Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft
File:                     SwzK47EZgtZx464payKbCvw1mwc.mft (raw, json)
Hash identifier:          Ozu9R/iIGHPbEppFLqOQaYaylZH5lREbxvnm6ohyQ2w=
Subject key identifier:   5A:31:1A:17:40:C7:67:4C:AA:44:F7:DF:34:4E:EB:3F:58:D7:C5:E3
Authority key identifier: 4B:0C:CA:E3:B1:19:82:D6:71:E3:AE:29:6B:22:9B:0A:FC:35:9B:07
Certificate issuer:       /CN=4b0ccae3b11982d671e3ae296b229b0afc359b07
Certificate serial:       019A4E4F9E50031E1CBE4FE7D2FBD18CD238
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SwzK47EZgtZx464payKbCvw1mwc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft
Manifest number:          1105
Signing time:             Tue 04 Nov 2025 10:00:31 +0000
Manifest this update:     Tue 04 Nov 2025 10:00:31 +0000
Manifest next update:     Wed 05 Nov 2025 10:00:31 +0000
Files and hashes:         1: SwzK47EZgtZx464payKbCvw1mwc.crl (hash: EcrCN7VzmaR1c2ecm7A2cdWANHkO8Hxr5WbtIVk5eYw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SwzK47EZgtZx464payKbCvw1mwc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 09:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4e:4f:9e:50:03:1e:1c:be:4f:e7:d2:fb:d1:8c:d2:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b0ccae3b11982d671e3ae296b229b0afc359b07
        Validity
            Not Before: Nov  4 10:00:31 2025 GMT
            Not After : Nov  5 10:00:31 2025 GMT
        Subject: CN=5a311a1740c7674caa44f7df344eeb3f58d7c5e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:b5:ad:9c:41:33:7c:6c:0d:7c:a3:d0:ae:63:
                    a2:5c:8e:c6:c8:c3:7b:fe:47:0d:74:2f:2f:e2:b7:
                    11:f6:ba:7d:c3:b2:7d:e4:a3:c6:45:47:aa:ff:43:
                    93:d0:30:10:62:dd:df:45:09:a5:49:84:4b:32:a4:
                    c4:0d:24:7c:c4:84:ee:32:ec:ef:ae:11:8f:d8:18:
                    9a:d3:7e:e9:2a:d9:2a:4e:ee:07:8f:ee:d5:fb:b1:
                    5e:eb:e1:da:ef:e8:77:cb:f3:d5:d3:c4:96:15:00:
                    de:a7:0c:0b:6f:ba:4a:17:81:72:0a:50:23:21:d1:
                    61:ea:86:a0:98:22:06:28:2f:73:f7:bb:1e:ef:d0:
                    8e:75:7f:59:df:da:1f:99:a3:db:92:06:83:39:0d:
                    f1:4d:ee:e0:5c:de:80:61:13:8b:4f:5b:d5:ef:d5:
                    f8:b0:20:ed:38:e1:9f:3e:5b:ea:e9:ff:c9:39:4f:
                    56:95:5a:45:a9:7e:7c:59:3e:3e:ff:f1:e9:30:d6:
                    a5:8c:87:e9:22:b0:76:73:07:75:a4:26:48:56:be:
                    08:30:b1:54:2f:9a:e6:7a:49:3d:7f:e0:5c:60:db:
                    54:83:9b:b5:26:24:91:ff:f5:44:93:19:80:26:44:
                    2c:07:f0:40:7c:98:d2:14:c4:eb:0d:d1:a8:9b:8b:
                    c7:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:31:1A:17:40:C7:67:4C:AA:44:F7:DF:34:4E:EB:3F:58:D7:C5:E3
            X509v3 Authority Key Identifier:
                keyid:4B:0C:CA:E3:B1:19:82:D6:71:E3:AE:29:6B:22:9B:0A:FC:35:9B:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwzK47EZgtZx464payKbCvw1mwc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:b8:cc:b5:30:cc:23:09:c6:64:1c:7a:5a:bc:c7:dd:9d:86:
         e7:cc:25:df:3f:ca:55:45:38:6b:31:52:bf:e2:7b:5e:a7:96:
         99:06:d0:85:d0:69:73:4a:58:a1:23:90:62:c1:8b:b4:7a:1b:
         0c:b2:c9:de:f5:5c:f4:f5:cd:34:56:e7:3c:17:97:fc:51:08:
         f3:2f:a0:77:f9:e6:f9:35:4b:5f:23:dc:42:02:eb:1d:2f:a5:
         e9:28:10:d7:e1:6e:ca:a9:81:96:cb:d6:20:f2:23:56:91:a5:
         00:c8:f8:c0:6d:6f:e2:c5:56:78:f1:f5:ea:59:05:05:c8:f0:
         a5:53:50:f6:b2:e8:2b:0f:d0:63:7e:ad:32:56:b0:6a:e5:26:
         1c:d9:3a:a5:8b:af:a5:e9:67:06:54:40:57:d1:d3:f1:12:4d:
         4c:df:e6:fe:9d:01:35:65:7c:a8:18:5a:c7:32:9c:75:32:ce:
         53:67:05:e2:c3:93:c6:a2:a2:38:4c:be:32:f6:2f:fe:9b:41:
         45:96:0e:63:38:c9:f0:10:a8:5b:68:9a:d3:36:78:73:ce:26:
         97:2f:4e:8d:ab:d7:fd:74:07:7d:86:70:86:6b:fb:23:42:3c:
         4f:1c:b4:10:1c:1c:b1:64:3c:7a:4a:6e:9d:01:f2:7c:7a:34:
         1c:be:c8:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOT55QAx4cvk/n0vvRjNI4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMGNjYWUzYjExOTgyZDY3MWUzYWUyOTZiMjI5YjBhZmMz
NTliMDcwHhcNMjUxMTA0MTAwMDMxWhcNMjUxMTA1MTAwMDMxWjAzMTEwLwYDVQQD
Eyg1YTMxMWExNzQwYzc2NzRjYWE0NGY3ZGYzNDRlZWIzZjU4ZDdjNWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7WtnEEzfGwNfKPQrmOiXI7GyMN7
/kcNdC8v4rcR9rp9w7J95KPGRUeq/0OT0DAQYt3fRQmlSYRLMqTEDSR8xITuMuzv
rhGP2Bia037pKtkqTu4Hj+7V+7Fe6+Ha7+h3y/PV08SWFQDepwwLb7pKF4FyClAj
IdFh6oagmCIGKC9z97se79COdX9Z39ofmaPbkgaDOQ3xTe7gXN6AYROLT1vV79X4
sCDtOOGfPlvq6f/JOU9WlVpFqX58WT4+//HpMNaljIfpIrB2cwd1pCZIVr4IMLFU
L5rmekk9f+BcYNtUg5u1JiSR//VEkxmAJkQsB/BAfJjSFMTrDdGom4vHdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFoxGhdAx2dMqkT33zRO6z9Y18XjMB8GA1UdIwQY
MBaAFEsMyuOxGYLWceOuKWsimwr8NZsHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3d6SzQ3RVpndFp4NDY0cGF5S2JDdncxbXdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9mNjY2ZGUtNzdiNS00NDgwLTkyNDIt
YjI1NGI5OTRkY2RjLzEvU3d6SzQ3RVpndFp4NDY0cGF5S2JDdncxbXdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9mNjY2ZGUtNzdiNS00NDgwLTkyNDItYjI1NGI5OTRkY2Rj
LzEvU3d6SzQ3RVpndFp4NDY0cGF5S2JDdncxbXdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMLjMtTDM
IwnGZBx6WrzH3Z2G58wl3z/KVUU4azFSv+J7XqeWmQbQhdBpc0pYoSOQYsGLtHob
DLLJ3vVc9PXNNFbnPBeX/FEI8y+gd/nm+TVLXyPcQgLrHS+l6SgQ1+FuyqmBlsvW
IPIjVpGlAMj4wG1v4sVWePH16lkFBcjwpVNQ9rLoKw/QY36tMlawauUmHNk6pYuv
pelnBlRAV9HT8RJNTN/m/p0BNWV8qBhaxzKcdTLOU2cF4sOTxqKiOEy+MvYv/ptB
RZYOYzjJ8BCoW2ia0zZ4c84mly9OjavX/XQHfYZwhmv7I0I8Txy0EBwcsWQ8ekpu
nQHyfHo0HL7I0g==
-----END CERTIFICATE-----