Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
File:                     d7AlLypnrNQplw-mSmQXd29y2NY.mft (raw, json)
Hash identifier:          eDD3neAD2ppNWJ/Tq2/g+RTODkJgeQ1Gqrl7XDAauTc=
Subject key identifier:   FB:00:FE:CB:93:A8:C3:6A:05:63:DD:80:60:60:30:E2:B7:99:B0:38
Authority key identifier: 77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
Certificate issuer:       /CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Certificate serial:       019A4F992C0D69595975FEB2EEBE3C4E8771
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
Manifest number:          05E9
Signing time:             Tue 04 Nov 2025 16:00:29 +0000
Manifest this update:     Tue 04 Nov 2025 16:00:29 +0000
Manifest next update:     Wed 05 Nov 2025 16:00:29 +0000
Files and hashes:         1: d7AlLypnrNQplw-mSmQXd29y2NY.crl (hash: rAjVSnMs5fjbd5cw1nkx4yTLOTF5yfSZrxZL2Tdo9pU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 16:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4f:99:2c:0d:69:59:59:75:fe:b2:ee:be:3c:4e:87:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77b0252f2a67acd429970fa64a6417776f72d8d6
        Validity
            Not Before: Nov  4 16:00:29 2025 GMT
            Not After : Nov  5 16:00:29 2025 GMT
        Subject: CN=fb00fecb93a8c36a0563dd80606030e2b799b038
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:ce:5f:ee:2d:35:99:7d:74:f5:77:c0:f7:92:
                    ce:3b:b1:81:d2:f7:57:59:f5:84:e9:e7:d6:7b:3b:
                    be:1b:40:f2:89:e9:4c:d7:10:6d:91:17:84:82:6d:
                    ad:73:eb:f6:ff:ea:1a:be:b7:00:d6:83:ef:8a:45:
                    b1:87:9c:df:da:c1:df:6b:d5:ad:79:1b:3e:fe:e4:
                    a9:d0:ce:f4:40:6a:80:db:4d:08:5c:b8:49:c1:b2:
                    1b:ef:08:25:06:51:9f:22:79:fc:48:9a:02:7b:81:
                    ec:12:76:7e:fd:d3:a6:76:1f:7d:24:c3:e8:19:c4:
                    5a:b1:f4:53:63:a6:e6:f2:9c:f0:cc:86:e3:0e:96:
                    69:33:cd:b4:29:59:3b:2d:9c:ff:23:28:7b:7b:89:
                    b6:e5:d3:23:d1:e7:17:da:70:b7:10:36:bc:1f:4d:
                    a7:92:d4:c7:ed:38:54:70:1a:67:8b:72:8d:c0:c9:
                    70:6b:a1:82:cc:55:82:8f:ec:fb:53:d4:a4:af:4c:
                    72:d2:16:b5:08:b3:6c:e5:5b:df:18:24:71:07:c1:
                    46:1d:2c:d3:5e:c1:87:4f:3a:23:bf:78:1d:40:cb:
                    c7:8c:8c:47:9d:da:da:37:24:f0:42:18:3c:24:df:
                    7d:0e:01:b6:59:06:7c:c7:4b:20:12:85:94:6d:57:
                    95:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:00:FE:CB:93:A8:C3:6A:05:63:DD:80:60:60:30:E2:B7:99:B0:38
            X509v3 Authority Key Identifier:
                keyid:77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:f3:b5:a6:6b:79:7a:34:67:f5:db:69:2e:93:af:81:f4:f2:
         96:8a:97:fb:fe:3f:11:2b:72:13:8c:d3:1c:51:7d:34:49:6b:
         a7:fe:35:06:53:1c:35:f6:0a:3d:34:9d:e9:ce:1a:a5:c7:d9:
         b1:6d:ff:bc:30:50:5a:f6:05:e3:ca:de:5b:a3:81:96:4e:a6:
         fc:9f:ba:90:58:b2:1f:3b:39:b2:1e:c5:ec:4d:7a:b9:ce:87:
         81:33:53:48:37:f9:de:dc:02:c6:bc:4b:a5:98:e5:9a:ae:74:
         ec:9b:90:de:c1:86:c7:90:04:ef:a6:74:62:2e:1e:35:81:b7:
         d7:0a:66:62:08:bd:b5:4b:0e:dc:d4:e4:8f:18:e9:66:69:20:
         57:8b:d9:2e:6f:6b:7b:13:ee:60:77:2b:08:95:48:c4:f7:b0:
         5a:2d:e4:40:40:47:ad:d7:a2:1a:ff:33:8c:af:ab:15:6a:a0:
         92:9b:29:a6:ae:34:c6:c6:cd:9b:19:60:ee:57:9c:17:21:4d:
         9b:9c:07:20:ea:84:15:85:6c:4a:0b:d1:a3:fe:64:95:7f:d7:
         96:7b:b8:a5:8a:88:80:a8:bc:d3:0f:be:58:c0:0e:a7:8a:b6:
         9f:cc:6f:b7:33:10:e2:51:4a:e7:d0:6b:f0:1a:b0:48:b7:c2:
         b6:eb:70:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPmSwNaVlZdf6y7r48TodxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YjAyNTJmMmE2N2FjZDQyOTk3MGZhNjRhNjQxNzc3NmY3
MmQ4ZDYwHhcNMjUxMTA0MTYwMDI5WhcNMjUxMTA1MTYwMDI5WjAzMTEwLwYDVQQD
EyhmYjAwZmVjYjkzYThjMzZhMDU2M2RkODA2MDYwMzBlMmI3OTliMDM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAus5f7i01mX109XfA95LOO7GB0vdX
WfWE6efWezu+G0DyielM1xBtkReEgm2tc+v2/+oavrcA1oPvikWxh5zf2sHfa9Wt
eRs+/uSp0M70QGqA200IXLhJwbIb7wglBlGfInn8SJoCe4HsEnZ+/dOmdh99JMPo
GcRasfRTY6bm8pzwzIbjDpZpM820KVk7LZz/Iyh7e4m25dMj0ecX2nC3EDa8H02n
ktTH7ThUcBpni3KNwMlwa6GCzFWCj+z7U9Skr0xy0ha1CLNs5VvfGCRxB8FGHSzT
XsGHTzojv3gdQMvHjIxHndraNyTwQhg8JN99DgG2WQZ8x0sgEoWUbVeVQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPsA/suTqMNqBWPdgGBgMOK3mbA4MB8GA1UdIwQY
MBaAFHewJS8qZ6zUKZcPpkpkF3dvctjWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDdBbEx5cG5yTlFwbHctbVNtUVhkMjl5Mk5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yOTZlOTQtOTI5Ni00MmU1LWE0YjQt
OTk2YzUyOWVjOTg2LzEvZDdBbEx5cG5yTlFwbHctbVNtUVhkMjl5Mk5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8yOTZlOTQtOTI5Ni00MmU1LWE0YjQtOTk2YzUyOWVjOTg2
LzEvZDdBbEx5cG5yTlFwbHctbVNtUVhkMjl5Mk5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/O1pmt5
ejRn9dtpLpOvgfTyloqX+/4/EStyE4zTHFF9NElrp/41BlMcNfYKPTSd6c4apcfZ
sW3/vDBQWvYF48reW6OBlk6m/J+6kFiyHzs5sh7F7E16uc6HgTNTSDf53twCxrxL
pZjlmq507JuQ3sGGx5AE76Z0Yi4eNYG31wpmYgi9tUsO3NTkjxjpZmkgV4vZLm9r
exPuYHcrCJVIxPewWi3kQEBHrdeiGv8zjK+rFWqgkpsppq40xsbNmxlg7lecFyFN
m5wHIOqEFYVsSgvRo/5klX/Xlnu4pYqIgKi80w++WMAOp4q2n8xvtzMQ4lFK59Br
8BqwSLfCtutwUw==
-----END CERTIFICATE-----