Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
File:                     l5SL1vKtFY5iT9jonp718b2x05o.mft (raw, json)
Hash identifier:          bGoOxNnt+ZzYYTqsevqYeGCZPhgOwqwLllFL7i3niYc=
Subject key identifier:   18:7F:EA:20:BA:0A:3A:3A:CF:43:D0:11:02:AD:09:A6:FF:2E:78:21
Authority key identifier: 97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A
Certificate issuer:       /CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a
Certificate serial:       019A71B89BCD82DCBEA1ED9A20EAF2B453BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
Manifest number:          044E
Signing time:             Tue 11 Nov 2025 07:01:55 +0000
Manifest this update:     Tue 11 Nov 2025 07:01:55 +0000
Manifest next update:     Wed 12 Nov 2025 07:01:55 +0000
Files and hashes:         1: l5SL1vKtFY5iT9jonp718b2x05o.crl (hash: WmFaqU6fSMrdnFiLjW+mGI1wDsW7mxshAWcvCPxjB0g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 07:01:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:71:b8:9b:cd:82:dc:be:a1:ed:9a:20:ea:f2:b4:53:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a
        Validity
            Not Before: Nov 11 07:01:55 2025 GMT
            Not After : Nov 12 07:01:55 2025 GMT
        Subject: CN=187fea20ba0a3a3acf43d01102ad09a6ff2e7821
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:ef:49:ef:0a:1e:dc:20:a4:37:6b:e7:62:b9:
                    11:37:52:ef:c3:6a:50:07:43:f8:f6:57:96:a6:41:
                    39:80:39:5a:cd:34:ec:77:80:8f:84:ac:95:6c:24:
                    a1:cd:02:17:7d:7d:f0:56:43:73:1e:8b:55:87:82:
                    87:36:09:aa:11:53:95:c8:0f:18:46:28:8b:27:6f:
                    0a:95:7d:36:33:d4:5f:af:9b:3b:27:ab:04:b5:59:
                    22:14:5e:52:46:0b:e1:b4:8a:a8:e7:9a:b8:fe:3b:
                    21:2a:f2:97:1b:ba:cc:45:47:3e:21:b2:7a:ad:12:
                    47:b8:7a:56:14:04:cb:ae:64:f1:40:d7:ca:cf:cc:
                    3a:46:90:b0:c8:cf:b9:a9:24:44:18:c3:ce:08:b7:
                    cf:45:a3:bd:8e:cb:03:e9:2d:56:62:64:f9:fb:60:
                    09:b2:fc:45:d9:64:62:81:6e:38:05:e8:d3:44:a8:
                    a6:97:51:66:34:e7:58:7a:76:d4:90:fa:e1:c3:e4:
                    2d:10:71:57:25:84:dd:18:71:7c:55:79:73:04:4a:
                    fc:ad:9e:69:90:c6:88:6c:da:03:f8:eb:4d:8f:d9:
                    cc:f2:cb:8c:39:56:80:54:cd:b0:63:26:6f:9f:b5:
                    a9:9e:09:68:2b:45:db:26:cf:5c:53:0e:52:5c:76:
                    e5:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:7F:EA:20:BA:0A:3A:3A:CF:43:D0:11:02:AD:09:A6:FF:2E:78:21
            X509v3 Authority Key Identifier:
                keyid:97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:28:76:e5:c7:3c:17:a7:20:6a:ff:67:51:7f:c7:b1:d7:25:
         2e:11:d2:94:23:13:fe:80:a1:c6:dc:53:c2:3e:2d:1c:c4:4b:
         bb:89:63:c0:32:88:64:b4:0d:4c:68:f9:fe:f9:65:5f:8d:16:
         6c:98:0c:b5:c1:26:f2:38:15:b0:4e:79:a2:98:6c:6f:0f:74:
         0c:93:c8:05:2e:7e:d3:87:3c:09:df:53:f0:7d:9d:54:0e:90:
         13:cd:80:cd:89:b9:a5:11:61:0e:1d:e8:21:4f:b7:91:87:71:
         30:ea:8a:87:a8:f3:40:fc:b1:2f:58:2a:df:ad:62:b9:91:13:
         30:50:5d:c8:a8:06:1d:9f:3b:f9:07:3b:a0:b5:65:0a:28:6e:
         b3:d6:67:ba:0a:71:a3:3d:36:68:6b:f8:26:02:3c:4b:40:9f:
         c7:8b:93:a9:50:4f:4b:bd:17:1a:16:d4:7b:64:2d:73:61:df:
         a9:31:f4:d4:81:bb:a2:78:db:b4:40:6b:2e:a6:05:3d:70:21:
         da:c9:f5:3f:52:0d:ff:0e:66:69:22:cd:4d:f0:59:b8:0c:49:
         56:7c:3a:04:82:a0:11:ae:7d:52:5b:bd:2c:c4:67:72:30:b6:
         e0:b4:29:f9:44:cf:36:e0:3d:9d:25:a4:e2:fd:60:b7:ed:42:
         6d:59:14:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----