Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
File:                     Yv8lPFoTQ6JWma4I51dnrya52-U.mft (raw, json)
Hash identifier:          tFlhjuMVpPn1nJTZ2dD77hLCINsE0WXzwUgmPWrm90E=
Subject key identifier:   CC:9F:7E:CE:B1:6D:27:1D:8C:3F:7F:0D:D1:30:8A:6C:0E:0F:9C:12
Authority key identifier: 62:FF:25:3C:5A:13:43:A2:56:99:AE:08:E7:57:67:AF:26:B9:DB:E5
Certificate issuer:       /CN=62ff253c5a1343a25699ae08e75767af26b9dbe5
Certificate serial:       019A522C7D739B53DDF89A42FB47B85BBCD5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
Manifest number:          169E
Signing time:             Wed 05 Nov 2025 04:00:38 +0000
Manifest this update:     Wed 05 Nov 2025 04:00:38 +0000
Manifest next update:     Thu 06 Nov 2025 04:00:38 +0000
Files and hashes:         1: Yv8lPFoTQ6JWma4I51dnrya52-U.crl (hash: o7p7ij2+sKcR6qOAhznKNVN3eAVCd0q1tT29h06iX9c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 22:37:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:52:2c:7d:73:9b:53:dd:f8:9a:42:fb:47:b8:5b:bc:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62ff253c5a1343a25699ae08e75767af26b9dbe5
        Validity
            Not Before: Nov  5 04:00:38 2025 GMT
            Not After : Nov  6 04:00:38 2025 GMT
        Subject: CN=cc9f7eceb16d271d8c3f7f0dd1308a6c0e0f9c12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:3b:85:48:86:bc:8c:72:56:a4:a7:29:4a:6f:
                    f6:34:1e:ec:c4:66:e5:bc:ae:7e:15:94:a5:fa:95:
                    3d:85:fc:b8:89:61:3a:f2:9c:90:20:08:38:62:4d:
                    83:d2:e0:45:4b:bc:bd:92:75:fe:bb:5a:e2:99:89:
                    d0:df:c2:d0:ac:03:8a:49:96:18:53:c7:a5:c0:48:
                    ac:ee:2a:77:47:25:71:88:9c:d5:43:85:1d:d5:f9:
                    40:3e:30:61:6f:ce:0a:ab:e0:75:18:22:b6:8e:18:
                    78:1a:b0:9e:1d:ab:6f:a6:aa:91:27:db:81:f2:4a:
                    fd:35:61:54:e8:dd:35:59:dd:ac:97:07:05:74:f4:
                    4d:07:cb:d6:3c:e1:87:15:6a:b3:6c:d3:9e:30:a2:
                    e4:78:7a:52:6f:c3:94:32:10:af:fb:df:f4:1e:9c:
                    f5:47:ef:ef:7d:6f:b1:f2:8c:2d:4c:d3:6f:89:d2:
                    c6:87:3a:3a:01:c1:74:2e:0e:6b:3f:0f:18:09:09:
                    0f:c3:e7:02:42:69:b3:e8:1e:74:c9:62:2a:a4:2e:
                    78:e8:6e:cd:d1:99:d5:c3:79:dd:c9:0c:67:f1:47:
                    35:47:cf:e1:b4:40:9c:53:11:b1:4e:cd:b1:7e:5f:
                    b5:fd:cf:ab:18:04:13:08:dd:73:3c:77:e2:94:d3:
                    95:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:9F:7E:CE:B1:6D:27:1D:8C:3F:7F:0D:D1:30:8A:6C:0E:0F:9C:12
            X509v3 Authority Key Identifier:
                keyid:62:FF:25:3C:5A:13:43:A2:56:99:AE:08:E7:57:67:AF:26:B9:DB:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:1f:85:a4:3b:29:49:d3:c9:e7:98:66:7e:1f:89:37:28:b6:
         5c:0d:2d:07:32:5e:f9:95:a4:e9:3f:e4:2b:48:1e:47:a4:d7:
         e7:aa:98:9e:8e:20:74:e2:6e:6f:da:fe:02:18:3e:f0:90:10:
         d8:80:0a:c6:bc:f6:8e:ee:72:8f:2e:04:91:28:93:40:df:80:
         d7:ab:22:a9:18:40:de:be:da:e0:8a:3f:f5:50:30:22:9b:1a:
         1b:a7:c6:80:36:c5:28:20:20:39:54:26:49:8c:e5:f3:b3:9b:
         2b:f5:3d:3f:fb:59:fd:7d:b9:0a:48:56:9c:5a:a9:d3:f1:47:
         fa:3e:61:ab:ff:1d:90:5a:72:d1:9b:53:e7:da:ec:67:78:8b:
         ea:ce:49:9b:78:3e:98:6d:d1:c0:58:9f:47:cb:b4:e2:4c:53:
         d4:65:a3:1d:8f:3b:30:c1:6b:ce:4f:d4:f0:95:41:d0:a2:c1:
         a6:23:6c:e7:9c:01:bf:52:42:5f:d9:60:7e:6a:57:cd:3f:46:
         f7:c2:64:5e:c0:2a:09:00:b7:09:70:69:e6:86:2e:77:99:d5:
         fa:64:82:e2:1d:95:b6:c9:f7:c2:9b:f3:35:45:05:3f:9b:79:
         ed:d2:7b:35:e4:c8:73:14:87:0f:3b:33:a8:01:f3:4d:83:9d:
         5f:a5:31:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----