Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
File:                     FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft (raw, json)
Hash identifier:          KptnM5/B5qdGBPAwLAePhZVI4z1woNO84sVrIhZV8qk=
Subject key identifier:   D4:E5:22:64:E1:A1:0A:E7:12:16:82:CD:6F:88:EC:48:63:12:45:39
Authority key identifier: 14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A
Certificate issuer:       /CN=14c2eab6a2960506046a1da4312773d98e97cd5a
Certificate serial:       0199180A7D1626C8A86EB98ABB9826BB96EB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
Manifest number:          0B0E
Signing time:             Fri 05 Sep 2025 04:02:44 +0000
Manifest this update:     Fri 05 Sep 2025 04:02:44 +0000
Manifest next update:     Sat 06 Sep 2025 04:02:44 +0000
Files and hashes:         1: FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl (hash: gDVpb1Ol8ZZGD6Edb0F8bwP0bEhkt3n7X4O05y0j3V8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:0a:7d:16:26:c8:a8:6e:b9:8a:bb:98:26:bb:96:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14c2eab6a2960506046a1da4312773d98e97cd5a
        Validity
            Not Before: Sep  5 04:02:44 2025 GMT
            Not After : Sep  6 04:02:44 2025 GMT
        Subject: CN=d4e52264e1a10ae7121682cd6f88ec4863124539
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:fb:0b:ef:bd:b3:ea:41:22:73:2a:e8:35:20:
                    20:f7:17:7b:1b:dd:95:8b:1d:1e:11:8b:e1:4d:91:
                    a6:5d:8a:75:fd:2a:c1:58:ab:b0:45:c9:be:b7:e9:
                    fe:bf:b3:38:1f:8c:d8:42:2c:78:53:2c:d5:c3:c9:
                    6f:79:03:dd:c8:8b:b3:a4:79:5a:56:a0:74:91:93:
                    45:f0:64:2c:91:32:4a:59:c8:08:20:06:d9:5f:56:
                    19:53:04:a7:15:8c:a2:8c:ff:51:db:47:44:b7:bb:
                    22:1d:19:2b:6b:a2:07:ab:e1:28:1c:16:da:35:3d:
                    3e:0c:26:4a:43:ce:bc:21:53:de:d6:2e:2a:30:df:
                    20:01:99:d0:ab:89:e4:35:4f:de:19:7e:b6:bf:39:
                    b7:8a:62:5e:cd:bb:0d:39:d1:c3:de:c6:f4:10:b1:
                    dd:e7:26:d8:84:23:1b:8c:24:91:10:70:23:4b:2d:
                    b7:70:79:4f:a7:8d:5f:27:3a:b3:8b:41:3d:bc:58:
                    71:98:89:1c:45:00:17:16:63:d2:3c:ad:2d:ca:b4:
                    9f:8a:e7:42:ed:81:f9:7e:43:6a:44:33:4f:f3:ed:
                    b8:b5:64:a6:56:cd:74:96:ac:3d:ed:a6:0d:2b:b5:
                    35:40:66:8f:37:c3:72:42:8a:70:bf:f3:55:c6:1a:
                    48:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:E5:22:64:E1:A1:0A:E7:12:16:82:CD:6F:88:EC:48:63:12:45:39
            X509v3 Authority Key Identifier:
                keyid:14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:6d:e9:e3:6b:11:b7:d0:be:bf:c0:43:34:5a:ea:a2:d9:34:
         68:b9:ed:6a:4a:e4:33:8d:c4:b4:18:8d:a6:a2:07:6d:1f:ee:
         68:e4:32:21:ee:5d:41:de:bf:8a:5b:f2:75:5b:8f:3c:b7:96:
         61:d0:f6:28:39:3e:75:6b:66:c1:62:bb:7b:39:83:89:20:ed:
         64:f7:34:39:6d:d5:7a:1a:01:4b:9c:da:eb:f6:e5:9c:1e:48:
         1f:96:83:eb:4f:8b:fc:7d:94:8f:38:84:51:ca:18:ee:d2:58:
         cf:6e:ce:40:d4:d0:5d:43:c3:56:35:c3:c4:f0:75:79:8c:51:
         a3:d3:f2:a9:d7:aa:c2:b9:37:82:36:fb:9e:c4:33:cd:ac:59:
         31:ab:1f:85:06:bf:5b:f8:5a:6b:70:f1:c7:eb:4a:0f:e3:69:
         f1:ed:d7:15:25:b6:87:0f:94:11:30:f7:f9:92:89:4f:ba:7a:
         1e:1c:fd:76:52:f8:d1:df:0b:31:74:77:6d:cd:29:f1:7e:5c:
         94:0d:38:77:9e:cb:97:48:51:0c:4d:71:01:86:8e:cd:29:de:
         71:e6:35:b8:39:e2:08:d2:e0:21:92:d8:50:ae:3a:eb:2c:f1:
         df:a9:93:28:c5:7f:3b:51:ad:be:b7:11:58:ae:3d:99:5e:b8:
         f8:1d:54:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYCn0WJsiobrmKu5gmu5brMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YzJlYWI2YTI5NjA1MDYwNDZhMWRhNDMxMjc3M2Q5OGU5
N2NkNWEwHhcNMjUwOTA1MDQwMjQ0WhcNMjUwOTA2MDQwMjQ0WjAzMTEwLwYDVQQD
EyhkNGU1MjI2NGUxYTEwYWU3MTIxNjgyY2Q2Zjg4ZWM0ODYzMTI0NTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PsL772z6kEicyroNSAg9xd7G92V
ix0eEYvhTZGmXYp1/SrBWKuwRcm+t+n+v7M4H4zYQix4UyzVw8lveQPdyIuzpHla
VqB0kZNF8GQskTJKWcgIIAbZX1YZUwSnFYyijP9R20dEt7siHRkra6IHq+EoHBba
NT0+DCZKQ868IVPe1i4qMN8gAZnQq4nkNU/eGX62vzm3imJezbsNOdHD3sb0ELHd
5ybYhCMbjCSREHAjSy23cHlPp41fJzqzi0E9vFhxmIkcRQAXFmPSPK0tyrSfiudC
7YH5fkNqRDNP8+24tWSmVs10lqw97aYNK7U1QGaPN8NyQopwv/NVxhpIqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNTlImThoQrnEhaCzW+I7EhjEkU5MB8GA1UdIwQY
MBaAFBTC6railgUGBGodpDEnc9mOl81aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRk1McXRxS1dCUVlFYWgya01TZHoyWTZYelZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80YjRkN2EtY2U0OC00N2E0LWEzYzQt
NjExZTU3ZGE5NWMwLzEvRk1McXRxS1dCUVlFYWgya01TZHoyWTZYelZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80YjRkN2EtY2U0OC00N2E0LWEzYzQtNjExZTU3ZGE5NWMw
LzEvRk1McXRxS1dCUVlFYWgya01TZHoyWTZYelZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACm3p42sR
t9C+v8BDNFrqotk0aLntakrkM43EtBiNpqIHbR/uaOQyIe5dQd6/ilvydVuPPLeW
YdD2KDk+dWtmwWK7ezmDiSDtZPc0OW3VehoBS5za6/blnB5IH5aD60+L/H2UjziE
UcoY7tJYz27OQNTQXUPDVjXDxPB1eYxRo9Pyqdeqwrk3gjb7nsQzzaxZMasfhQa/
W/haa3Dxx+tKD+Np8e3XFSW2hw+UETD3+ZKJT7p6Hhz9dlL40d8LMXR3bc0p8X5c
lA04d57Ll0hRDE1xAYaOzSneceY1uDniCNLgIZLYUK466yzx36mTKMV/O1GtvrcR
WK49mV64+B1UuA==
-----END CERTIFICATE-----