Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
File:                     6gYhpKcsclr8dUFej4rPdTPUIH0.mft (raw, json)
Hash identifier:          L4dvQ1nRSj/su0fLUtnMkFE5RDFt+yCNIuPP+ex4U9Q=
Subject key identifier:   9B:74:E9:85:19:35:04:A6:DD:79:86:79:23:62:26:28:FB:A8:7D:D0
Authority key identifier: EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D
Certificate issuer:       /CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
Certificate serial:       019A71B90FA30B01CE426306B1D4AC2F812F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
Manifest number:          156A
Signing time:             Tue 11 Nov 2025 07:02:24 +0000
Manifest this update:     Tue 11 Nov 2025 07:02:24 +0000
Manifest next update:     Wed 12 Nov 2025 07:02:24 +0000
Files and hashes:         1: 6gYhpKcsclr8dUFej4rPdTPUIH0.crl (hash: oIFp1IMqJE9cAQf3HzCocT2eG5uEw2dIf+j6WUlQ2Ww=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 07:02:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:71:b9:0f:a3:0b:01:ce:42:63:06:b1:d4:ac:2f:81:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
        Validity
            Not Before: Nov 11 07:02:24 2025 GMT
            Not After : Nov 12 07:02:24 2025 GMT
        Subject: CN=9b74e985193504a6dd79867923622628fba87dd0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:52:e2:5a:52:05:32:75:58:f6:5d:43:0d:9c:
                    e6:18:05:45:8f:5b:5c:6f:13:69:05:74:4a:fe:f9:
                    cf:1c:26:9b:d2:a2:d4:b7:93:9f:85:12:3a:24:9c:
                    80:87:7c:3e:61:51:c2:5f:b8:8e:ad:15:34:cc:51:
                    5e:5d:ff:87:dc:ee:19:d6:4c:2c:7e:f8:61:18:a4:
                    c5:0e:12:84:c5:ad:0c:42:2e:50:92:83:0e:9d:fc:
                    13:66:a5:45:cd:50:57:60:e3:bd:2d:01:15:1b:b8:
                    fb:6d:69:52:ee:79:e6:95:4c:f3:e2:cd:a2:58:97:
                    5a:aa:79:ee:74:80:1e:69:62:84:0c:27:92:8c:04:
                    46:12:17:74:dc:bf:fa:65:89:f4:8f:46:20:b1:ed:
                    17:8d:28:cf:5b:f1:aa:a9:eb:eb:49:5c:ea:02:ca:
                    53:2c:9b:1d:0e:b3:28:2b:7a:c1:1e:a8:fe:1b:eb:
                    40:df:ef:23:14:95:20:b6:30:f5:99:c7:95:71:08:
                    8f:bf:d6:58:64:b9:ba:1f:42:92:20:75:3b:c8:b4:
                    13:8e:b9:53:02:10:19:6b:80:af:7c:7f:51:ee:5f:
                    df:ef:e2:72:3e:cf:e2:7b:2f:92:74:8d:68:10:31:
                    b5:b2:52:b3:29:5c:89:d5:e9:2c:51:91:ff:62:48:
                    30:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:74:E9:85:19:35:04:A6:DD:79:86:79:23:62:26:28:FB:A8:7D:D0
            X509v3 Authority Key Identifier:
                keyid:EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c6:0e:d2:b1:eb:ad:69:01:7a:39:4c:6a:4f:b0:e1:65:47:60:
         8d:b9:ed:11:b4:bd:f6:4e:ec:3b:83:9d:72:96:b8:c5:8e:27:
         ef:94:ac:d6:1f:42:60:f2:dd:da:0a:5c:a7:db:12:3d:ed:f7:
         45:55:1a:62:e1:35:98:ee:d0:ca:87:40:2a:59:29:f3:2e:4d:
         35:63:97:48:16:5a:df:89:b2:2b:62:f7:7e:70:a7:3a:95:f8:
         46:20:a6:79:59:c1:53:a1:88:e7:01:2a:65:77:f6:8d:bf:c9:
         56:76:91:5b:7e:4d:69:4b:13:c0:bd:80:17:96:36:50:90:ac:
         6d:85:db:ec:0f:06:72:4b:b4:80:6b:69:2e:62:19:dc:79:e2:
         16:b1:22:d5:c6:08:7f:91:af:6d:66:5d:a9:1b:76:0a:98:4c:
         0e:b1:bc:a2:92:9a:66:a0:16:2b:27:15:e3:67:f7:dd:38:7a:
         a3:14:a3:02:fb:da:5c:0d:51:e1:75:90:7e:6f:bd:d9:f6:31:
         85:1f:dd:a5:68:70:eb:1b:df:79:36:5b:b1:4c:94:25:83:3e:
         52:5f:d4:ad:15:c1:53:e0:ef:7f:95:e7:dd:de:7c:4e:1e:bd:
         e3:f7:43:35:80:a1:4c:89:85:a2:67:08:a3:0a:78:24:d8:29:
         32:58:b3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----