Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
File:                     JGJNNpZGiPmJxkSsIBH0Fl086wc.mft (raw, json)
Hash identifier:          XdJEeLrjJ38dV6E8jZKoW0FV8Q8j+Kp6R4gFEfxXegs=
Subject key identifier:   D1:04:15:48:DA:A3:21:32:13:D2:16:48:52:7A:16:A4:1E:1C:F5:83
Authority key identifier: 24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
Certificate issuer:       /CN=24624d36964688f989c644ac2011f4165d3ceb07
Certificate serial:       019A50E3E8E3B838023F741CB746168F4579
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
Manifest number:          0A66
Signing time:             Tue 04 Nov 2025 22:01:44 +0000
Manifest this update:     Tue 04 Nov 2025 22:01:44 +0000
Manifest next update:     Wed 05 Nov 2025 22:01:44 +0000
Files and hashes:         1: JGJNNpZGiPmJxkSsIBH0Fl086wc.crl (hash: kEOkf6fggOeDdrEB2YtyUZFTZ5uzG4xp/ZBIWpn3+4c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 22:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:50:e3:e8:e3:b8:38:02:3f:74:1c:b7:46:16:8f:45:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=24624d36964688f989c644ac2011f4165d3ceb07
        Validity
            Not Before: Nov  4 22:01:44 2025 GMT
            Not After : Nov  5 22:01:44 2025 GMT
        Subject: CN=d1041548daa3213213d21648527a16a41e1cf583
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:de:3a:2b:24:93:8c:03:b1:9b:5e:ca:63:7f:
                    c1:1b:34:62:45:65:4b:19:b3:ed:31:63:37:bb:e7:
                    1d:8a:29:fb:97:2b:07:6d:b2:d1:24:f0:76:c3:5d:
                    a5:18:da:e2:5b:75:ce:2d:b9:8a:67:1c:b4:1e:62:
                    c1:65:ea:00:24:a1:48:61:82:be:51:15:32:4d:33:
                    2c:74:6c:1f:0e:a5:cd:c3:8d:5a:0f:3c:e5:d7:22:
                    c0:ce:bd:37:50:fa:14:b5:ab:2c:51:9e:ef:17:57:
                    03:38:d3:9d:04:91:48:4a:a1:58:ae:81:57:f3:ad:
                    ca:b4:d2:6c:44:79:21:cf:1b:15:ce:e2:16:1f:f1:
                    56:bb:f4:7b:77:26:74:cf:17:ce:99:6d:4c:f5:23:
                    ab:a8:69:77:84:60:3d:b2:13:2e:57:b3:28:4d:d5:
                    97:38:09:7e:f5:19:e6:6d:40:b5:f7:27:9e:84:11:
                    18:91:8e:35:1a:3e:4f:75:f0:24:15:5f:2e:39:85:
                    e5:63:83:b2:db:a9:c4:8f:86:c3:03:f0:48:23:da:
                    a4:b9:84:df:08:45:00:b6:1d:06:da:94:88:44:ea:
                    3e:67:b5:63:2a:43:08:f7:f2:de:27:15:ea:51:74:
                    45:24:8d:ca:21:85:b7:85:34:b6:c9:4b:09:71:3d:
                    b7:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:04:15:48:DA:A3:21:32:13:D2:16:48:52:7A:16:A4:1E:1C:F5:83
            X509v3 Authority Key Identifier:
                keyid:24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d1:5f:ed:3d:c3:3b:a1:41:f3:f6:48:14:80:11:fa:ad:c7:90:
         5e:d4:08:60:5b:23:44:04:66:db:0d:67:41:f7:86:f3:74:1e:
         e7:59:bd:17:27:42:9d:21:86:8b:2a:c6:54:ad:24:5d:43:92:
         34:2a:ac:be:15:07:c3:f9:28:0a:60:e0:c8:91:ba:b9:f4:b0:
         63:ef:31:f6:1e:e0:57:3d:2c:f6:46:00:1b:b3:c3:1a:23:58:
         de:99:40:f8:91:3b:53:80:be:92:02:ac:c9:32:5c:9e:a4:ce:
         1a:b6:52:3d:c1:8e:49:bf:dd:de:db:13:8f:0f:a0:c9:d5:d7:
         66:d2:af:94:70:5c:14:fd:d9:82:bc:cb:c8:93:1c:4e:c3:60:
         03:20:68:a2:9e:a8:46:fc:fc:f8:8b:b2:8c:c3:98:f2:0a:47:
         d4:bf:1b:8f:b0:b4:ae:8b:94:b1:a0:13:93:c8:3f:f9:03:7f:
         71:10:c2:65:e8:37:7e:d3:a9:4b:9b:4a:3f:4c:fd:3e:74:95:
         f5:cf:8b:ed:b9:fd:a6:da:4b:23:bf:54:f4:8d:8d:ed:5c:b7:
         86:91:f8:13:a4:c8:ce:71:5e:e6:83:61:a5:2a:30:4b:19:af:
         66:83:48:32:38:07:ad:4a:8f:17:5d:dc:d8:09:9d:69:f7:ab:
         c3:f2:fb:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQ4+jjuDgCP3Qct0YWj0V5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0NjI0ZDM2OTY0Njg4Zjk4OWM2NDRhYzIwMTFmNDE2NWQz
Y2ViMDcwHhcNMjUxMTA0MjIwMTQ0WhcNMjUxMTA1MjIwMTQ0WjAzMTEwLwYDVQQD
EyhkMTA0MTU0OGRhYTMyMTMyMTNkMjE2NDg1MjdhMTZhNDFlMWNmNTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4N46KySTjAOxm17KY3/BGzRiRWVL
GbPtMWM3u+cdiin7lysHbbLRJPB2w12lGNriW3XOLbmKZxy0HmLBZeoAJKFIYYK+
URUyTTMsdGwfDqXNw41aDzzl1yLAzr03UPoUtassUZ7vF1cDONOdBJFISqFYroFX
863KtNJsRHkhzxsVzuIWH/FWu/R7dyZ0zxfOmW1M9SOrqGl3hGA9shMuV7MoTdWX
OAl+9RnmbUC19yeehBEYkY41Gj5PdfAkFV8uOYXlY4Oy26nEj4bDA/BII9qkuYTf
CEUAth0G2pSIROo+Z7VjKkMI9/LeJxXqUXRFJI3KIYW3hTS2yUsJcT23XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNEEFUjaoyEyE9IWSFJ6FqQeHPWDMB8GA1UdIwQY
MBaAFCRiTTaWRoj5icZErCAR9BZdPOsHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkdKTk5wWkdpUG1KeGtTc0lCSDBGbDA4NndjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi83MzkyOTEtMmQ1Yy00YzFkLTkwNzkt
MDI3ZThjMDkxNDZiLzEvSkdKTk5wWkdpUG1KeGtTc0lCSDBGbDA4NndjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi83MzkyOTEtMmQ1Yy00YzFkLTkwNzktMDI3ZThjMDkxNDZi
LzEvSkdKTk5wWkdpUG1KeGtTc0lCSDBGbDA4NndjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0V/tPcM7
oUHz9kgUgBH6rceQXtQIYFsjRARm2w1nQfeG83Qe51m9FydCnSGGiyrGVK0kXUOS
NCqsvhUHw/koCmDgyJG6ufSwY+8x9h7gVz0s9kYAG7PDGiNY3plA+JE7U4C+kgKs
yTJcnqTOGrZSPcGOSb/d3tsTjw+gydXXZtKvlHBcFP3ZgrzLyJMcTsNgAyBoop6o
Rvz8+IuyjMOY8gpH1L8bj7C0rouUsaATk8g/+QN/cRDCZeg3ftOpS5tKP0z9PnSV
9c+L7bn9ptpLI79U9I2N7Vy3hpH4E6TIznFe5oNhpSowSxmvZoNIMjgHrUqPF13c
2Amdaferw/L7Jw==
-----END CERTIFICATE-----