Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
File:                     1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft (raw, json)
Hash identifier:          JtBoGwRgy3V3vQAarIDpK21xVTv8973J/0bnpYN8wIc=
Subject key identifier:   6E:17:6D:F7:96:59:24:E1:82:E2:4E:0E:9B:85:B2:D5:D5:94:20:C9
Authority key identifier: D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21
Certificate issuer:       /CN=d60ce3443860a7f70d43350776909a4810a48621
Certificate serial:       019A71B84DA3BD053777CBFE51C3B7FB82B0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
Manifest number:          0C64
Signing time:             Tue 11 Nov 2025 07:01:35 +0000
Manifest this update:     Tue 11 Nov 2025 07:01:35 +0000
Manifest next update:     Wed 12 Nov 2025 07:01:35 +0000
Files and hashes:         1: 1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl (hash: 8cbbF7L45fM9TNbOhWwGKximLMPo4ysgdj5ySzzFrGA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 07:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:71:b8:4d:a3:bd:05:37:77:cb:fe:51:c3:b7:fb:82:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d60ce3443860a7f70d43350776909a4810a48621
        Validity
            Not Before: Nov 11 07:01:35 2025 GMT
            Not After : Nov 12 07:01:35 2025 GMT
        Subject: CN=6e176df7965924e182e24e0e9b85b2d5d59420c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:c4:ea:9d:72:3f:39:24:ce:58:b5:bf:73:3e:
                    8a:36:b1:ea:69:47:03:47:6e:53:1f:11:2a:cf:65:
                    36:97:15:54:78:af:3d:5d:82:dd:1b:ac:e4:50:de:
                    ff:2e:5e:5f:b9:88:f0:1d:6e:1e:25:77:28:7a:19:
                    18:df:d1:84:2d:04:57:03:dd:9f:f2:c1:8e:75:49:
                    9c:52:27:0d:0d:65:25:53:eb:80:cf:53:ad:ab:b0:
                    b2:86:8a:c7:e1:9c:1b:ef:04:db:4d:89:13:4d:08:
                    6c:48:83:c4:bc:54:29:b6:91:ca:89:da:8f:4d:e6:
                    ac:bd:21:7b:ae:0d:94:8a:6c:cb:45:3f:85:bf:8a:
                    cf:c1:15:98:92:e3:55:42:50:81:94:da:a9:8b:ff:
                    87:5f:cc:76:f6:ff:0e:ca:89:29:cd:de:82:03:49:
                    b2:fc:bd:c9:90:ab:e3:5d:1c:c5:b8:3f:80:c0:69:
                    d8:af:2a:3d:26:86:6c:60:fd:06:0f:25:4f:7b:1b:
                    a7:5b:4a:32:ef:ed:18:a5:80:f1:62:20:84:96:37:
                    03:b7:8f:49:6d:ff:bc:ec:b5:50:0d:d5:9c:04:15:
                    8b:d0:6d:a6:1a:ce:76:79:ac:e0:6c:cb:b1:15:9e:
                    9c:60:d1:b2:e2:e2:d8:a5:e6:4e:4e:41:f7:39:a4:
                    ab:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:17:6D:F7:96:59:24:E1:82:E2:4E:0E:9B:85:B2:D5:D5:94:20:C9
            X509v3 Authority Key Identifier:
                keyid:D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:87:c5:f4:85:6a:78:bb:08:84:0c:98:60:39:6c:9a:2a:75:
         ff:c0:96:40:50:c1:51:9b:73:2c:e0:fc:c3:38:11:14:f3:85:
         03:0c:4a:90:2a:13:b2:89:f1:83:51:4a:9e:e2:da:71:ac:e1:
         cf:b8:4f:40:2a:e7:0b:b6:70:75:b9:49:53:b6:a5:80:80:a0:
         9c:d9:69:8c:3a:43:dd:72:d8:f1:c7:f4:1d:a7:be:42:a7:56:
         cb:ed:6b:8a:13:73:27:5f:e4:3a:87:a5:0b:5d:33:f9:d8:5f:
         1d:64:3c:5a:07:65:d7:a1:d0:8f:cf:a3:47:73:42:96:7b:78:
         71:15:56:87:cb:3e:f7:5d:9e:85:80:7e:c7:19:e8:e8:71:44:
         62:7a:55:38:73:5e:ae:e8:d0:19:ca:5c:fc:7d:12:f1:9a:3f:
         18:15:9d:0f:8e:59:68:ff:7b:18:d0:ae:74:2a:1a:02:a1:ad:
         68:18:bd:d5:9f:cd:8a:29:0d:2a:3d:a4:2f:74:11:e2:6c:47:
         bf:1b:cd:95:d0:89:52:34:24:af:5d:46:59:1d:84:b7:50:c7:
         71:f8:3d:3f:34:7c:2f:17:ed:87:76:2c:22:bf:00:15:46:84:
         50:31:45:c3:24:81:0c:6e:52:27:62:ce:f3:3c:fa:48:d5:75:
         87:b5:20:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----