Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File:                     obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier:          o48UUwEOGon9YGY+uMbpfc7hbN9Chgjve8OlPkXBqdU=
Subject key identifier:   98:3C:89:87:AA:12:3E:8E:2B:F4:B4:32:1D:FE:F4:A4:70:C0:CB:C9
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer:       /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial:       019893A4039E9BF1120D9B18AA48CB9D24FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number:          063C
Signing time:             Sun 10 Aug 2025 11:00:56 +0000
Manifest this update:     Sun 10 Aug 2025 11:00:56 +0000
Manifest next update:     Mon 11 Aug 2025 11:00:56 +0000
Files and hashes:         1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: jb514DYV4W5Fb2HX2qOB+zeBrTnOw5/otfI2zOeP1DQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 11:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:93:a4:03:9e:9b:f1:12:0d:9b:18:aa:48:cb:9d:24:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
        Validity
            Not Before: Aug 10 11:00:56 2025 GMT
            Not After : Aug 11 11:00:56 2025 GMT
        Subject: CN=983c8987aa123e8e2bf4b4321dfef4a470c0cbc9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:c0:21:46:20:20:cc:8c:83:a7:0a:3f:b9:92:
                    00:1f:17:42:ae:0a:b2:ab:51:ab:82:ff:dd:c0:88:
                    04:19:ef:4a:0a:2c:b7:ac:29:1b:9e:92:cf:e4:b7:
                    a9:f5:7a:7f:9a:c8:e4:6f:ae:17:c4:74:af:f6:f1:
                    9b:b8:9d:2a:fc:c0:14:a7:d2:a7:72:5a:58:87:c8:
                    98:03:ed:36:33:14:ff:74:43:f2:d8:9d:51:d4:6f:
                    7c:86:3e:e1:86:7f:a3:cc:bb:02:d2:e1:dc:d9:9d:
                    02:78:a3:94:11:c9:09:33:a0:50:74:54:66:2d:cf:
                    10:35:25:8c:a2:f9:c8:1c:a3:de:de:49:38:b2:3b:
                    68:3b:cd:1e:62:5c:76:1a:90:70:df:a7:87:8f:e7:
                    e1:38:68:36:ff:94:90:a2:3b:9a:38:1d:6a:4c:6c:
                    34:ab:3a:a7:ca:2c:a0:e3:16:3d:80:67:e3:6b:6b:
                    57:b2:38:ee:47:06:14:f5:ac:5c:32:8b:a4:cf:d2:
                    37:bf:5e:1d:c9:24:98:55:ba:62:10:73:2d:d6:71:
                    36:42:83:ff:98:0c:35:73:a7:bd:29:fc:8f:13:33:
                    4d:df:de:29:52:64:de:19:c0:0b:f6:03:0d:03:1e:
                    bc:1f:c8:ee:82:ec:9f:0b:93:e7:0b:41:a2:8d:e3:
                    29:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:3C:89:87:AA:12:3E:8E:2B:F4:B4:32:1D:FE:F4:A4:70:C0:CB:C9
            X509v3 Authority Key Identifier:
                keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:54:4c:11:d5:fd:fb:6d:c1:49:a0:b2:39:9d:fb:b0:4c:b4:
         b3:bb:4a:4a:a2:7f:4f:38:f6:76:52:fe:a3:48:09:f2:08:db:
         9e:8a:91:ca:4e:c5:e2:97:9d:bd:6b:b4:7f:44:c3:53:e5:fe:
         76:bc:f9:4f:be:c4:ae:9f:ec:52:e9:1d:ad:61:bd:fc:f6:19:
         d2:dc:eb:01:bf:26:9a:a9:a2:0b:a7:b8:4b:f2:da:82:a7:e8:
         81:92:c9:27:79:c1:6a:25:4e:05:99:ab:e9:6c:98:cc:7a:ae:
         d6:59:cf:a1:f8:3e:eb:0d:98:eb:56:01:7f:b0:97:f0:d1:0d:
         82:8e:55:44:31:46:9c:c4:d7:4f:7f:d9:a4:ca:f1:40:b6:29:
         d0:4a:e7:8f:ed:bc:5f:71:2a:0c:63:ef:aa:04:55:21:9c:1f:
         41:0b:0b:2f:6a:dd:cd:db:5e:39:f9:70:d7:37:10:67:50:26:
         c6:f8:7d:24:be:d0:62:99:91:56:5b:6c:99:51:43:f3:45:e1:
         da:40:22:8f:b6:d5:e9:ac:00:7f:f8:f5:51:b7:23:62:64:e9:
         21:e0:60:c1:df:fb:05:6f:c4:53:91:fc:1d:24:bf:f3:78:fc:
         ca:6f:35:31:82:92:08:08:06:14:d1:fe:89:de:98:85:b5:25:
         49:ea:59:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiTpAOem/ESDZsYqkjLnST9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYmI1MDU0YTE3Y2M5NGZmZmMyYmMyOTVhMTViZmVmOGE5
MDQzMGEwHhcNMjUwODEwMTEwMDU2WhcNMjUwODExMTEwMDU2WjAzMTEwLwYDVQQD
Eyg5ODNjODk4N2FhMTIzZThlMmJmNGI0MzIxZGZlZjRhNDcwYzBjYmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMAhRiAgzIyDpwo/uZIAHxdCrgqy
q1Grgv/dwIgEGe9KCiy3rCkbnpLP5Lep9Xp/msjkb64XxHSv9vGbuJ0q/MAUp9Kn
clpYh8iYA+02MxT/dEPy2J1R1G98hj7hhn+jzLsC0uHc2Z0CeKOUEckJM6BQdFRm
Lc8QNSWMovnIHKPe3kk4sjtoO80eYlx2GpBw36eHj+fhOGg2/5SQojuaOB1qTGw0
qzqnyiyg4xY9gGfja2tXsjjuRwYU9axcMoukz9I3v14dySSYVbpiEHMt1nE2QoP/
mAw1c6e9KfyPEzNN394pUmTeGcAL9gMNAx68H8juguyfC5PnC0GijeMpVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJg8iYeqEj6OK/S0Mh3+9KRwwMvJMB8GA1UdIwQY
MBaAFKG7UFShfMlP/8K8KVoVv++KkEMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgt
NzIyNTVkMjQ5YzVkLzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9hMzBjMTAtMWMyZC00NzhjLTljZjgtNzIyNTVkMjQ5YzVk
LzEvb2J0UVZLRjh5VV9fd3J3cFdoV183NHFRUXdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACVRMEdX9
+23BSaCyOZ37sEy0s7tKSqJ/Tzj2dlL+o0gJ8gjbnoqRyk7F4pedvWu0f0TDU+X+
drz5T77Erp/sUukdrWG9/PYZ0tzrAb8mmqmiC6e4S/LagqfogZLJJ3nBaiVOBZmr
6WyYzHqu1lnPofg+6w2Y61YBf7CX8NENgo5VRDFGnMTXT3/ZpMrxQLYp0Ernj+28
X3EqDGPvqgRVIZwfQQsLL2rdzdteOflw1zcQZ1Amxvh9JL7QYpmRVltsmVFD80Xh
2kAij7bV6awAf/j1UbcjYmTpIeBgwd/7BW/EU5H8HSS/83j8ym81MYKSCAgGFNH+
id6YhbUlSepZfQ==
-----END CERTIFICATE-----