Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File:                     cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier:          xAi1fpqQmL4Y84KOHJrmrlDCq40mnjgp/afVCsgier8=
Subject key identifier:   8D:5C:1A:28:7B:BF:4E:8B:A3:9B:48:90:0A:B2:4B:41:ED:66:5E:F4
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer:       /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial:       019A299E60E5A97EC87AD55205383F42DDE8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number:          04A3
Signing time:             Tue 28 Oct 2025 07:00:36 +0000
Manifest this update:     Tue 28 Oct 2025 07:00:36 +0000
Manifest next update:     Wed 29 Oct 2025 07:00:36 +0000
Files and hashes:         1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: TOOjDKH4/jm0vrp11hQcoNybeEDYdzCOq0VB7ErGWuQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 29 Oct 2025 07:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:29:9e:60:e5:a9:7e:c8:7a:d5:52:05:38:3f:42:dd:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
        Validity
            Not Before: Oct 28 07:00:36 2025 GMT
            Not After : Oct 29 07:00:36 2025 GMT
        Subject: CN=8d5c1a287bbf4e8ba39b48900ab24b41ed665ef4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:62:a3:82:06:43:55:11:1d:00:3a:aa:7b:3a:
                    43:c0:8b:7f:ef:e4:e0:57:66:ec:76:03:76:6b:ac:
                    09:0e:b6:72:e9:67:ed:c4:e5:05:4a:35:41:8c:d1:
                    90:aa:4a:e8:f3:8a:de:d4:c5:8e:29:40:ca:dc:81:
                    65:0b:11:7f:df:54:dd:d9:cf:ce:4b:0c:f4:f9:a7:
                    8b:c9:f7:10:02:37:a4:84:60:28:61:43:a4:3e:a1:
                    fa:f8:0a:7e:93:c4:a4:33:65:68:90:47:1a:81:e2:
                    76:43:0f:6e:91:4d:e1:da:70:c8:db:e2:37:82:0d:
                    87:54:08:03:6d:69:ae:69:d1:85:05:d2:78:e7:8a:
                    95:38:32:da:d8:49:0c:75:20:80:e7:f2:84:03:fb:
                    92:a6:00:2c:cb:fe:98:76:c1:2d:df:d8:a6:17:92:
                    3c:b4:cd:25:40:7e:82:3b:96:5c:c2:38:a8:ad:e9:
                    bb:7e:fe:49:0f:5c:0b:e7:0c:73:f3:ab:b1:78:c8:
                    31:5a:18:f0:e0:85:19:4a:33:e1:62:df:3b:5f:13:
                    36:07:c1:de:11:9a:2a:6b:79:c1:37:69:75:9c:16:
                    a3:8b:52:84:d7:68:76:52:07:8f:c8:98:ee:dc:73:
                    90:6f:19:1d:a2:7e:07:05:37:82:0b:0b:53:f2:06:
                    ad:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:5C:1A:28:7B:BF:4E:8B:A3:9B:48:90:0A:B2:4B:41:ED:66:5E:F4
            X509v3 Authority Key Identifier:
                keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:1f:96:ba:11:8d:f4:93:97:93:a2:bc:13:ff:23:b5:48:06:
         15:eb:5b:56:54:3b:fb:5d:9e:c3:d9:c4:de:75:27:48:6c:bc:
         8b:8e:66:10:1b:92:3a:18:80:48:93:d9:bd:d3:9c:3e:75:fc:
         00:43:8f:75:09:db:6c:9c:db:0b:97:7b:a3:49:98:ef:23:ab:
         d3:54:00:f4:c3:cd:5a:8c:2b:62:9a:30:53:31:43:c6:cb:a8:
         dd:c7:ed:a3:b4:33:7a:2b:d1:53:ff:a1:65:6f:f4:37:61:1f:
         88:3b:18:bb:92:1a:7e:1c:cc:3e:f0:04:19:f6:0c:44:65:f5:
         46:a1:93:20:a5:97:3a:ec:92:95:55:1a:68:0d:42:97:26:71:
         3b:22:56:90:56:b7:61:49:17:89:ee:ea:25:5e:97:4b:a7:37:
         b6:5e:fa:6d:ea:9d:52:65:2f:19:e7:67:cc:bf:8f:06:f0:0b:
         98:9d:b2:fa:71:e2:9a:5b:bc:54:d7:31:1c:f9:4a:03:92:45:
         54:9d:f4:48:07:5f:4e:04:bd:1f:30:69:c0:d5:c9:4c:4e:69:
         ab:f7:4b:86:4b:28:1f:fd:ed:74:6b:88:e4:24:ac:66:28:f9:
         81:da:97:30:80:da:2a:74:da:fe:94:72:c2:ae:8a:be:c7:fe:
         64:e2:55:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----