Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft
File:                     fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft (raw, json)
Hash identifier:          GEsZFVDDiGzQDej4ZEX0jg1/MBSeHD+jdHyzR74fyok=
Subject key identifier:   62:6B:D4:67:94:E2:98:42:7A:3C:E2:D6:21:A7:C6:BA:3A:04:3E:C2
Authority key identifier: 7C:82:30:28:AE:FF:C5:99:AE:FF:A5:DE:5B:90:CC:AD:33:49:7D:B9
Certificate issuer:       /CN=7c823028aeffc599aeffa5de5b90ccad33497db9
Certificate serial:       019A4EF545C653046DC7A72215792C04CDE0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fIIwKK7_xZmu_6XeW5DMrTNJfbk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft
Manifest number:          069C
Signing time:             Tue 04 Nov 2025 13:01:28 +0000
Manifest this update:     Tue 04 Nov 2025 13:01:28 +0000
Manifest next update:     Wed 05 Nov 2025 13:01:28 +0000
Files and hashes:         1: fIIwKK7_xZmu_6XeW5DMrTNJfbk.crl (hash: /eubXopJBbKowWadyvSGk+AbNTUh6MW1tc2EHH5lQsQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fIIwKK7_xZmu_6XeW5DMrTNJfbk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 13:01:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4e:f5:45:c6:53:04:6d:c7:a7:22:15:79:2c:04:cd:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c823028aeffc599aeffa5de5b90ccad33497db9
        Validity
            Not Before: Nov  4 13:01:28 2025 GMT
            Not After : Nov  5 13:01:28 2025 GMT
        Subject: CN=626bd46794e298427a3ce2d621a7c6ba3a043ec2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:a8:49:e1:79:d4:08:5c:e5:72:67:2b:dc:4f:
                    23:03:aa:ab:de:39:ff:5c:76:a1:37:5b:08:b9:bd:
                    2c:4f:6d:6a:0b:a0:a5:e5:50:0f:30:b8:80:4c:f1:
                    db:24:34:2a:1a:01:f5:e5:a0:76:8f:1d:9a:13:71:
                    22:48:36:f8:c1:94:7e:24:b8:7d:f1:37:2a:e2:44:
                    8e:4d:b5:36:8b:9a:41:32:47:5d:4f:33:b3:2b:cf:
                    eb:43:9a:f5:09:f5:cb:85:8b:5e:f7:f7:1d:dd:43:
                    7d:e3:94:3d:06:37:78:e7:ee:54:83:e3:82:ed:f8:
                    04:40:51:b1:07:7d:25:82:1a:4b:06:0e:f5:23:dc:
                    19:01:05:d2:84:f9:61:7c:2d:49:b1:09:39:65:95:
                    c6:d8:f3:d9:7c:ff:a7:b3:db:f9:2a:73:61:6d:29:
                    16:5c:2c:05:da:3b:83:48:72:52:f5:9d:aa:dc:78:
                    09:93:93:e5:52:ec:4a:c2:f6:97:65:16:13:d9:66:
                    58:bb:15:93:e7:0a:94:73:e2:72:14:d2:6a:03:ae:
                    cb:76:74:f2:54:e7:b1:42:eb:41:b4:c6:3d:59:14:
                    1c:b9:2f:48:a9:b7:e4:79:7b:d9:a6:52:5d:c2:81:
                    83:66:1e:61:ff:cb:28:42:fb:30:12:35:a2:a3:ad:
                    1d:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:6B:D4:67:94:E2:98:42:7A:3C:E2:D6:21:A7:C6:BA:3A:04:3E:C2
            X509v3 Authority Key Identifier:
                keyid:7C:82:30:28:AE:FF:C5:99:AE:FF:A5:DE:5B:90:CC:AD:33:49:7D:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fIIwKK7_xZmu_6XeW5DMrTNJfbk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e2b95d-0b26-402d-96ec-68691dabbdf3/1/fIIwKK7_xZmu_6XeW5DMrTNJfbk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:72:31:87:bd:cd:d6:fd:87:d0:a4:38:53:30:07:a6:19:da:
         02:d3:7e:82:c8:f5:3c:57:79:2f:0f:76:bc:44:09:d4:f7:6b:
         ae:cb:7a:ff:34:8d:ff:44:31:56:bb:2b:08:02:f9:96:8e:57:
         92:57:0f:97:fc:08:ba:e8:e0:4d:d5:31:d5:96:da:37:18:40:
         cb:50:30:94:f4:40:e5:3f:03:bc:70:70:1e:1d:f5:44:a0:7d:
         cf:2b:89:ee:ef:f7:f3:15:0a:4a:cc:d9:94:7e:10:cf:b4:80:
         cb:0c:f4:de:4d:b7:27:ac:f1:b7:26:74:e3:95:05:93:88:e3:
         87:00:f9:7d:ef:03:bd:04:51:60:36:df:46:ff:cf:01:04:89:
         c8:0e:ae:8f:d0:3b:4e:33:77:c6:5b:42:2c:e1:ce:68:04:1d:
         b6:0c:dc:0b:23:b4:3b:c1:28:34:a9:2d:e7:0f:55:4c:88:21:
         6d:5a:ae:a2:72:e6:0e:87:2e:93:c9:f1:fd:f0:e6:5e:af:bc:
         63:2a:81:86:34:70:11:04:48:85:d4:9e:76:d9:1f:dc:97:db:
         ce:31:2c:87:c1:ad:ea:44:14:91:44:22:8d:fc:d3:2c:99:d3:
         a8:73:99:df:f0:fc:d4:0f:f6:6d:50:f9:e9:22:fa:ac:1b:c4:
         32:a9:34:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9UXGUwRtx6ciFXksBM3gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjODIzMDI4YWVmZmM1OTlhZWZmYTVkZTViOTBjY2FkMzM0
OTdkYjkwHhcNMjUxMTA0MTMwMTI4WhcNMjUxMTA1MTMwMTI4WjAzMTEwLwYDVQQD
Eyg2MjZiZDQ2Nzk0ZTI5ODQyN2EzY2UyZDYyMWE3YzZiYTNhMDQzZWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqhJ4XnUCFzlcmcr3E8jA6qr3jn/
XHahN1sIub0sT21qC6Cl5VAPMLiATPHbJDQqGgH15aB2jx2aE3EiSDb4wZR+JLh9
8Tcq4kSOTbU2i5pBMkddTzOzK8/rQ5r1CfXLhYte9/cd3UN945Q9Bjd45+5Ug+OC
7fgEQFGxB30lghpLBg71I9wZAQXShPlhfC1JsQk5ZZXG2PPZfP+ns9v5KnNhbSkW
XCwF2juDSHJS9Z2q3HgJk5PlUuxKwvaXZRYT2WZYuxWT5wqUc+JyFNJqA67LdnTy
VOexQutBtMY9WRQcuS9IqbfkeXvZplJdwoGDZh5h/8soQvswEjWio60dEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGJr1GeU4phCejzi1iGnxro6BD7CMB8GA1UdIwQY
MBaAFHyCMCiu/8WZrv+l3luQzK0zSX25MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZklJd0tLN194Wm11XzZYZVc1RE1yVE5KZmJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lMmI5NWQtMGIyNi00MDJkLTk2ZWMt
Njg2OTFkYWJiZGYzLzEvZklJd0tLN194Wm11XzZYZVc1RE1yVE5KZmJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lMmI5NWQtMGIyNi00MDJkLTk2ZWMtNjg2OTFkYWJiZGYz
LzEvZklJd0tLN194Wm11XzZYZVc1RE1yVE5KZmJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiHIxh73N
1v2H0KQ4UzAHphnaAtN+gsj1PFd5Lw92vEQJ1Pdrrst6/zSN/0QxVrsrCAL5lo5X
klcPl/wIuujgTdUx1ZbaNxhAy1AwlPRA5T8DvHBwHh31RKB9zyuJ7u/38xUKSszZ
lH4Qz7SAywz03k23J6zxtyZ045UFk4jjhwD5fe8DvQRRYDbfRv/PAQSJyA6uj9A7
TjN3xltCLOHOaAQdtgzcCyO0O8EoNKkt5w9VTIghbVquonLmDocuk8nx/fDmXq+8
YyqBhjRwEQRIhdSedtkf3JfbzjEsh8Gt6kQUkUQijfzTLJnTqHOZ3/D81A/2bVD5
6SL6rBvEMqk0iQ==
-----END CERTIFICATE-----