Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
File:                     OEzdzXTQQilYPSwr7tBz4AlrozU.mft (raw, json)
Hash identifier:          Xz1ZqyK8YvhMYMUed8WbsV0Zuwi0j82G1+9RXLI6Ogc=
Subject key identifier:   D5:32:49:B9:97:9F:E6:D6:C7:E5:F0:9B:8C:7E:E5:A7:12:21:9B:C2
Authority key identifier: 38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35
Certificate issuer:       /CN=384cddcd74d04229583d2c2beed073e0096ba335
Certificate serial:       019A4EF56254471F924F0E62B4FE20BBA84A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
Manifest number:          075F
Signing time:             Tue 04 Nov 2025 13:01:35 +0000
Manifest this update:     Tue 04 Nov 2025 13:01:35 +0000
Manifest next update:     Wed 05 Nov 2025 13:01:35 +0000
Files and hashes:         1: OEzdzXTQQilYPSwr7tBz4AlrozU.crl (hash: uByv3kXXQxRrSo0BS0029fEPFJ4iW4r2zJ3zyh9N8yg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 13:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4e:f5:62:54:47:1f:92:4f:0e:62:b4:fe:20:bb:a8:4a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=384cddcd74d04229583d2c2beed073e0096ba335
        Validity
            Not Before: Nov  4 13:01:35 2025 GMT
            Not After : Nov  5 13:01:35 2025 GMT
        Subject: CN=d53249b9979fe6d6c7e5f09b8c7ee5a712219bc2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:71:9e:84:2e:20:c7:f7:03:aa:56:75:cd:8f:
                    70:7b:95:42:4e:71:61:67:e2:24:6b:09:be:0b:24:
                    21:f6:9a:b6:72:fa:f7:9d:63:d2:b3:11:f9:37:19:
                    87:5e:9e:b6:85:2a:b9:80:74:55:16:ca:85:7d:24:
                    e6:75:d8:06:7e:13:1e:13:01:eb:bd:8a:9e:89:52:
                    82:51:d0:45:3e:60:ba:a2:82:19:46:c9:72:ef:aa:
                    8e:fc:aa:87:b7:6e:b3:12:4c:48:f8:6c:06:50:11:
                    a5:3d:79:ef:dd:d2:c2:2b:8f:8c:dd:f6:4e:c1:08:
                    e0:b7:fb:99:36:0b:48:32:46:cf:cc:b6:42:4e:04:
                    bd:9a:f8:76:19:ce:94:0a:35:bd:f2:2d:b6:d9:18:
                    99:3e:99:84:a0:cd:b6:8b:af:53:ec:63:e2:a3:17:
                    1c:3c:fe:6b:44:b5:93:5f:39:66:53:7c:55:3f:1f:
                    d7:b8:db:54:a3:eb:30:ba:9a:54:2a:0a:1d:3f:e6:
                    32:8b:9f:2f:43:d3:d7:7e:c0:c1:62:70:ba:1d:cc:
                    42:21:ba:f3:7f:ed:1d:1b:53:7e:5d:0d:ab:15:f2:
                    ad:41:ea:d8:e9:69:ea:68:e5:20:dc:72:a3:55:a9:
                    4b:bf:31:51:6c:9e:c6:32:76:3a:f0:31:74:98:61:
                    5b:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:32:49:B9:97:9F:E6:D6:C7:E5:F0:9B:8C:7E:E5:A7:12:21:9B:C2
            X509v3 Authority Key Identifier:
                keyid:38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:36:31:5d:56:69:31:de:14:e0:48:d0:79:fe:7b:8a:f8:ba:
         5c:ca:88:d7:2d:8b:66:b8:d5:94:49:d9:3f:a0:b7:c4:40:6b:
         f7:c9:db:36:2b:ea:55:7b:54:69:e6:98:6b:c8:3c:ca:85:24:
         d8:82:91:26:c3:ef:a2:e5:2d:76:6b:64:c0:7a:78:6a:82:a4:
         8d:c6:7c:d6:c0:b2:5e:2b:28:7c:b2:80:df:da:8b:1b:8e:6c:
         43:80:ed:be:16:46:74:01:88:2b:40:d3:f4:45:2c:30:31:bc:
         69:38:ba:cf:e9:4f:69:da:08:03:95:93:63:ef:74:4a:83:f8:
         dd:2a:e6:e5:1a:e1:60:3c:3a:b4:39:56:f7:9d:97:61:1c:2b:
         0a:f7:b7:f1:cf:e9:01:0d:67:64:60:77:3a:ce:6a:6a:fd:4d:
         66:91:94:5a:68:fe:af:fe:c6:84:73:5b:cb:63:3a:00:6a:b7:
         39:d4:7e:22:de:b6:be:57:e3:9e:a1:05:fe:23:e9:b0:dd:c1:
         57:64:28:06:72:bf:c5:0e:d2:a5:a2:c2:24:3b:eb:58:92:38:
         98:7d:ee:09:44:a9:42:10:10:9b:e4:42:42:21:5a:55:cd:a9:
         b7:1c:2d:06:54:ee:a2:49:71:6c:22:4b:4c:4b:82:2d:cb:0e:
         cc:37:27:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9WJURx+STw5itP4gu6hKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NGNkZGNkNzRkMDQyMjk1ODNkMmMyYmVlZDA3M2UwMDk2
YmEzMzUwHhcNMjUxMTA0MTMwMTM1WhcNMjUxMTA1MTMwMTM1WjAzMTEwLwYDVQQD
EyhkNTMyNDliOTk3OWZlNmQ2YzdlNWYwOWI4YzdlZTVhNzEyMjE5YmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXGehC4gx/cDqlZ1zY9we5VCTnFh
Z+Ikawm+CyQh9pq2cvr3nWPSsxH5NxmHXp62hSq5gHRVFsqFfSTmddgGfhMeEwHr
vYqeiVKCUdBFPmC6ooIZRsly76qO/KqHt26zEkxI+GwGUBGlPXnv3dLCK4+M3fZO
wQjgt/uZNgtIMkbPzLZCTgS9mvh2Gc6UCjW98i222RiZPpmEoM22i69T7GPioxcc
PP5rRLWTXzlmU3xVPx/XuNtUo+swuppUKgodP+Yyi58vQ9PXfsDBYnC6HcxCIbrz
f+0dG1N+XQ2rFfKtQerY6WnqaOUg3HKjValLvzFRbJ7GMnY68DF0mGFbtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUySbmXn+bWx+Xwm4x+5acSIZvCMB8GA1UdIwQY
MBaAFDhM3c100EIpWD0sK+7Qc+AJa6M1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xNTFjM2UtOTVkOC00ODNiLThkYzIt
OTk4YWQ1MGY0YTJhLzEvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8xNTFjM2UtOTVkOC00ODNiLThkYzItOTk4YWQ1MGY0YTJh
LzEvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwzYxXVZp
Md4U4EjQef57ivi6XMqI1y2LZrjVlEnZP6C3xEBr98nbNivqVXtUaeaYa8g8yoUk
2IKRJsPvouUtdmtkwHp4aoKkjcZ81sCyXisofLKA39qLG45sQ4DtvhZGdAGIK0DT
9EUsMDG8aTi6z+lPadoIA5WTY+90SoP43Srm5RrhYDw6tDlW952XYRwrCve38c/p
AQ1nZGB3Os5qav1NZpGUWmj+r/7GhHNby2M6AGq3OdR+It62vlfjnqEF/iPpsN3B
V2QoBnK/xQ7SpaLCJDvrWJI4mH3uCUSpQhAQm+RCQiFaVc2ptxwtBlTuoklxbCJL
TEuCLcsOzDcndg==
-----END CERTIFICATE-----