Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft
File:                     3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft (raw, json)
Hash identifier:          v2yAnAtONEiKu2zAVVQv8O14QANFtWr62XRC8VkgIgc=
Subject key identifier:   49:12:8E:38:CE:F9:6D:00:0F:19:E1:14:2E:34:6F:B9:F6:0A:05:82
Authority key identifier: DE:11:CC:6D:F1:33:66:FC:59:5A:6E:72:ED:03:C5:38:00:79:2B:4B
Certificate issuer:       /CN=de11cc6df13366fc595a6e72ed03c53800792b4b
Certificate serial:       019A552D2D21A98C7FBB05DF2E3546D85E1B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft
Manifest number:          0E73
Signing time:             Wed 05 Nov 2025 18:00:15 +0000
Manifest this update:     Wed 05 Nov 2025 18:00:15 +0000
Manifest next update:     Thu 06 Nov 2025 18:00:15 +0000
Files and hashes:         1: 3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl (hash: PUE/YXPUqjstLRQ5G8pElWQOKB4UbKvnSYXscVHUMiY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 06 Nov 2025 18:00:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:55:2d:2d:21:a9:8c:7f:bb:05:df:2e:35:46:d8:5e:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=de11cc6df13366fc595a6e72ed03c53800792b4b
        Validity
            Not Before: Nov  5 18:00:15 2025 GMT
            Not After : Nov  6 18:00:15 2025 GMT
        Subject: CN=49128e38cef96d000f19e1142e346fb9f60a0582
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:08:dd:71:07:a7:f7:5c:12:c9:67:db:4f:d1:
                    4a:a9:e0:07:2d:9b:60:22:b0:d3:56:ab:5d:74:45:
                    33:b8:1f:0c:13:af:21:11:9e:46:f9:6a:76:61:bd:
                    05:5c:47:45:53:ef:c5:9e:88:d1:88:fb:46:27:3b:
                    4b:ea:a9:98:a9:25:9d:27:8c:2a:ac:8f:21:7c:c7:
                    82:c7:00:0d:04:fc:b6:4a:36:31:97:da:05:bf:09:
                    1a:9b:3d:99:c5:39:ab:98:07:a4:d0:bc:a2:5d:bb:
                    bf:5b:f0:ae:4e:c8:c1:f5:0a:59:c4:9a:96:f2:d4:
                    88:f8:f0:de:39:c2:ce:77:6e:36:62:31:bb:75:bb:
                    a7:f6:bb:e7:46:c2:5d:a4:40:7e:9d:ed:78:b1:3f:
                    0a:8b:5b:05:d4:86:d2:3d:dd:8e:34:a5:78:67:8d:
                    9a:78:3c:99:fd:9e:2a:84:b1:98:24:ab:be:43:ef:
                    b6:ce:ee:14:1e:76:d6:0f:b1:e1:83:e4:7b:1a:ba:
                    69:53:25:fe:32:57:9f:c9:53:cd:31:a0:bd:15:49:
                    a7:03:ac:a5:79:a3:15:f0:ac:61:7b:03:c2:37:af:
                    04:ce:82:68:91:53:55:43:54:1d:cc:5d:71:1c:92:
                    f0:69:e0:a3:47:01:9c:8b:af:64:d7:ec:f3:cd:ef:
                    bc:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:12:8E:38:CE:F9:6D:00:0F:19:E1:14:2E:34:6F:B9:F6:0A:05:82
            X509v3 Authority Key Identifier:
                keyid:DE:11:CC:6D:F1:33:66:FC:59:5A:6E:72:ED:03:C5:38:00:79:2B:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:00:00:06:76:40:a8:cd:3a:c3:c0:f0:c1:03:e7:60:59:d6:
         0f:43:c8:39:18:83:a4:51:a9:59:a0:cc:84:f1:9b:13:f1:44:
         87:14:3a:80:37:ae:e5:31:57:60:26:d8:32:34:e9:04:00:71:
         cd:ba:ef:59:e2:77:2b:16:4d:6c:98:3e:a8:cb:37:37:d6:ca:
         41:8e:31:8e:37:ce:82:aa:a2:21:ea:c8:0b:3a:25:9a:6b:3b:
         e9:9e:b6:97:e8:19:67:64:f1:74:09:fd:d3:5d:ce:d2:05:5e:
         c4:1b:70:22:fb:d9:fc:51:9e:ae:e3:68:39:46:f0:83:94:a0:
         ef:2a:dc:10:ad:88:2f:6d:ed:bd:42:7d:c3:4d:e3:b4:77:a2:
         d7:12:bb:e8:b9:56:e0:fb:3e:a3:d9:59:aa:c8:2e:d0:d9:b4:
         81:30:3d:84:fa:42:b1:e8:66:4b:bc:2e:08:92:4d:b3:60:a8:
         d6:7b:29:71:e7:dd:f9:2b:5a:92:e3:1e:d0:36:59:45:0d:25:
         00:55:9f:7d:6a:cb:12:9b:9c:90:d1:1d:68:1b:78:eb:95:e8:
         65:d7:35:11:d9:d7:76:08:dd:d2:6b:4c:27:02:cc:f1:04:e3:
         f4:54:71:9b:66:6a:42:87:6b:e5:6b:e4:1f:7e:e2:4f:55:f3:
         68:0b:b1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----