Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
File:                     vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json)
Hash identifier:          yvF+yRH3Vdu9RDMqbTYCMznnht8rNAULJKXKwL3dIo4=
Subject key identifier:   10:02:89:25:5F:10:C4:66:A9:2B:A4:E4:D0:5A:DB:EB:9C:A4:D7:10
Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
Certificate issuer:       /CN=bed25795a682b119a994805a97657853d754a05c
Certificate serial:       019A4F61E58693C4D3434277B553C18A2963
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
Manifest number:          0B9B
Signing time:             Tue 04 Nov 2025 15:00:07 +0000
Manifest this update:     Tue 04 Nov 2025 15:00:07 +0000
Manifest next update:     Wed 05 Nov 2025 15:00:07 +0000
Files and hashes:         1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: Log4VWdJdQv/Mbu4WEyWCSWrg/KL5ZgAcL73/QRoKa4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 15:00:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4f:61:e5:86:93:c4:d3:43:42:77:b5:53:c1:8a:29:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bed25795a682b119a994805a97657853d754a05c
        Validity
            Not Before: Nov  4 15:00:07 2025 GMT
            Not After : Nov  5 15:00:07 2025 GMT
        Subject: CN=100289255f10c466a92ba4e4d05adbeb9ca4d710
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:0e:33:24:26:1c:60:33:e0:15:22:26:e7:a2:
                    32:26:68:79:e8:e0:54:b7:e9:20:07:a0:a7:94:7e:
                    e2:bf:fa:5a:47:5b:9d:b0:f5:0a:fe:55:38:3d:4e:
                    5a:50:b6:dd:aa:ef:5b:ac:91:04:05:d3:c0:cc:1c:
                    04:ce:0e:6c:ce:1e:7d:ac:24:2c:66:bc:d9:96:1a:
                    03:5c:e1:4a:af:39:46:8d:1e:73:42:60:2a:78:a8:
                    02:7d:24:80:6e:35:af:7d:e5:68:a3:e5:d2:81:3f:
                    04:4f:43:7d:b0:d7:94:fa:1d:91:bc:bc:59:aa:71:
                    89:46:0d:47:a5:9e:f6:9f:36:bb:e6:64:11:83:4a:
                    49:39:e3:e2:24:03:8b:3c:95:a8:a5:e7:83:f0:83:
                    45:32:45:f5:be:55:15:5a:78:c0:19:b2:d9:b3:23:
                    b6:08:84:57:72:bb:77:b7:2a:16:be:1f:98:82:10:
                    c3:43:2f:76:a5:e5:b0:af:78:39:6f:44:4b:d1:4b:
                    51:f5:8d:14:a8:58:36:67:08:f3:9d:a6:de:e6:ed:
                    8a:50:47:0b:d2:94:68:d3:08:36:82:e2:40:56:c8:
                    25:9a:ca:76:5b:ee:47:d0:ce:fb:24:42:b6:61:34:
                    b6:77:61:70:c0:dd:21:b9:bf:65:0c:93:81:7f:ba:
                    8c:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:02:89:25:5F:10:C4:66:A9:2B:A4:E4:D0:5A:DB:EB:9C:A4:D7:10
            X509v3 Authority Key Identifier:
                keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:14:db:d1:4c:76:3c:6a:26:de:1e:3e:99:94:a0:c2:c4:b3:
         57:91:fd:fe:fb:61:59:74:7f:d8:34:72:f3:a6:69:69:e2:10:
         69:56:42:f3:b0:42:d9:27:0c:0f:84:3f:c7:d1:be:66:fd:33:
         2f:30:2f:e8:fb:b6:85:88:df:28:5f:1a:a8:bd:4d:ef:7f:2e:
         4b:7f:3d:ed:63:11:93:97:0e:fc:25:cc:0d:ea:14:a3:c1:61:
         8e:62:b9:53:14:26:6b:43:f1:8a:cf:39:3e:3a:89:f5:d9:4d:
         79:db:56:92:b0:99:c9:76:25:c7:0a:31:86:26:e3:a8:1c:a3:
         7e:41:5c:dc:0f:66:fc:b7:00:d9:3e:c9:9a:36:d4:d0:a0:e1:
         ff:e2:05:cc:48:e6:b6:fc:7f:0e:e7:46:34:fb:87:0c:13:94:
         d5:8f:9f:45:17:78:99:90:00:b2:48:6e:d9:e0:3f:f6:5a:59:
         c5:f4:84:7c:8a:27:74:fe:60:1a:34:b8:a9:83:88:40:fb:f8:
         cf:24:ae:26:e9:1c:e7:d3:63:86:71:66:90:db:27:cd:28:a1:
         14:73:2e:46:de:8b:49:99:2b:c4:33:ef:1d:77:bc:80:bd:27:
         9a:cd:b1:d6:ab:93:df:fd:ab:82:02:10:8f:f6:24:e6:ae:80:
         b6:12:b5:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----