Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f961af-e8dd-4f64-9547-7363373155be/1/gnSkfvUV7gcuLOK8w74KNN1zQfs.mft
File:                     gnSkfvUV7gcuLOK8w74KNN1zQfs.mft (raw, json)
Hash identifier:          H1NS58BmmZq0d9/uRXxq5NdwuDKtcr4NaQoC6Nfb8/Q=
Subject key identifier:   9E:EF:BC:14:59:09:28:D9:73:9E:04:61:85:15:20:64:60:02:95:78
Authority key identifier: 82:74:A4:7E:F5:15:EE:07:2E:2C:E2:BC:C3:BE:0A:34:DD:73:41:FB
Certificate issuer:       /CN=8274a47ef515ee072e2ce2bcc3be0a34dd7341fb
Certificate serial:       019A7112E51B4D2D67C0D9AF33D1A0B9D361
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gnSkfvUV7gcuLOK8w74KNN1zQfs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/f961af-e8dd-4f64-9547-7363373155be/1/gnSkfvUV7gcuLOK8w74KNN1zQfs.mft
Manifest number:          6E
Signing time:             Tue 11 Nov 2025 04:00:54 +0000
Manifest this update:     Tue 11 Nov 2025 04:00:54 +0000
Manifest next update:     Wed 12 Nov 2025 04:00:54 +0000
Files and hashes:         1: gnSkfvUV7gcuLOK8w74KNN1zQfs.crl (hash: Ubg6Oop0EV3YJ30sBmXXPijNfc0OxR3ozrrtLBtxVJ0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/f961af-e8dd-4f64-9547-7363373155be/1/gnSkfvUV7gcuLOK8w74KNN1zQfs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/f961af-e8dd-4f64-9547-7363373155be/1/gnSkfvUV7gcuLOK8w74KNN1zQfs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gnSkfvUV7gcuLOK8w74KNN1zQfs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 04:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:71:12:e5:1b:4d:2d:67:c0:d9:af:33:d1:a0:b9:d3:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8274a47ef515ee072e2ce2bcc3be0a34dd7341fb
        Validity
            Not Before: Nov 11 04:00:54 2025 GMT
            Not After : Nov 12 04:00:54 2025 GMT
        Subject: CN=9eefbc14590928d9739e04618515206460029578
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:b8:b1:df:88:89:99:81:87:a6:96:12:c8:70:
                    0b:bc:dd:71:0b:6a:8e:5f:16:44:f1:51:26:aa:b0:
                    d7:f5:75:33:03:13:bd:1f:8d:2d:3e:81:6d:8c:af:
                    46:82:49:13:68:01:73:ac:bb:c9:91:30:d9:d6:c3:
                    39:98:a6:25:53:ba:43:f2:d8:ea:28:35:d3:88:09:
                    74:97:72:74:e8:e9:ad:35:26:08:ad:1e:91:41:dd:
                    5a:9a:7c:2d:37:d6:88:20:17:44:40:83:74:91:b7:
                    e6:bc:45:6e:07:d6:91:29:56:9f:14:1c:ea:d6:cb:
                    6d:55:41:cd:17:79:7f:48:94:e7:ae:c2:90:3b:fc:
                    67:b8:b1:95:b1:92:cf:f1:54:f4:84:f9:75:31:5a:
                    ec:1a:f1:22:82:4b:10:71:12:8a:a6:84:dc:82:9f:
                    66:e4:9e:40:03:d1:af:f6:68:52:08:48:e3:9a:60:
                    61:a6:89:37:ea:f6:a9:23:ed:6a:54:57:bb:44:c8:
                    49:33:c6:e6:6a:5c:91:c2:a1:83:a0:cf:f1:28:86:
                    bb:be:83:62:75:1d:cd:24:29:00:7b:b0:d5:ec:87:
                    93:c7:22:f2:57:14:86:fd:9e:d6:8d:03:b5:e8:6f:
                    64:2e:ab:00:2f:c5:f7:5a:f7:01:2e:8d:a6:0e:92:
                    c7:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:EF:BC:14:59:09:28:D9:73:9E:04:61:85:15:20:64:60:02:95:78
            X509v3 Authority Key Identifier:
                keyid:82:74:A4:7E:F5:15:EE:07:2E:2C:E2:BC:C3:BE:0A:34:DD:73:41:FB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnSkfvUV7gcuLOK8w74KNN1zQfs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f961af-e8dd-4f64-9547-7363373155be/1/gnSkfvUV7gcuLOK8w74KNN1zQfs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f961af-e8dd-4f64-9547-7363373155be/1/gnSkfvUV7gcuLOK8w74KNN1zQfs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:0e:c8:ff:22:aa:c9:0d:a3:73:02:cc:9b:89:1f:33:0a:2d:
         c9:9a:11:9a:ae:04:9c:63:1c:e3:8e:c7:7c:06:ee:7c:14:29:
         4f:ce:b8:24:5a:a0:ce:4a:d0:f0:f2:ab:6b:e5:17:bb:d4:bf:
         16:e9:f3:cc:fd:52:3c:ea:af:bc:87:4c:38:8e:1d:ef:e6:1c:
         68:6a:7f:ca:a8:df:2c:ca:ff:5a:fa:1c:07:a4:91:26:66:33:
         b8:e0:35:99:16:81:f5:a5:5a:5d:cf:f9:2b:c7:ae:b3:58:11:
         5d:16:94:55:c2:43:6d:fa:cd:db:3c:0c:a0:79:4e:a1:01:14:
         b6:f6:d1:cf:42:c8:06:61:ef:22:fe:ea:da:42:4c:57:66:62:
         67:9f:5f:bc:e5:eb:c2:c4:9d:38:93:84:bd:67:a6:78:2f:4d:
         0f:a3:20:ea:b8:f7:5b:4f:41:9b:9d:a6:db:68:5f:82:c0:47:
         ed:c4:2f:91:15:db:0b:18:bc:73:49:d6:f5:24:98:9e:8b:3e:
         e5:45:4a:fb:af:9e:ac:fb:64:42:03:93:3d:62:55:b5:ca:10:
         48:9d:93:ed:53:7b:a0:f5:a8:7e:0d:83:04:99:ba:28:17:48:
         71:72:27:e2:6a:d4:97:66:dd:f0:e7:1f:aa:4a:a3:14:36:03:
         d2:06:0d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----