Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft
File:                     o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft (raw, json)
Hash identifier:          Im7w7O1wjIYLXTSTO5MQnS3RmaHU519s0tWoU0K92i8=
Subject key identifier:   E4:79:44:7F:1E:22:0A:17:4F:A5:DE:63:A4:21:6E:F4:1F:0F:A9:19
Authority key identifier: A3:92:FC:96:A4:87:89:51:4E:B0:9F:56:74:B5:9D:A5:2C:91:14:83
Certificate issuer:       /CN=a392fc96a48789514eb09f5674b59da52c911483
Certificate serial:       019A72264F152DF91106AD53D42E361F4809
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft
Manifest number:          0B95
Signing time:             Tue 11 Nov 2025 09:01:44 +0000
Manifest this update:     Tue 11 Nov 2025 09:01:44 +0000
Manifest next update:     Wed 12 Nov 2025 09:01:44 +0000
Files and hashes:         1: o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl (hash: K6mKQyA2xiTHHmm/lo1QItPPSesPo/NHQshRyYog3h4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 09:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:72:26:4f:15:2d:f9:11:06:ad:53:d4:2e:36:1f:48:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a392fc96a48789514eb09f5674b59da52c911483
        Validity
            Not Before: Nov 11 09:01:44 2025 GMT
            Not After : Nov 12 09:01:44 2025 GMT
        Subject: CN=e479447f1e220a174fa5de63a4216ef41f0fa919
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:e4:ab:3d:4f:9c:8f:7a:f1:af:7a:30:e1:23:
                    3c:68:9b:26:d6:d8:f1:ba:64:04:2f:69:84:1e:02:
                    46:b6:db:96:80:6f:5b:10:b2:a8:64:73:95:25:11:
                    26:01:10:f8:ac:d6:49:4e:f3:f6:e9:a2:2a:d9:c7:
                    7c:ba:c8:16:c6:f3:5e:08:4b:b7:72:79:cf:56:09:
                    49:2b:3b:f5:1e:3f:5f:87:37:01:af:3a:5a:b2:6b:
                    ae:55:1d:bb:54:b5:f9:85:59:31:64:00:e6:04:c6:
                    4d:d1:58:b2:f2:e7:df:ca:8d:ce:98:e4:44:ac:ac:
                    3c:9b:9c:f7:7c:72:40:b0:34:06:e8:6f:15:09:58:
                    ba:d7:67:d2:c3:c6:d6:8f:67:21:ca:a2:6e:a1:0a:
                    2d:6c:6f:54:4b:5f:7c:cd:bf:a2:c7:cd:78:c2:e6:
                    77:7c:66:25:42:32:63:8e:e9:89:51:e0:ef:92:99:
                    cd:6f:08:6c:74:bb:7f:47:cb:7c:20:d2:a1:ef:d1:
                    f9:c9:d5:67:38:dd:14:23:bc:7a:ca:90:4d:80:a3:
                    6c:bc:56:7a:95:6a:78:cd:6a:a5:20:b7:7d:d2:e6:
                    da:b8:27:19:fe:ac:44:61:ec:0d:3a:05:53:f2:44:
                    99:73:bf:85:99:4a:10:e1:8c:2e:e7:21:60:3c:42:
                    88:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:79:44:7F:1E:22:0A:17:4F:A5:DE:63:A4:21:6E:F4:1F:0F:A9:19
            X509v3 Authority Key Identifier:
                keyid:A3:92:FC:96:A4:87:89:51:4E:B0:9F:56:74:B5:9D:A5:2C:91:14:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e78f83-5384-4c36-8f51-883f2f6cbf04/1/o5L8lqSHiVFOsJ9WdLWdpSyRFIM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:1e:63:57:76:b2:a9:62:24:63:89:b3:30:3f:2c:af:5c:f8:
         00:bf:b9:4b:77:0a:6d:6b:bc:8d:01:26:9e:1b:55:27:bb:4c:
         a2:43:a9:04:06:98:e4:b3:4a:e1:48:98:c6:00:c1:60:20:c7:
         00:c8:a7:32:dd:ab:d3:50:3a:0a:b8:e5:1a:30:a0:36:37:14:
         e5:e5:ac:06:1e:90:af:e4:c9:c4:9c:52:f6:21:dd:64:27:3b:
         de:53:02:04:8c:dc:67:96:e1:47:15:63:32:a0:da:86:69:e3:
         eb:e5:67:9c:40:da:ee:3b:13:dc:d4:8c:2a:3d:0b:bd:c9:6e:
         86:0d:7e:2c:bd:7f:af:48:cb:35:bc:a1:59:ae:36:c4:fc:f3:
         89:e5:58:0f:b5:74:97:0f:a6:3e:5f:9b:bf:cd:9b:93:36:01:
         19:97:e3:52:99:d8:7f:e7:38:9b:fb:ad:c6:c0:85:f9:82:8d:
         00:17:27:fe:5b:d8:75:ad:ba:d8:bb:d5:9c:c2:ac:81:8e:8a:
         bf:2e:44:6c:32:c4:d9:c5:00:93:01:09:ef:68:bd:5d:9a:bc:
         69:3e:73:29:4a:bc:90:79:d7:42:9e:b7:1e:7b:5a:65:fb:66:
         01:5a:a2:31:b9:2c:62:3a:82:68:2f:c8:e5:32:a1:1f:2a:99:
         45:72:9d:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJk8VLfkRBq1T1C42H0gJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzOTJmYzk2YTQ4Nzg5NTE0ZWIwOWY1Njc0YjU5ZGE1MmM5
MTE0ODMwHhcNMjUxMTExMDkwMTQ0WhcNMjUxMTEyMDkwMTQ0WjAzMTEwLwYDVQQD
EyhlNDc5NDQ3ZjFlMjIwYTE3NGZhNWRlNjNhNDIxNmVmNDFmMGZhOTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOSrPU+cj3rxr3ow4SM8aJsm1tjx
umQEL2mEHgJGttuWgG9bELKoZHOVJREmARD4rNZJTvP26aIq2cd8usgWxvNeCEu3
cnnPVglJKzv1Hj9fhzcBrzpasmuuVR27VLX5hVkxZADmBMZN0Viy8uffyo3OmORE
rKw8m5z3fHJAsDQG6G8VCVi612fSw8bWj2chyqJuoQotbG9US198zb+ix814wuZ3
fGYlQjJjjumJUeDvkpnNbwhsdLt/R8t8INKh79H5ydVnON0UI7x6ypBNgKNsvFZ6
lWp4zWqlILd90ubauCcZ/qxEYewNOgVT8kSZc7+FmUoQ4Ywu5yFgPEKI4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOR5RH8eIgoXT6XeY6QhbvQfD6kZMB8GA1UdIwQY
MBaAFKOS/Jakh4lRTrCfVnS1naUskRSDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzVMOGxxU0hpVkZPc0o5V2RMV2RwU3lSRklNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lNzhmODMtNTM4NC00YzM2LThmNTEt
ODgzZjJmNmNiZjA0LzEvbzVMOGxxU0hpVkZPc0o5V2RMV2RwU3lSRklNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9lNzhmODMtNTM4NC00YzM2LThmNTEtODgzZjJmNmNiZjA0
LzEvbzVMOGxxU0hpVkZPc0o5V2RMV2RwU3lSRklNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOx5jV3ay
qWIkY4mzMD8sr1z4AL+5S3cKbWu8jQEmnhtVJ7tMokOpBAaY5LNK4UiYxgDBYCDH
AMinMt2r01A6CrjlGjCgNjcU5eWsBh6Qr+TJxJxS9iHdZCc73lMCBIzcZ5bhRxVj
MqDahmnj6+VnnEDa7jsT3NSMKj0Lvcluhg1+LL1/r0jLNbyhWa42xPzzieVYD7V0
lw+mPl+bv82bkzYBGZfjUpnYf+c4m/utxsCF+YKNABcn/lvYda262LvVnMKsgY6K
vy5EbDLE2cUAkwEJ72i9XZq8aT5zKUq8kHnXQp63HntaZftmAVqiMbksYjqCaC/I
5TKhHyqZRXKdTw==
-----END CERTIFICATE-----