:
                    ab:bc:4b:d1:2e:26:ba:a0:04:d9:09:62:02:ef:d3:
                    11:90:e1:59:58:65:59:37:eb:2b:d6:02:ea:26:5e:
                    ef:1a:b6:52:94:74:ca:c0:1f:bb:48:97:a7:8a:9a:
                    7b:5a:31:e6:26:d6:7d:e3:14:4b:53:41:28:2c:0b:
                    6b:0e:f0:9b:76:16:fd:7f:1b:b3:eb:0e:f0:f4:aa:
                    34:37:15:67:b9:f7:9e:9f:e5:3b:eb:c5:84:79:f6:
                    8d:68:ae:9f:91:2d:9f:e4:45:df:f6:4c:0a:5a:52:
                    b1:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:F6:BE:CD:96:41:76:D6:44:B4:65:A0:97:56:41:43:34:71:67:2D
            X509v3 Authority Key Identifier:
                keyid:6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:f6:31:9f:aa:83:2c:6c:61:e6:71:80:be:6a:82:8e:8c:df:
         8f:2f:7b:36:61:8f:b0:6f:fe:6e:3f:4d:95:f8:46:c0:66:b9:
         32:26:ba:b9:48:2f:84:37:db:7a:3f:90:14:b8:cc:2f:cc:79:
         66:18:b4:77:73:06:bc:45:ac:c7:52:4e:b6:5a:19:05:70:6d:
         f2:f8:d1:50:c6:61:94:7f:f3:a5:0c:94:15:db:5d:a4:49:55:
         4c:dd:14:46:1b:6a:78:9a:39:e0:f8:11:d3:1e:69:61:8e:6e:
         10:4b:08:a1:a2:fa:30:bb:f7:66:3f:c6:86:79:2b:ea:9b:d9:
         ea:96:b4:04:d2:b3:6e:55:72:3d:2e:49:f3:d1:29:81:a2:42:
         f5:1b:75:8e:c1:3a:4c:cb:7b:2d:54:68:4d:13:67:41:1c:a7:
         45:be:75:6a:3b:e0:84:e2:35:fe:63:93:ee:83:14:6a:1f:61:
         9d:ed:44:3c:53:c5:e0:6a:6d:7a:b0:f9:18:40:a4:ee:c8:5a:
         cf:db:2c:5e:9d:69:fe:79:29:0e:4b:75:54:a3:90:ac:94:e5:
         16:9f:aa:89:3b:63:0c:63:87:de:81:d7:1d:a2:02:b9:9c:84:
         7c:03:b6:09:14:43:ee:72:e3:9b:98:a4:6e:4b:44:cb:61:48:
         a3:d7:18:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----