Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
File:                     79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json)
Hash identifier:          mrln9pEN4Js7qIhaYB/nsYXaVMepzqqa1oXVbdVI0Wo=
Subject key identifier:   AC:A1:5F:21:9F:F9:55:02:10:B6:B8:F2:41:73:F6:79:85:4A:A7:E5
Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A
Certificate issuer:       /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
Certificate serial:       019A72CA93020340F9BB1ED688C0E9C79834
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
Manifest number:          06F7
Signing time:             Tue 11 Nov 2025 12:01:09 +0000
Manifest this update:     Tue 11 Nov 2025 12:01:09 +0000
Manifest next update:     Wed 12 Nov 2025 12:01:09 +0000
Files and hashes:         1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: +pH5kkQtefWCWZYolOjk+kZPLARcO56YK4hIDuEZyLU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 09:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:72:ca:93:02:03:40:f9:bb:1e:d6:88:c0:e9:c7:98:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
        Validity
            Not Before: Nov 11 12:01:09 2025 GMT
            Not After : Nov 12 12:01:09 2025 GMT
        Subject: CN=aca15f219ff9550210b6b8f24173f679854aa7e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:c0:a5:e6:2a:96:91:2e:93:ba:f0:26:f8:e8:
                    a5:63:14:d0:3a:35:fc:e5:5a:03:5f:0f:b5:c4:ba:
                    2d:2a:d8:d8:86:0d:81:a5:b6:1a:f2:39:01:77:0c:
                    56:33:c8:a8:75:81:6c:80:31:58:8e:03:86:79:fc:
                    04:52:51:3d:d0:38:ef:93:86:ed:21:27:73:a2:65:
                    b5:db:e1:e5:5a:10:3d:10:b7:f8:2b:dc:57:fb:61:
                    7c:04:76:17:f3:31:17:11:c7:a0:f2:6c:3d:04:e4:
                    2e:29:21:ab:5b:99:c3:66:e6:4e:1d:77:1c:5d:c8:
                    34:cb:28:82:2d:a7:7c:6c:3f:2e:5f:13:d6:57:5b:
                    3c:1f:a9:5d:b8:ae:a1:90:73:cb:5a:24:62:4c:e8:
                    6b:73:f0:27:30:6b:03:6a:a3:b8:1a:61:71:37:c6:
                    ef:f4:9a:87:6c:d2:bc:c7:8e:ee:ec:a7:7c:7d:f3:
                    2b:1d:79:37:83:c7:1d:f1:bf:a4:da:4a:fa:9b:fc:
                    65:80:58:3e:76:7d:13:9c:22:0d:1b:9b:15:a0:a5:
                    c6:4b:5e:c6:31:97:d3:c0:06:9c:fd:f4:61:0c:b5:
                    49:9c:26:d8:08:0a:ad:85:37:a1:c0:3d:47:b0:d3:
                    f3:91:28:36:64:4c:09:31:a2:fe:ee:56:80:6e:d1:
                    22:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:A1:5F:21:9F:F9:55:02:10:B6:B8:F2:41:73:F6:79:85:4A:A7:E5
            X509v3 Authority Key Identifier:
                keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:94:95:87:2e:34:d8:9e:a2:72:21:35:8d:d3:f4:a3:56:b1:
         0c:47:c2:a3:65:13:22:dd:35:2d:2f:fe:82:2f:17:49:29:a8:
         21:2c:33:4f:0f:36:c0:dd:fd:1a:6d:09:40:64:d0:92:17:b4:
         61:fa:27:83:f6:fb:3e:70:55:74:64:fa:3f:86:6a:85:19:0c:
         90:b8:e2:d5:f7:2d:35:22:70:9f:65:73:db:21:89:5b:b7:0a:
         b6:43:6c:d8:58:72:9e:21:81:58:2d:93:65:e5:75:1c:50:a4:
         b1:ff:e1:49:4b:ed:92:97:e1:7c:aa:c1:c9:c3:0c:b1:5a:2e:
         7d:94:0d:1b:64:c2:37:a7:31:19:83:07:1e:44:6b:2e:09:64:
         06:1e:fa:79:29:0a:ae:69:3e:47:e8:db:fc:0d:25:88:cc:77:
         ab:1d:cb:7d:43:a8:58:19:1c:99:11:76:b9:6a:3e:11:1f:9a:
         5b:57:2b:85:32:74:12:e7:cc:fe:ba:d8:52:77:9c:c4:f2:ec:
         00:67:a3:28:78:79:ef:65:c8:34:bc:5e:50:5b:e8:15:20:4f:
         87:2c:cc:96:a6:42:aa:c1:b1:16:7a:4d:a5:bc:ce:b4:a0:aa:
         48:e1:b9:b0:87:91:2d:f7:37:69:f8:44:4d:a9:8d:c3:ca:40:
         94:23:01:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----