Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
File:                     Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft (raw, json)
Hash identifier:          xwY2KKR5k4qU6BWnIP/tK04ToxKxL6DywDdu2uFna7A=
Subject key identifier:   F7:A9:F5:C1:68:E3:AF:89:B2:4D:F6:62:32:1E:64:6A:4C:93:5B:E9
Authority key identifier: 16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56
Certificate issuer:       /CN=1686f7be9ba171c32746ab4ed20be882bd304356
Certificate serial:       019922FAEC12A8DCF19E804DD229F8292C2D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
Manifest number:          0401
Signing time:             Sun 07 Sep 2025 07:01:33 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:33 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:33 +0000
Files and hashes:         1: Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl (hash: 1JPHiVnFM+lg0WmJZgBiYAXCUr2bBNu+R/if0qtJYMc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:ec:12:a8:dc:f1:9e:80:4d:d2:29:f8:29:2c:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1686f7be9ba171c32746ab4ed20be882bd304356
        Validity
            Not Before: Sep  7 07:01:33 2025 GMT
            Not After : Sep  8 07:01:33 2025 GMT
        Subject: CN=f7a9f5c168e3af89b24df662321e646a4c935be9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:a1:50:67:6d:d6:a7:58:7c:c8:b1:b1:1a:1f:
                    8a:95:f8:de:83:53:76:33:9b:fb:7e:da:73:b8:88:
                    0b:0a:4f:29:13:39:50:be:ff:a4:46:96:53:ae:28:
                    ce:15:4d:2f:2a:cc:2b:9e:85:20:97:79:ea:e3:d3:
                    cf:07:97:f2:bb:da:1c:81:b9:e9:94:53:21:4c:05:
                    e0:62:f1:05:9c:74:d5:05:93:fe:26:8d:26:6c:ad:
                    40:f4:fe:e2:b6:7e:12:16:9c:35:20:9c:69:aa:f5:
                    4d:60:9b:2e:81:b8:21:1f:bf:57:bf:63:c4:b0:b2:
                    63:2f:79:50:6f:a8:14:41:52:5f:ee:35:a5:1d:69:
                    db:cc:68:70:81:b2:d2:b8:fd:91:39:37:7a:21:2a:
                    f6:bd:bc:96:4e:1d:69:42:9e:e0:2d:bc:bb:3b:24:
                    46:0d:48:8c:a5:e4:f9:5e:4e:ca:fb:ed:c3:bf:2f:
                    d0:63:01:26:fe:d9:bb:04:35:9c:68:18:93:a1:ba:
                    e7:e0:80:bb:f2:80:26:27:83:9a:ae:fc:a9:e5:2e:
                    c9:80:8a:a5:31:e8:9c:4c:05:3d:72:a3:ee:e4:2e:
                    f5:b2:e1:9f:b6:d2:a4:c4:9c:1d:75:11:00:65:f7:
                    1c:d6:f1:62:84:0e:7c:0e:5b:15:a2:60:6b:69:3e:
                    16:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:A9:F5:C1:68:E3:AF:89:B2:4D:F6:62:32:1E:64:6A:4C:93:5B:E9
            X509v3 Authority Key Identifier:
                keyid:16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:68:f0:00:9e:8f:af:15:84:da:75:2b:4e:e0:26:66:cd:8c:
         bf:85:2c:4d:ce:73:c2:5b:c9:cc:b7:28:54:7e:8b:87:b9:da:
         aa:cd:e0:a8:40:d1:30:d2:b2:e8:3b:6e:ee:76:9c:db:d8:20:
         5d:81:c0:f3:b5:4c:33:69:f7:3e:b6:6d:d3:9b:25:68:48:19:
         68:ea:a3:e6:40:71:1c:e3:f4:41:75:f7:6a:39:82:ff:db:d1:
         8e:1b:f8:28:2d:c6:01:a9:26:91:66:40:e1:14:71:67:94:8b:
         57:df:f0:db:a9:1b:c4:39:7e:fb:9a:8e:a4:97:8e:85:66:31:
         fa:6b:a1:bf:22:6b:23:ff:6a:17:23:9a:a2:28:25:03:6f:be:
         16:b8:f4:c6:13:bf:ce:f9:5e:48:87:90:47:c4:51:85:81:9b:
         45:e9:55:8d:d0:bc:36:b2:88:c8:d9:ab:b9:d9:6f:64:2a:a4:
         ae:e1:36:71:81:ca:76:16:d2:86:7d:bc:c0:3f:3f:ae:4d:48:
         cb:63:5e:bb:4d:38:f3:dc:e8:e8:3a:8e:c1:a1:8d:b8:35:db:
         7b:e0:18:24:45:82:c9:fd:70:32:de:01:b6:c2:32:0b:cb:76:
         58:5a:8d:18:24:a3:eb:2c:8d:d7:72:c6:6c:80:88:c9:9b:1f:
         b2:7b:76:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+uwSqNzxnoBN0in4KSwtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ODZmN2JlOWJhMTcxYzMyNzQ2YWI0ZWQyMGJlODgyYmQz
MDQzNTYwHhcNMjUwOTA3MDcwMTMzWhcNMjUwOTA4MDcwMTMzWjAzMTEwLwYDVQQD
EyhmN2E5ZjVjMTY4ZTNhZjg5YjI0ZGY2NjIzMjFlNjQ2YTRjOTM1YmU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaFQZ23Wp1h8yLGxGh+Klfjeg1N2
M5v7ftpzuIgLCk8pEzlQvv+kRpZTrijOFU0vKswrnoUgl3nq49PPB5fyu9ocgbnp
lFMhTAXgYvEFnHTVBZP+Jo0mbK1A9P7itn4SFpw1IJxpqvVNYJsugbghH79Xv2PE
sLJjL3lQb6gUQVJf7jWlHWnbzGhwgbLSuP2ROTd6ISr2vbyWTh1pQp7gLby7OyRG
DUiMpeT5Xk7K++3Dvy/QYwEm/tm7BDWcaBiTobrn4IC78oAmJ4Oarvyp5S7JgIql
MeicTAU9cqPu5C71suGfttKkxJwddREAZfcc1vFihA58DlsVomBraT4WMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPep9cFo46+Jsk32YjIeZGpMk1vpMB8GA1UdIwQY
MBaAFBaG976boXHDJ0arTtIL6IK9MENWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy83Y2E4MDgtYzc5NS00MGVmLThhNDkt
NzRhOThjYjY2ZmZmLzEvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy83Y2E4MDgtYzc5NS00MGVmLThhNDktNzRhOThjYjY2ZmZm
LzEvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARWjwAJ6P
rxWE2nUrTuAmZs2Mv4UsTc5zwlvJzLcoVH6Lh7naqs3gqEDRMNKy6Dtu7nac29gg
XYHA87VMM2n3PrZt05slaEgZaOqj5kBxHOP0QXX3ajmC/9vRjhv4KC3GAakmkWZA
4RRxZ5SLV9/w26kbxDl++5qOpJeOhWYx+muhvyJrI/9qFyOaoiglA2++Frj0xhO/
zvleSIeQR8RRhYGbRelVjdC8NrKIyNmrudlvZCqkruE2cYHKdhbShn28wD8/rk1I
y2Neu00489zo6DqOwaGNuDXbe+AYJEWCyf1wMt4BtsIyC8t2WFqNGCSj6yyN13LG
bICIyZsfsnt2+w==
-----END CERTIFICATE-----