Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft
File:                     q7lESdTSRidxdzvAimJFB9pRKw0.mft (raw, json)
Hash identifier:          pnM48QeGD4+kRRTQAApB4Qr4S2sh5EYEp3pGNOSCxlw=
Subject key identifier:   05:E2:A7:57:AA:2E:5D:D9:EC:39:56:0B:35:80:AF:69:BE:3F:35:9F
Authority key identifier: AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D
Certificate issuer:       /CN=abb94449d4d2462771773bc08a624507da512b0d
Certificate serial:       0199228C9F88BDF2864065478734195AC390
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft
Manifest number:          0756
Signing time:             Sun 07 Sep 2025 05:01:05 +0000
Manifest this update:     Sun 07 Sep 2025 05:01:05 +0000
Manifest next update:     Mon 08 Sep 2025 05:01:05 +0000
Files and hashes:         1: q7lESdTSRidxdzvAimJFB9pRKw0.crl (hash: XKkkDIUAGdIE+iYr/LVq+Uk6RtC7ZVL5D74K/GUequk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8c:9f:88:bd:f2:86:40:65:47:87:34:19:5a:c3:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=abb94449d4d2462771773bc08a624507da512b0d
        Validity
            Not Before: Sep  7 05:01:05 2025 GMT
            Not After : Sep  8 05:01:05 2025 GMT
        Subject: CN=05e2a757aa2e5dd9ec39560b3580af69be3f359f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:bb:9e:ae:bc:86:0a:d3:92:77:34:bf:29:94:
                    5e:10:48:c1:f2:09:71:d8:eb:20:53:9a:70:42:2f:
                    d7:b1:44:b6:f1:90:5b:6d:e0:1e:20:1e:35:4e:8d:
                    13:e7:ab:74:84:bf:79:05:72:1b:99:fe:d5:a1:8f:
                    32:9c:09:41:31:c3:69:4f:46:59:40:60:df:f4:e6:
                    7f:5e:3d:8c:1e:62:6f:88:80:05:92:c4:fe:20:e7:
                    48:32:62:fe:cd:3f:14:3a:d5:9f:96:47:c5:bc:a5:
                    1e:ce:a4:21:d4:91:c3:87:ff:7d:4e:62:20:db:8c:
                    18:d1:eb:91:59:65:b6:70:c1:20:95:6a:e5:bd:9f:
                    c4:04:3d:db:c5:45:90:60:44:0f:8b:3f:52:02:49:
                    b1:25:35:6a:d0:04:e4:6d:b6:11:b8:03:f6:eb:d6:
                    a9:6d:f8:23:7a:81:5b:12:3e:2f:c2:0c:58:2b:90:
                    fa:ee:4b:41:53:24:a9:bd:1f:e3:90:46:f5:a4:69:
                    2c:b6:26:db:46:01:54:b5:29:cd:fd:d2:d3:94:54:
                    bc:36:12:00:58:54:d7:20:d4:bf:cf:16:5c:96:3e:
                    08:00:67:b7:c1:f1:ce:a6:e5:98:94:98:48:a7:99:
                    5b:c7:4b:2c:b9:0b:a6:77:76:e0:80:61:c7:ad:38:
                    91:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:E2:A7:57:AA:2E:5D:D9:EC:39:56:0B:35:80:AF:69:BE:3F:35:9F
            X509v3 Authority Key Identifier:
                keyid:AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:7f:6e:bd:84:16:50:dd:86:fa:46:9b:38:bc:df:77:56:91:
         ed:79:f2:a4:d5:0b:3c:d3:28:ea:e9:a3:e2:7d:6f:ae:ef:97:
         49:e5:c5:f5:4c:82:c3:01:1d:2c:ee:7c:6a:0c:56:5f:f5:ca:
         11:67:a2:0a:9e:5f:fd:73:b5:eb:4a:2f:3f:7f:50:2b:25:67:
         5a:b4:8e:bf:72:83:eb:95:38:8b:eb:45:ed:42:e6:71:c9:a8:
         d5:7d:aa:59:d5:e0:6e:9c:da:8d:99:6d:7d:02:ff:16:60:d3:
         ff:8c:cf:47:a9:a0:f2:60:c2:0f:4a:ec:21:fb:eb:3a:78:40:
         cf:42:c5:d2:c5:6d:cf:4a:69:de:10:1a:17:fb:72:9d:fe:ab:
         8f:00:cf:5b:57:30:29:da:ae:79:74:30:a1:38:0a:50:ea:ae:
         a8:ea:61:dd:96:bd:17:9e:2d:a8:ca:7d:f3:78:cb:47:19:d6:
         33:e9:52:06:a3:47:0d:a9:d7:f0:a1:3b:f7:0f:07:e7:a1:bf:
         03:f9:85:72:76:0a:cd:a0:37:d8:3d:ba:71:4f:54:6a:07:35:
         1c:c7:9c:9a:56:f1:d2:38:f6:18:a1:ef:dc:37:25:64:11:54:
         13:ff:16:54:8a:77:25:49:c9:2c:74:66:1f:62:b1:c7:6d:8b:
         0c:91:6e:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijJ+IvfKGQGVHhzQZWsOQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYjk0NDQ5ZDRkMjQ2Mjc3MTc3M2JjMDhhNjI0NTA3ZGE1
MTJiMGQwHhcNMjUwOTA3MDUwMTA1WhcNMjUwOTA4MDUwMTA1WjAzMTEwLwYDVQQD
EygwNWUyYTc1N2FhMmU1ZGQ5ZWMzOTU2MGIzNTgwYWY2OWJlM2YzNTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLuerryGCtOSdzS/KZReEEjB8glx
2OsgU5pwQi/XsUS28ZBbbeAeIB41To0T56t0hL95BXIbmf7VoY8ynAlBMcNpT0ZZ
QGDf9OZ/Xj2MHmJviIAFksT+IOdIMmL+zT8UOtWflkfFvKUezqQh1JHDh/99TmIg
24wY0euRWWW2cMEglWrlvZ/EBD3bxUWQYEQPiz9SAkmxJTVq0ATkbbYRuAP269ap
bfgjeoFbEj4vwgxYK5D67ktBUySpvR/jkEb1pGkstibbRgFUtSnN/dLTlFS8NhIA
WFTXINS/zxZclj4IAGe3wfHOpuWYlJhIp5lbx0ssuQumd3bggGHHrTiR8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAXip1eqLl3Z7DlWCzWAr2m+PzWfMB8GA1UdIwQY
MBaAFKu5REnU0kYncXc7wIpiRQfaUSsNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTdsRVNkVFNSaWR4ZHp2QWltSkZCOXBSS3cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS82MjVkNzgtMDE5Yy00MzAxLWJhNzgt
NzBjMGMxNWJjODBhLzEvcTdsRVNkVFNSaWR4ZHp2QWltSkZCOXBSS3cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS82MjVkNzgtMDE5Yy00MzAxLWJhNzgtNzBjMGMxNWJjODBh
LzEvcTdsRVNkVFNSaWR4ZHp2QWltSkZCOXBSS3cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhX9uvYQW
UN2G+kabOLzfd1aR7XnypNULPNMo6umj4n1vru+XSeXF9UyCwwEdLO58agxWX/XK
EWeiCp5f/XO160ovP39QKyVnWrSOv3KD65U4i+tF7ULmccmo1X2qWdXgbpzajZlt
fQL/FmDT/4zPR6mg8mDCD0rsIfvrOnhAz0LF0sVtz0pp3hAaF/tynf6rjwDPW1cw
KdqueXQwoTgKUOquqOph3Za9F54tqMp983jLRxnWM+lSBqNHDanX8KE79w8H56G/
A/mFcnYKzaA32D26cU9Uagc1HMecmlbx0jj2GKHv3DclZBFUE/8WVIp3JUnJLHRm
H2Kxx22LDJFurw==
-----END CERTIFICATE-----