Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
File:                     3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft (raw, json)
Hash identifier:          46lbUzAC0OmrXGUbAx+rhTNuX5NeUiMdOWPwKaHKBug=
Subject key identifier:   F6:23:9D:57:D4:09:A2:FE:60:7C:EF:E3:50:55:82:2D:B1:82:80:02
Authority key identifier: DD:0B:83:6F:D7:00:3F:83:16:04:A0:3F:23:44:7A:7F:2F:49:07:B3
Certificate issuer:       /CN=dd0b836fd7003f831604a03f23447a7f2f4907b3
Certificate serial:       019918097CEA1620C6BB01A635C7FF4ABA06
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
Manifest number:          0792
Signing time:             Fri 05 Sep 2025 04:01:38 +0000
Manifest this update:     Fri 05 Sep 2025 04:01:38 +0000
Manifest next update:     Sat 06 Sep 2025 04:01:38 +0000
Files and hashes:         1: 3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl (hash: s/nFSa+9vvXKISKAdf8hEfwgjeLWSuCi9o9JgFuHpl8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:09:7c:ea:16:20:c6:bb:01:a6:35:c7:ff:4a:ba:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd0b836fd7003f831604a03f23447a7f2f4907b3
        Validity
            Not Before: Sep  5 04:01:38 2025 GMT
            Not After : Sep  6 04:01:38 2025 GMT
        Subject: CN=f6239d57d409a2fe607cefe35055822db1828002
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:6b:86:c3:88:cb:84:f4:1d:54:62:28:65:c7:
                    38:de:49:80:0f:fa:97:45:53:57:9d:c3:88:25:3c:
                    9d:68:9c:4c:1c:72:1d:9a:22:37:1a:38:2a:c7:f9:
                    a9:48:48:ae:61:7e:d1:59:a3:b6:8a:8c:06:4d:d5:
                    f7:4a:e8:79:33:16:c0:0c:c6:b3:be:9b:22:e2:26:
                    d6:b8:b6:21:7a:9a:34:48:5c:ea:f7:14:42:7b:0f:
                    81:4b:b9:b8:18:11:bd:c4:1f:94:14:6f:2c:f0:fe:
                    aa:08:30:2b:30:52:0c:f7:75:a7:11:6a:72:fc:d7:
                    71:a7:bc:c5:ee:c8:ae:fb:c6:a7:76:f6:b8:ca:68:
                    7c:20:db:a2:cc:85:33:0f:5f:c5:0d:18:3d:1a:f3:
                    f7:ea:7b:29:80:10:4c:93:e6:e1:4c:8d:cd:de:77:
                    3f:7d:5a:6f:7e:a1:e5:6a:2d:07:71:f5:7d:bb:20:
                    b1:14:88:79:88:67:e3:46:b0:00:5b:ec:8c:b1:29:
                    6e:76:7b:d6:9e:45:c1:89:90:c1:44:af:b9:f8:72:
                    9b:c8:8f:79:0d:36:eb:ab:7d:c0:0a:f1:9a:72:52:
                    1c:b0:15:e7:e8:b6:26:c5:99:55:36:e5:3a:62:75:
                    9e:20:44:57:1f:a1:43:77:b6:ca:42:ee:9e:07:49:
                    d6:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:23:9D:57:D4:09:A2:FE:60:7C:EF:E3:50:55:82:2D:B1:82:80:02
            X509v3 Authority Key Identifier:
                keyid:DD:0B:83:6F:D7:00:3F:83:16:04:A0:3F:23:44:7A:7F:2F:49:07:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:3a:47:60:20:13:6d:58:b7:af:18:f7:e9:b1:9b:b1:c5:81:
         f8:4e:63:c6:59:ef:6e:6d:97:46:ec:44:3d:ff:b5:1d:de:b3:
         fc:47:52:07:e0:f2:73:92:c3:23:ea:0c:22:3f:09:65:d3:cf:
         a9:31:ce:7a:6a:51:c8:4a:53:65:03:91:c2:35:fa:a5:b0:45:
         c5:a4:44:6f:c9:5c:d6:9c:51:0f:6d:2c:f5:56:ea:5d:96:2b:
         6d:09:8c:a4:50:c1:34:b0:87:11:52:f0:79:0e:7f:e0:4c:f6:
         aa:c9:01:b8:6a:73:08:3f:ad:d7:22:10:f6:cd:31:92:7a:7d:
         1c:01:a9:15:db:23:54:2c:8b:ef:fb:9b:3c:31:01:e6:ce:21:
         0c:59:b0:04:81:f6:25:90:22:48:58:41:ee:b0:7e:ab:80:24:
         e3:02:bd:d6:73:57:ae:24:b1:92:9b:1a:8f:85:b1:a0:44:dd:
         8d:eb:1d:e5:f9:48:ba:1c:19:32:ab:af:ce:3d:7b:fe:a2:b5:
         26:26:e6:3d:22:92:df:75:00:cc:21:41:96:9d:1f:0e:6a:f0:
         e3:01:21:99:65:8f:76:3b:9c:96:41:00:91:e7:06:6c:21:5a:
         b0:1e:8d:d0:b8:75:34:99:b9:0e:d2:35:bd:94:13:ea:97:8c:
         c3:fb:f2:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYCXzqFiDGuwGmNcf/SroGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMGI4MzZmZDcwMDNmODMxNjA0YTAzZjIzNDQ3YTdmMmY0
OTA3YjMwHhcNMjUwOTA1MDQwMTM4WhcNMjUwOTA2MDQwMTM4WjAzMTEwLwYDVQQD
EyhmNjIzOWQ1N2Q0MDlhMmZlNjA3Y2VmZTM1MDU1ODIyZGIxODI4MDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2uGw4jLhPQdVGIoZcc43kmAD/qX
RVNXncOIJTydaJxMHHIdmiI3Gjgqx/mpSEiuYX7RWaO2iowGTdX3Suh5MxbADMaz
vpsi4ibWuLYhepo0SFzq9xRCew+BS7m4GBG9xB+UFG8s8P6qCDArMFIM93WnEWpy
/Ndxp7zF7siu+8andva4ymh8INuizIUzD1/FDRg9GvP36nspgBBMk+bhTI3N3nc/
fVpvfqHlai0HcfV9uyCxFIh5iGfjRrAAW+yMsSludnvWnkXBiZDBRK+5+HKbyI95
DTbrq33ACvGaclIcsBXn6LYmxZlVNuU6YnWeIERXH6FDd7bKQu6eB0nWHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPYjnVfUCaL+YHzv41BVgi2xgoACMB8GA1UdIwQY
MBaAFN0Lg2/XAD+DFgSgPyNEen8vSQezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1F1RGI5Y0FQNE1XQktBX0kwUjZmeTlKQjdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85NjNjMmMtMDk5My00NjIxLThiMjAt
ZGEwMzIzNTNiNzlmLzEvM1F1RGI5Y0FQNE1XQktBX0kwUjZmeTlKQjdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS85NjNjMmMtMDk5My00NjIxLThiMjAtZGEwMzIzNTNiNzlm
LzEvM1F1RGI5Y0FQNE1XQktBX0kwUjZmeTlKQjdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAejpHYCAT
bVi3rxj36bGbscWB+E5jxlnvbm2XRuxEPf+1Hd6z/EdSB+Dyc5LDI+oMIj8JZdPP
qTHOempRyEpTZQORwjX6pbBFxaREb8lc1pxRD20s9VbqXZYrbQmMpFDBNLCHEVLw
eQ5/4Ez2qskBuGpzCD+t1yIQ9s0xknp9HAGpFdsjVCyL7/ubPDEB5s4hDFmwBIH2
JZAiSFhB7rB+q4Ak4wK91nNXriSxkpsaj4WxoETdjesd5flIuhwZMquvzj17/qK1
JibmPSKS33UAzCFBlp0fDmrw4wEhmWWPdjuclkEAkecGbCFasB6N0Lh1NJm5DtI1
vZQT6peMw/vy8g==
-----END CERTIFICATE-----