Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft
File:                     do5xE0z2ctauj2b8RNW-5iTNAqM.mft (raw, json)
Hash identifier:          6eRICkN54jZ9jMzaPIVrUQrrnDDJ+nT64foD79ov/fE=
Subject key identifier:   EC:13:26:F4:C6:49:A2:2A:20:2A:F2:1D:93:A9:F9:01:A3:21:B6:4B
Authority key identifier: 76:8E:71:13:4C:F6:72:D6:AE:8F:66:FC:44:D5:BE:E6:24:CD:02:A3
Certificate issuer:       /CN=768e71134cf672d6ae8f66fc44d5bee624cd02a3
Certificate serial:       0199228CD4866264441C8C9056A9E04612AF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/do5xE0z2ctauj2b8RNW-5iTNAqM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft
Manifest number:          06C5
Signing time:             Sun 07 Sep 2025 05:01:18 +0000
Manifest this update:     Sun 07 Sep 2025 05:01:18 +0000
Manifest next update:     Mon 08 Sep 2025 05:01:18 +0000
Files and hashes:         1: do5xE0z2ctauj2b8RNW-5iTNAqM.crl (hash: 0HDB2t7URIqcz0DSI+s/WyMa/J8RWKWdN/YwmDFuy98=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/do5xE0z2ctauj2b8RNW-5iTNAqM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8c:d4:86:62:64:44:1c:8c:90:56:a9:e0:46:12:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=768e71134cf672d6ae8f66fc44d5bee624cd02a3
        Validity
            Not Before: Sep  7 05:01:18 2025 GMT
            Not After : Sep  8 05:01:18 2025 GMT
        Subject: CN=ec1326f4c649a22a202af21d93a9f901a321b64b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:47:11:48:31:59:a2:d0:29:1f:fc:9c:ef:f2:
                    92:f3:02:9c:65:7f:05:94:d8:1d:bd:60:74:bc:82:
                    32:2d:c4:4f:27:60:25:77:9c:ee:7a:0d:68:0f:18:
                    6a:bb:ae:1c:90:e2:16:58:ca:74:a6:f0:7d:33:80:
                    aa:15:7d:0c:11:82:2c:0d:c4:b1:b1:47:dd:5a:88:
                    16:c3:c2:1f:84:b1:6e:d1:aa:29:14:64:08:ce:c2:
                    37:4a:4c:33:e7:df:a8:93:52:57:32:74:a1:d8:d4:
                    a8:7d:ee:ac:72:71:03:3f:98:8e:46:bc:57:22:1b:
                    a0:41:bc:11:d2:f8:8e:0e:5e:7f:65:b3:d6:a8:25:
                    0c:58:37:d4:b9:d6:ef:24:b1:7b:65:e3:bb:84:d9:
                    40:e7:4f:ef:bb:c0:de:04:4c:e7:25:d4:b7:a1:e5:
                    68:9f:10:a6:2b:bf:53:a6:67:e3:a0:30:4d:97:3c:
                    e2:ca:c1:0b:17:6d:8b:4b:75:ad:39:32:9e:c1:2a:
                    0c:5e:15:81:17:f2:f8:1d:61:3b:3b:83:34:f8:50:
                    a9:07:ce:dc:ca:b7:98:d2:48:ff:f6:5d:98:1b:74:
                    38:84:a1:b8:91:29:54:c1:f5:94:f6:c7:ad:d1:30:
                    84:22:e1:87:7d:24:9e:8f:a9:2a:77:2c:73:36:04:
                    2c:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:13:26:F4:C6:49:A2:2A:20:2A:F2:1D:93:A9:F9:01:A3:21:B6:4B
            X509v3 Authority Key Identifier:
                keyid:76:8E:71:13:4C:F6:72:D6:AE:8F:66:FC:44:D5:BE:E6:24:CD:02:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do5xE0z2ctauj2b8RNW-5iTNAqM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:32:84:7c:9f:64:f0:09:91:6e:42:ad:60:8d:72:a5:a9:16:
         09:8c:71:7c:ea:e7:3e:f7:73:b5:c0:c9:d7:db:f2:ba:f7:0d:
         e9:c6:84:90:fe:c6:32:c8:7c:3b:f0:6d:de:27:f4:2c:c9:e0:
         fa:91:30:d6:95:04:c1:fb:40:0b:00:db:8d:54:9b:10:1f:6c:
         00:c8:06:03:48:75:61:90:69:a1:f2:50:44:9e:16:23:32:d3:
         76:25:cf:b2:dd:e4:5a:40:7b:1f:ce:fe:6f:18:53:5a:17:29:
         dd:33:6f:e2:07:0e:2e:f0:d8:d6:0f:1c:15:d3:e9:7f:0e:65:
         c7:51:ab:b5:74:b4:d3:0f:2a:22:6e:94:d7:48:34:5e:96:c4:
         c4:40:76:de:2e:7d:4e:26:51:02:d5:3d:b6:8a:f1:03:09:56:
         79:36:c6:5c:eb:85:a0:a4:f0:d7:d4:ca:89:e5:df:07:09:4a:
         53:37:ad:e8:87:ff:25:2f:b9:29:2a:a6:ad:3b:d0:4d:97:e7:
         df:e6:f5:28:5f:d5:60:34:3c:ff:14:22:33:94:0d:be:e3:0d:
         f4:cf:91:d7:18:33:9e:11:42:ab:1b:06:93:6d:c8:f1:cf:85:
         94:88:54:b4:ce:18:b1:e1:13:c3:ce:38:0f:d3:40:2b:d0:47:
         6e:da:04:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijNSGYmREHIyQVqngRhKvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OGU3MTEzNGNmNjcyZDZhZThmNjZmYzQ0ZDViZWU2MjRj
ZDAyYTMwHhcNMjUwOTA3MDUwMTE4WhcNMjUwOTA4MDUwMTE4WjAzMTEwLwYDVQQD
EyhlYzEzMjZmNGM2NDlhMjJhMjAyYWYyMWQ5M2E5ZjkwMWEzMjFiNjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkcRSDFZotApH/yc7/KS8wKcZX8F
lNgdvWB0vIIyLcRPJ2Ald5zueg1oDxhqu64ckOIWWMp0pvB9M4CqFX0MEYIsDcSx
sUfdWogWw8IfhLFu0aopFGQIzsI3Skwz59+ok1JXMnSh2NSofe6scnEDP5iORrxX
IhugQbwR0viODl5/ZbPWqCUMWDfUudbvJLF7ZeO7hNlA50/vu8DeBEznJdS3oeVo
nxCmK79TpmfjoDBNlzziysELF22LS3WtOTKewSoMXhWBF/L4HWE7O4M0+FCpB87c
yreY0kj/9l2YG3Q4hKG4kSlUwfWU9set0TCEIuGHfSSej6kqdyxzNgQsAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOwTJvTGSaIqICryHZOp+QGjIbZLMB8GA1UdIwQY
MBaAFHaOcRNM9nLWro9m/ETVvuYkzQKjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG81eEUwejJjdGF1ajJiOFJOVy01aVROQXFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYjgyYTQtNWE3Mi00NWE3LTk2ZmQt
OTQ4MGIxNjMzZjljLzEvZG81eEUwejJjdGF1ajJiOFJOVy01aVROQXFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hYjgyYTQtNWE3Mi00NWE3LTk2ZmQtOTQ4MGIxNjMzZjlj
LzEvZG81eEUwejJjdGF1ajJiOFJOVy01aVROQXFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfDKEfJ9k
8AmRbkKtYI1ypakWCYxxfOrnPvdztcDJ19vyuvcN6caEkP7GMsh8O/Bt3if0LMng
+pEw1pUEwftACwDbjVSbEB9sAMgGA0h1YZBpofJQRJ4WIzLTdiXPst3kWkB7H87+
bxhTWhcp3TNv4gcOLvDY1g8cFdPpfw5lx1GrtXS00w8qIm6U10g0XpbExEB23i59
TiZRAtU9torxAwlWeTbGXOuFoKTw19TKieXfBwlKUzet6If/JS+5KSqmrTvQTZfn
3+b1KF/VYDQ8/xQiM5QNvuMN9M+R1xgznhFCqxsGk23I8c+FlIhUtM4YseETw844
D9NAK9BHbtoEqA==
-----END CERTIFICATE-----