Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft
File:                     bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft (raw, json)
Hash identifier:          vazGPPq0EzWGpb5foskqglR9ltzgz9DKqjlbpsSR+yQ=
Subject key identifier:   78:50:5B:1F:66:9D:7A:52:73:B1:79:9D:75:D8:87:95:AB:55:81:1E
Authority key identifier: 6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54
Certificate issuer:       /CN=6d5700916f90983bd8e89cd05fe629ec183bfa54
Certificate serial:       019923A0A25BEC24E772F804DEB43D8E0EF4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft
Manifest number:          0ADC
Signing time:             Sun 07 Sep 2025 10:02:33 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:33 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:33 +0000
Files and hashes:         1: bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl (hash: swnPUF+zjbS6Lfqhic2+lWczB/5XNnAJjZsdDqnBgN4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:a2:5b:ec:24:e7:72:f8:04:de:b4:3d:8e:0e:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d5700916f90983bd8e89cd05fe629ec183bfa54
        Validity
            Not Before: Sep  7 10:02:33 2025 GMT
            Not After : Sep  8 10:02:33 2025 GMT
        Subject: CN=78505b1f669d7a5273b1799d75d88795ab55811e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:7f:09:f1:eb:89:66:e3:1a:bd:3c:fb:71:0d:
                    86:4d:98:5f:9d:a6:b3:6c:28:10:dd:51:0a:57:b2:
                    90:38:24:e7:1a:57:c8:cc:e0:9f:0c:07:f4:71:22:
                    36:1e:5a:3b:83:4b:07:65:27:c6:cf:18:ef:71:24:
                    e9:9e:9b:aa:62:6b:7b:3f:db:fa:e8:64:9a:a1:19:
                    fb:db:f4:36:31:d5:4b:b0:3e:f3:4f:91:76:2f:4a:
                    30:59:59:b8:85:b1:a2:cc:e6:e4:f1:5d:4f:f9:14:
                    2a:cb:1b:b6:d3:0d:e1:0a:31:fc:5b:0b:f5:d7:98:
                    13:ae:cb:e9:cd:4b:96:05:08:ed:17:cc:f7:b4:f9:
                    95:f5:a8:2a:c4:96:77:80:ee:6c:4b:13:28:9a:27:
                    ae:41:f8:ba:a9:db:01:6b:d1:d7:6d:9b:45:33:d0:
                    12:c0:bd:5c:a7:ab:ac:dc:22:0a:46:54:8f:9a:bf:
                    13:66:72:b2:25:69:68:b9:7d:87:f5:71:8d:d4:a4:
                    4b:a8:6e:7d:9f:e9:79:72:44:a5:a8:27:e5:e6:25:
                    71:3f:6a:7a:53:48:dd:86:ad:a1:dd:7e:e0:3c:90:
                    f3:a1:2c:b8:c5:e4:8c:e0:cf:24:20:f9:f1:13:1c:
                    84:6b:32:da:07:46:22:41:00:e8:ec:dc:a9:2c:9a:
                    34:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:50:5B:1F:66:9D:7A:52:73:B1:79:9D:75:D8:87:95:AB:55:81:1E
            X509v3 Authority Key Identifier:
                keyid:6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:b3:08:47:65:fa:28:7a:95:c9:96:7d:c5:7a:b6:0d:2d:2c:
         7d:c9:b5:eb:83:62:19:bc:bb:35:64:35:f7:d7:01:a5:10:44:
         e7:ff:29:61:9f:8d:ab:c4:1b:dc:66:97:3e:3a:2a:41:83:7a:
         2b:fa:69:a6:cb:f2:a6:62:7f:5a:79:88:47:a5:4d:cb:ed:fe:
         d3:a9:52:8b:41:57:6c:70:2b:21:0a:ae:02:19:b1:f1:32:dc:
         ad:3c:0d:1f:7d:0a:f1:31:10:26:de:b2:e3:a3:22:f6:43:ca:
         c4:83:46:06:3d:e8:44:c9:e3:2d:ca:ed:87:85:a9:62:e9:bd:
         41:bb:7e:a4:29:93:59:d3:1f:1f:90:6d:1b:d9:48:83:8e:54:
         9d:58:66:65:26:56:45:00:8d:a2:a9:a7:1d:32:83:71:18:1a:
         ea:43:5c:19:1d:9c:3c:34:53:c8:5e:1e:91:6d:ff:62:72:4e:
         fa:0e:18:44:0c:f8:5c:81:b5:cd:82:10:83:1a:31:9e:1a:13:
         4c:8c:d3:93:82:ac:83:44:88:0d:26:d1:f5:3e:9b:53:b4:3b:
         a0:9e:c5:b1:11:a0:5c:d3:fa:f0:97:09:04:f1:1b:2b:e9:8d:
         bc:37:22:42:5c:8e:e7:db:c7:67:6b:8a:69:cf:59:02:cc:56:
         6b:e3:64:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoKJb7CTncvgE3rQ9jg70MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNTcwMDkxNmY5MDk4M2JkOGU4OWNkMDVmZTYyOWVjMTgz
YmZhNTQwHhcNMjUwOTA3MTAwMjMzWhcNMjUwOTA4MTAwMjMzWjAzMTEwLwYDVQQD
Eyg3ODUwNWIxZjY2OWQ3YTUyNzNiMTc5OWQ3NWQ4ODc5NWFiNTU4MTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA238J8euJZuMavTz7cQ2GTZhfnaaz
bCgQ3VEKV7KQOCTnGlfIzOCfDAf0cSI2Hlo7g0sHZSfGzxjvcSTpnpuqYmt7P9v6
6GSaoRn72/Q2MdVLsD7zT5F2L0owWVm4hbGizObk8V1P+RQqyxu20w3hCjH8Wwv1
15gTrsvpzUuWBQjtF8z3tPmV9agqxJZ3gO5sSxMomieuQfi6qdsBa9HXbZtFM9AS
wL1cp6us3CIKRlSPmr8TZnKyJWlouX2H9XGN1KRLqG59n+l5ckSlqCfl5iVxP2p6
U0jdhq2h3X7gPJDzoSy4xeSM4M8kIPnxExyEazLaB0YiQQDo7NypLJo0twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHhQWx9mnXpSc7F5nXXYh5WrVYEeMB8GA1UdIwQY
MBaAFG1XAJFvkJg72Oic0F/mKewYO/pUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85YmZkYjYtMDhiNy00YjFkLThhODgt
OTI2YjM0ODE0MTMwLzEvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi85YmZkYjYtMDhiNy00YjFkLThhODgtOTI2YjM0ODE0MTMw
LzEvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsLMIR2X6
KHqVyZZ9xXq2DS0sfcm164NiGby7NWQ199cBpRBE5/8pYZ+Nq8Qb3GaXPjoqQYN6
K/pppsvypmJ/WnmIR6VNy+3+06lSi0FXbHArIQquAhmx8TLcrTwNH30K8TEQJt6y
46Mi9kPKxINGBj3oRMnjLcrth4WpYum9Qbt+pCmTWdMfH5BtG9lIg45UnVhmZSZW
RQCNoqmnHTKDcRga6kNcGR2cPDRTyF4ekW3/YnJO+g4YRAz4XIG1zYIQgxoxnhoT
TIzTk4Ksg0SIDSbR9T6bU7Q7oJ7FsRGgXNP68JcJBPEbK+mNvDciQlyO59vHZ2uK
ac9ZAsxWa+NkDg==
-----END CERTIFICATE-----