Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
File:                     vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft (raw, json)
Hash identifier:          GemNreuOYaP1ZbKyOHt2ch0cwKUV7rdUIKDfx2gLspA=
Subject key identifier:   54:23:AC:FC:D7:AC:51:03:F9:48:F2:B4:49:E3:17:C6:B4:A2:34:78
Authority key identifier: BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B
Certificate issuer:       /CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b
Certificate serial:       019A4D073ED96315556D9C1DF914D94E797A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
Manifest number:          0BE6
Signing time:             Tue 04 Nov 2025 04:01:51 +0000
Manifest this update:     Tue 04 Nov 2025 04:01:51 +0000
Manifest next update:     Wed 05 Nov 2025 04:01:51 +0000
Files and hashes:         1: vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl (hash: CoPcqvi8lnBMJuJwgo8egjAazWeUMbTSz0ohPNCKphM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 04:01:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4d:07:3e:d9:63:15:55:6d:9c:1d:f9:14:d9:4e:79:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b
        Validity
            Not Before: Nov  4 04:01:51 2025 GMT
            Not After : Nov  5 04:01:51 2025 GMT
        Subject: CN=5423acfcd7ac5103f948f2b449e317c6b4a23478
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:9d:7d:b4:ab:07:75:30:d1:c3:40:6c:09:5f:
                    eb:4c:0d:f0:a8:7f:9e:b1:5f:99:1b:40:9e:52:28:
                    2d:ed:2a:1a:ed:45:03:9e:18:92:ba:7c:1f:f0:17:
                    c1:54:44:4b:7a:e6:7a:39:21:59:8d:0d:08:e4:8c:
                    62:0d:4a:f2:38:1c:0e:91:b4:2d:cf:ae:64:02:3b:
                    66:e0:38:f3:5a:05:36:57:e3:09:80:f1:c9:8a:96:
                    0b:bb:ca:86:73:2a:c2:7e:6b:d9:f6:1c:d9:93:c3:
                    cc:af:43:79:0f:3c:59:a6:be:70:bd:ec:41:32:50:
                    74:15:6e:25:6a:ed:0c:b8:0a:f3:98:80:9a:ca:1a:
                    61:42:4f:52:6f:34:d5:e8:87:8c:dd:2a:ca:16:fd:
                    7f:58:91:65:f4:9a:93:1e:dd:3a:92:c6:70:ca:13:
                    6e:e2:c0:ce:e6:be:ee:c6:87:71:3f:27:6a:77:69:
                    68:72:d7:58:94:03:d4:3e:c3:9f:bc:92:d4:2e:02:
                    6d:bb:c6:db:a7:37:7f:cb:16:61:6b:ba:9e:24:b7:
                    34:4f:4d:fa:04:69:41:a4:23:c4:52:af:b6:39:0f:
                    ae:e4:a7:7d:c5:73:70:7e:00:df:ef:27:d3:6a:6a:
                    33:48:89:ed:48:d4:1b:ca:0e:26:63:9e:b2:07:eb:
                    e4:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:23:AC:FC:D7:AC:51:03:F9:48:F2:B4:49:E3:17:C6:B4:A2:34:78
            X509v3 Authority Key Identifier:
                keyid:BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:f9:15:f4:dc:1b:6b:73:33:f7:b9:62:20:5b:0f:4a:83:38:
         5d:81:0c:3c:fb:0b:c1:1f:f4:25:2c:c8:95:11:bf:9f:91:9c:
         19:70:d7:ff:68:2b:f2:d7:3a:72:11:72:89:ab:5c:80:1f:ce:
         8e:dd:cf:22:36:bf:e3:78:33:cb:86:04:7f:33:73:31:08:b4:
         71:70:4e:c7:9e:99:c1:a0:dc:fe:da:dd:e9:d1:c8:79:80:97:
         c8:a5:94:91:a6:bf:5a:b9:70:30:71:75:d2:3e:10:e5:7b:da:
         ee:c5:19:a4:2a:a8:44:c2:83:f5:03:46:ec:d5:a6:9e:4d:7c:
         b4:bf:01:07:4d:92:ef:55:09:16:bd:4c:9e:a2:9f:43:59:94:
         e9:7a:e4:cf:14:c4:e1:9f:65:46:fa:68:22:65:69:cb:f2:b6:
         a2:01:e4:3a:f1:5a:94:43:af:c6:14:65:e3:ce:dc:12:cb:81:
         f0:56:45:02:8f:5c:da:31:86:64:00:91:eb:79:19:dc:65:30:
         df:d2:4d:c1:ef:54:10:9f:c4:8b:00:2b:37:fb:6a:89:05:e1:
         c2:3b:91:f5:bc:6a:75:32:97:94:3c:23:f3:df:8c:b8:ae:4d:
         11:07:95:8f:6e:01:bb:bc:58:6b:dd:a5:c1:93:65:ff:cd:27:
         6d:cf:29:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNBz7ZYxVVbZwd+RTZTnl6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZDY0MTA1YTE5ZGNkNWM2NzVjMGEzZjk4ZWU4YzYwNGU4
MDhmMWIwHhcNMjUxMTA0MDQwMTUxWhcNMjUxMTA1MDQwMTUxWjAzMTEwLwYDVQQD
Eyg1NDIzYWNmY2Q3YWM1MTAzZjk0OGYyYjQ0OWUzMTdjNmI0YTIzNDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4p19tKsHdTDRw0BsCV/rTA3wqH+e
sV+ZG0CeUigt7Soa7UUDnhiSunwf8BfBVERLeuZ6OSFZjQ0I5IxiDUryOBwOkbQt
z65kAjtm4DjzWgU2V+MJgPHJipYLu8qGcyrCfmvZ9hzZk8PMr0N5DzxZpr5wvexB
MlB0FW4lau0MuArzmICayhphQk9SbzTV6IeM3SrKFv1/WJFl9JqTHt06ksZwyhNu
4sDO5r7uxodxPydqd2loctdYlAPUPsOfvJLULgJtu8bbpzd/yxZha7qeJLc0T036
BGlBpCPEUq+2OQ+u5Kd9xXNwfgDf7yfTamozSIntSNQbyg4mY56yB+vkfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQjrPzXrFED+UjytEnjF8a0ojR4MB8GA1UdIwQY
MBaAFL3WQQWhnc1cZ1wKP5jujGBOgI8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmRaQkJhR2R6VnhuWEFvX21PNk1ZRTZBanhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wMTg0YmQtYjVkMi00YjljLTkxNmIt
ZDA0NTZmNzI5ODczLzEvdmRaQkJhR2R6VnhuWEFvX21PNk1ZRTZBanhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8wMTg0YmQtYjVkMi00YjljLTkxNmItZDA0NTZmNzI5ODcz
LzEvdmRaQkJhR2R6VnhuWEFvX21PNk1ZRTZBanhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/kV9Nwb
a3Mz97liIFsPSoM4XYEMPPsLwR/0JSzIlRG/n5GcGXDX/2gr8tc6chFyiatcgB/O
jt3PIja/43gzy4YEfzNzMQi0cXBOx56ZwaDc/trd6dHIeYCXyKWUkaa/WrlwMHF1
0j4Q5Xva7sUZpCqoRMKD9QNG7NWmnk18tL8BB02S71UJFr1MnqKfQ1mU6XrkzxTE
4Z9lRvpoImVpy/K2ogHkOvFalEOvxhRl487cEsuB8FZFAo9c2jGGZACR63kZ3GUw
39JNwe9UEJ/EiwArN/tqiQXhwjuR9bxqdTKXlDwj89+MuK5NEQeVj24Bu7xYa92l
wZNl/80nbc8pMg==
-----END CERTIFICATE-----