Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
File:                     d_M68l-VqylxEYjp_-pQzMshHXY.mft (raw, json)
Hash identifier:          actTldJIyplfYm7VLX4hcRG3SNmT1cIztcQ9dDMLoM8=
Subject key identifier:   7E:AF:28:D1:A6:FE:92:E2:1B:2F:D7:37:F5:77:09:7F:9F:CF:7C:5E
Authority key identifier: 77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76
Certificate issuer:       /CN=77f33af25f95ab29711188e9ffea50cccb211d76
Certificate serial:       019922FA280E79A5D63269F25F412B213ECC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
Manifest number:          0DE7
Signing time:             Sun 07 Sep 2025 07:00:43 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:43 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:43 +0000
Files and hashes:         1: d_M68l-VqylxEYjp_-pQzMshHXY.crl (hash: urCEDHlp7ZGYaLqUq1UCzvjZzOcQIryPxsvNvRWy8zA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:28:0e:79:a5:d6:32:69:f2:5f:41:2b:21:3e:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77f33af25f95ab29711188e9ffea50cccb211d76
        Validity
            Not Before: Sep  7 07:00:43 2025 GMT
            Not After : Sep  8 07:00:43 2025 GMT
        Subject: CN=7eaf28d1a6fe92e21b2fd737f577097f9fcf7c5e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:36:51:c3:bf:37:59:aa:eb:82:f1:35:4a:63:
                    94:dc:9f:a5:d0:ec:5f:ce:d9:a9:ab:a7:fe:0a:30:
                    c9:b8:30:98:a7:3c:a8:cc:44:c2:29:95:d8:94:eb:
                    0b:18:96:83:c0:22:44:ef:7d:31:3c:44:2c:35:59:
                    38:62:77:ca:bf:7e:9a:ac:25:2c:7e:97:9a:42:21:
                    55:ca:14:cc:58:a8:b7:5d:0d:a1:46:fe:db:ef:a6:
                    e7:3e:72:86:95:59:78:f9:ee:00:c5:71:60:18:79:
                    03:40:22:fb:97:5f:99:e6:56:32:f4:ee:b7:17:c6:
                    82:a7:1d:5a:b1:8c:a3:c8:19:cd:d2:8f:33:00:9d:
                    ad:8e:d2:8d:53:c2:7f:37:8f:33:86:44:3a:d5:a5:
                    19:99:e4:a5:f3:4d:09:33:68:c9:ea:a2:66:2f:fe:
                    1b:e7:d2:25:d9:a7:25:02:b0:e0:82:e4:65:cb:1a:
                    9b:1c:6c:8d:3c:7b:e1:17:d5:c4:2a:19:95:c5:2a:
                    13:d2:fa:c3:2f:34:19:84:4f:9b:e4:62:06:62:92:
                    7e:b8:20:59:4f:77:98:f1:c3:86:43:25:d6:fe:7d:
                    f6:23:e5:9e:6d:a4:a8:e9:14:d4:26:10:5c:c7:4d:
                    86:90:62:6d:f8:46:a0:8f:ae:f2:96:28:89:d6:54:
                    0e:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:AF:28:D1:A6:FE:92:E2:1B:2F:D7:37:F5:77:09:7F:9F:CF:7C:5E
            X509v3 Authority Key Identifier:
                keyid:77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:c2:32:df:fa:1f:79:24:0e:14:25:e7:ed:36:2b:ad:1a:15:
         2e:31:46:cf:2b:5d:ef:f8:95:55:72:a0:67:60:5d:2c:bf:c4:
         b0:24:b1:a3:47:b1:c6:77:ed:d0:80:a8:5e:5c:66:fa:e0:05:
         91:f5:4a:44:b1:d8:6c:a8:fc:a5:34:aa:3e:94:68:c5:e2:4a:
         23:a1:af:55:18:7e:2a:32:4d:54:c8:5a:4c:c1:06:f0:33:2c:
         e5:03:5c:1d:fb:96:db:e1:05:15:66:51:57:b8:e8:2b:66:62:
         1d:19:fa:b9:10:ff:a1:58:bc:5d:76:83:93:d1:67:49:33:9c:
         f5:1e:cf:d0:b1:0d:7c:e1:4b:61:85:65:b6:9d:cd:d2:1b:a0:
         f1:4c:e7:eb:57:61:87:aa:e4:41:b4:c1:87:91:8f:a3:f8:9d:
         89:6d:9b:f4:23:e4:29:25:b3:0f:37:59:d4:bc:b0:56:a4:4d:
         f9:bd:f0:ec:74:2a:d9:48:ed:9b:d7:da:de:a3:1e:a7:8b:2d:
         a4:77:74:07:e3:9b:8f:fc:db:af:a9:97:af:31:24:27:2c:19:
         71:06:78:9d:1c:dd:ab:86:ab:48:b9:79:27:5f:2c:d3:92:dc:
         70:d2:93:f7:b3:8b:02:17:b1:3d:fa:cb:5e:c6:6e:b4:4f:47:
         4d:c0:1b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----