Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
File:                     C1XbSaXB_JAcoahcjSXxPxhuL_o.mft (raw, json)
Hash identifier:          fWYmvWN0gj5/IYVmfWDTQ2bW9m2hZ2w2jSOhk0M54j0=
Subject key identifier:   FF:13:3E:ED:C4:17:29:78:73:40:68:F0:64:63:3B:72:A6:2E:19:A2
Authority key identifier: 0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA
Certificate issuer:       /CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
Certificate serial:       019A4F62C8B5EEAAA2344C6811BA213F18DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
Manifest number:          170A
Signing time:             Tue 04 Nov 2025 15:01:05 +0000
Manifest this update:     Tue 04 Nov 2025 15:01:05 +0000
Manifest next update:     Wed 05 Nov 2025 15:01:05 +0000
Files and hashes:         1: C1XbSaXB_JAcoahcjSXxPxhuL_o.crl (hash: kLibx2pOo04hzlUACHsWahD+74/1peFjsIM3mD7Mm80=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 05 Nov 2025 15:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:4f:62:c8:b5:ee:aa:a2:34:4c:68:11:ba:21:3f:18:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
        Validity
            Not Before: Nov  4 15:01:05 2025 GMT
            Not After : Nov  5 15:01:05 2025 GMT
        Subject: CN=ff133eedc4172978734068f064633b72a62e19a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:62:c1:a9:b7:74:80:b1:1e:03:e4:0f:23:ea:
                    c0:27:a1:8a:6e:8c:2d:1f:00:70:9a:f2:27:3a:c6:
                    e1:70:dd:fb:20:7d:58:e0:54:e1:55:af:77:03:ce:
                    0b:51:be:99:27:14:67:44:a0:0c:51:b8:6f:c0:da:
                    3b:37:a3:cd:f0:fa:a3:f2:ca:aa:ca:07:4e:a5:25:
                    5d:1c:87:53:ab:ed:19:b3:e6:6a:6d:a9:0c:5d:02:
                    e9:6b:aa:6d:9c:5f:3d:cf:5e:87:0b:40:8b:13:27:
                    e8:97:e1:55:d1:ac:92:10:4d:5f:84:fb:38:69:1f:
                    3e:aa:bf:2c:03:8a:82:34:24:41:0b:28:40:4b:20:
                    47:e9:16:2e:b4:83:bc:53:ea:90:0b:4f:2d:cc:7c:
                    6b:e6:7f:7c:a1:dc:1b:ce:e8:bc:8c:b3:03:b4:b6:
                    fa:40:ce:2c:b2:ea:69:45:b8:15:0e:5e:a5:3b:73:
                    f6:55:29:b6:8e:68:7e:97:48:9d:74:5e:7e:a4:96:
                    63:fb:c0:b6:22:a8:7e:a0:0f:62:2b:37:36:68:e0:
                    87:85:b4:34:82:ca:d3:d8:26:f7:d7:ca:b1:04:19:
                    eb:77:0f:6f:26:f7:16:b6:5d:e1:3e:bd:f4:81:bb:
                    dd:ad:01:f1:23:a4:59:44:ca:b1:c8:cc:95:aa:2b:
                    fe:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:13:3E:ED:C4:17:29:78:73:40:68:F0:64:63:3B:72:A6:2E:19:A2
            X509v3 Authority Key Identifier:
                keyid:0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:8a:ab:e4:89:a2:db:6b:e3:09:a7:d6:2c:fd:fa:b3:26:9f:
         af:89:90:82:b3:74:f2:0e:fb:32:ce:a9:60:5d:20:7e:3c:5f:
         cc:99:8f:3f:8f:b6:f7:cf:f0:b4:77:f5:2e:87:d2:44:47:8a:
         46:8b:24:17:84:b8:cc:a7:ac:c0:8d:1e:7d:aa:39:41:d0:fd:
         bc:c5:02:da:27:9a:ac:3b:05:25:d9:47:1b:4c:e9:b3:05:21:
         b1:ca:e1:da:ca:98:bc:00:99:06:36:bf:82:78:2b:f5:a1:00:
         bf:f2:e4:c8:cb:a7:5e:49:ec:17:eb:26:54:32:cc:d1:e9:48:
         ad:23:89:b6:1b:d3:58:71:8b:df:7e:8c:63:a4:37:34:58:24:
         19:df:de:f8:83:24:50:c8:31:92:4e:a1:dc:41:d7:84:7b:91:
         6a:89:b7:63:5f:58:f1:c0:47:6b:f4:6f:c1:97:53:71:3e:85:
         62:79:07:21:ea:b7:9d:59:35:5a:57:c0:e0:cd:b9:02:b0:f5:
         30:6b:07:93:d8:d1:07:32:01:0a:f3:2d:d5:84:66:1a:9b:bf:
         22:ac:80:eb:22:38:a2:78:20:c4:d6:0a:26:fa:3d:6e:f6:50:
         f4:20:b4:c6:cc:8d:4b:a5:9c:4e:ac:45:68:01:4b:0f:13:74:
         30:4f:f6:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYsi17qqiNExoEbohPxjbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiNTVkYjQ5YTVjMWZjOTAxY2ExYTg1YzhkMjVmMTNmMTg2
ZTJmZmEwHhcNMjUxMTA0MTUwMTA1WhcNMjUxMTA1MTUwMTA1WjAzMTEwLwYDVQQD
EyhmZjEzM2VlZGM0MTcyOTc4NzM0MDY4ZjA2NDYzM2I3MmE2MmUxOWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2LBqbd0gLEeA+QPI+rAJ6GKbowt
HwBwmvInOsbhcN37IH1Y4FThVa93A84LUb6ZJxRnRKAMUbhvwNo7N6PN8Pqj8sqq
ygdOpSVdHIdTq+0Zs+ZqbakMXQLpa6ptnF89z16HC0CLEyfol+FV0aySEE1fhPs4
aR8+qr8sA4qCNCRBCyhASyBH6RYutIO8U+qQC08tzHxr5n98odwbzui8jLMDtLb6
QM4ssuppRbgVDl6lO3P2VSm2jmh+l0iddF5+pJZj+8C2Iqh+oA9iKzc2aOCHhbQ0
gsrT2Cb318qxBBnrdw9vJvcWtl3hPr30gbvdrQHxI6RZRMqxyMyVqiv+NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP8TPu3EFyl4c0Bo8GRjO3KmLhmiMB8GA1UdIwQY
MBaAFAtV20mlwfyQHKGoXI0l8T8Ybi/6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzFYYlNhWEJfSkFjb2FoY2pTWHhQeGh1TF9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC81MjM5ODgtNWEwMC00MGE2LWIwNDQt
YTI3ZTc0Zjc1ZDI2LzEvQzFYYlNhWEJfSkFjb2FoY2pTWHhQeGh1TF9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC81MjM5ODgtNWEwMC00MGE2LWIwNDQtYTI3ZTc0Zjc1ZDI2
LzEvQzFYYlNhWEJfSkFjb2FoY2pTWHhQeGh1TF9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtYqr5Imi
22vjCafWLP36syafr4mQgrN08g77Ms6pYF0gfjxfzJmPP4+298/wtHf1LofSREeK
RoskF4S4zKeswI0efao5QdD9vMUC2iearDsFJdlHG0zpswUhscrh2sqYvACZBja/
gngr9aEAv/LkyMunXknsF+smVDLM0elIrSOJthvTWHGL336MY6Q3NFgkGd/e+IMk
UMgxkk6h3EHXhHuRaom3Y19Y8cBHa/RvwZdTcT6FYnkHIeq3nVk1WlfA4M25ArD1
MGsHk9jRBzIBCvMt1YRmGpu/IqyA6yI4onggxNYKJvo9bvZQ9CC0xsyNS6WcTqxF
aAFLDxN0ME/2iQ==
-----END CERTIFICATE-----