Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
File:                     G3NaOdmSptxEu-c6TZm-PIQvqWg.mft (raw, json)
Hash identifier:          PHSRzpdMF9yMiPNwrEeYUjHjeqN3z+nnheQ2Xsavkoc=
Subject key identifier:   73:0A:EA:69:4D:99:20:69:83:F9:41:01:88:A3:F3:80:A7:C2:99:39
Authority key identifier: 1B:73:5A:39:D9:92:A6:DC:44:BB:E7:3A:4D:99:BE:3C:84:2F:A9:68
Certificate issuer:       /CN=1b735a39d992a6dc44bbe73a4d99be3c842fa968
Certificate serial:       019A4D3CE0CEBD6A84FA8A9BF5AFABBDD023
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
Manifest number:          049B
Signing time:             Tue 04 Nov 2025 05:00:26 +0000
Manifest this update:     Tue 04 Nov 2025 05:00:26 +0000
Manifest next update:     Wed 05 Nov 2025 05:00:26 +0000
Files and hashes:         1: G3NaOdmSptxEu-c6TZm-PIQvqWg.crl (hash: zZEOAbFCIib85w2YCshNDTLLumo7BqfYWNYSV9KaPK4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 05:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4d:3c:e0:ce:bd:6a:84:fa:8a:9b:f5:af:ab:bd:d0:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1b735a39d992a6dc44bbe73a4d99be3c842fa968
        Validity
            Not Before: Nov  4 05:00:26 2025 GMT
            Not After : Nov  5 05:00:26 2025 GMT
        Subject: CN=730aea694d99206983f9410188a3f380a7c29939
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:8b:bf:8e:f4:ea:b7:9a:86:2f:f1:c5:d8:c8:
                    a4:b3:d9:4f:bb:36:3d:5c:f9:d9:90:4d:00:7a:4a:
                    d6:c9:1a:12:b1:2b:23:76:8b:4e:5c:bf:d4:77:8e:
                    5a:09:44:55:67:75:e6:15:13:a0:3f:98:27:e8:84:
                    06:6b:63:e0:ea:d5:3f:3e:3d:bf:d7:31:14:57:ec:
                    9b:d6:db:37:50:f0:12:4f:3c:ce:ef:5d:c6:91:4f:
                    e3:c3:20:2c:bc:05:37:89:cb:0c:0c:53:c0:58:c0:
                    29:bc:0b:0d:44:18:ce:42:07:8c:ab:38:ae:a6:37:
                    85:c0:b7:4b:f0:74:d1:e0:c9:81:31:5d:08:96:6b:
                    69:52:e1:c5:12:6b:13:5c:0d:7d:0d:f4:4e:d7:28:
                    1a:37:16:36:03:f1:80:1b:14:d7:2b:cf:2a:20:d0:
                    0b:4d:5c:57:d9:0b:25:81:81:63:25:81:21:25:84:
                    a3:ef:79:4c:e2:fd:a1:66:aa:b1:cf:aa:3f:af:79:
                    b8:72:a6:97:08:ad:3d:11:05:55:94:9b:45:c5:0f:
                    3a:92:e2:45:b2:ba:22:3a:8d:09:31:01:ab:43:30:
                    24:9e:a9:5f:13:2f:05:3a:15:49:50:89:9c:b9:45:
                    54:fd:0f:7f:11:30:5f:43:15:f8:7d:68:29:85:e7:
                    f2:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:0A:EA:69:4D:99:20:69:83:F9:41:01:88:A3:F3:80:A7:C2:99:39
            X509v3 Authority Key Identifier:
                keyid:1B:73:5A:39:D9:92:A6:DC:44:BB:E7:3A:4D:99:BE:3C:84:2F:A9:68

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:9c:4d:b5:2a:ba:94:80:cb:c4:48:e5:0f:62:de:bf:a0:49:
         b9:94:d0:72:25:08:84:db:8f:31:5e:4f:16:b8:04:17:c4:d4:
         c9:db:c4:5d:21:d0:07:a0:a1:2a:78:b3:01:13:e1:ea:95:13:
         98:60:1a:f4:dc:33:3c:0d:ae:a0:51:0c:ca:90:8e:2c:86:cc:
         8d:ee:dd:75:5a:b5:6d:c9:f6:db:17:15:79:69:d4:4b:92:f5:
         08:b1:a4:d9:00:b5:57:a1:61:40:b1:72:31:e6:fa:a7:5d:3a:
         bc:64:73:82:2d:2b:b0:d6:48:a3:c3:b7:b7:8f:85:a4:1a:70:
         70:aa:bf:4d:59:cb:52:d2:b3:1b:bf:89:27:0f:f7:11:91:4b:
         a9:3e:2a:4f:b2:55:b6:38:0e:57:be:3a:74:5d:32:99:9a:50:
         18:b1:98:d6:97:97:e4:6a:e9:4d:6e:09:f1:88:e0:e4:97:bc:
         22:d2:8b:7a:74:58:b0:76:dd:6b:87:30:0a:34:06:c6:d5:6c:
         63:b4:3f:27:0e:f9:fd:4e:3b:87:2e:9c:e7:2f:63:f6:af:9b:
         b5:52:c4:46:4d:ff:a8:b9:9e:3a:78:31:bd:7d:b0:92:94:05:
         f3:d9:3f:37:60:c2:4d:d5:67:f4:c2:5e:16:11:d2:a5:14:9f:
         f3:ab:59:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----