Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
File:                     xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json)
Hash identifier:          /tl3Zplvp1cY2hrO/rNLEV1pyhKu6z4Go2NC0DDhdKE=
Subject key identifier:   83:C9:97:55:44:03:DA:46:F6:49:D9:1A:23:B8:97:D6:09:6E:F3:81
Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
Certificate issuer:       /CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Certificate serial:       019922FA49DAAF9664CD6C5F52894DA9CDD1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
Manifest number:          0743
Signing time:             Sun 07 Sep 2025 07:00:52 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:52 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:52 +0000
Files and hashes:         1: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: OueMJwSCAYnkGNhPf6GmU1FYJOLTC/LBx6+IRPXKlQc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:49:da:af:96:64:cd:6c:5f:52:89:4d:a9:cd:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b
        Validity
            Not Before: Sep  7 07:00:52 2025 GMT
            Not After : Sep  8 07:00:52 2025 GMT
        Subject: CN=83c997554403da46f649d91a23b897d6096ef381
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:23:c7:da:9a:ce:9e:41:4b:96:6a:66:28:58:
                    62:0c:9c:ae:77:86:9c:b8:d2:c5:95:50:cd:35:bd:
                    f7:93:7b:c3:43:11:35:4f:70:69:62:29:03:46:7e:
                    df:f1:74:79:ce:b1:5f:18:25:e9:ae:18:ed:1c:51:
                    11:1d:52:85:1a:a1:43:0d:d0:4d:1b:e5:00:a8:c6:
                    0f:96:14:66:5b:d5:09:f5:f2:6f:14:34:7c:f1:5c:
                    3b:b8:03:6d:2f:f6:d7:48:fc:89:44:fe:8e:f3:55:
                    c1:90:bf:20:92:b8:46:e9:c9:f4:6f:7a:7d:0f:2e:
                    d9:a0:51:c2:84:87:1c:18:73:88:f0:e4:18:c7:b0:
                    60:a0:98:e6:65:6a:ce:91:34:5a:f6:6d:d4:d1:d7:
                    af:aa:68:e7:a2:f0:c5:09:26:e7:26:8d:cc:5a:50:
                    22:f5:fa:5c:6f:03:7d:83:d6:e6:31:8c:9e:82:d6:
                    3c:eb:13:3c:96:e1:1f:ea:12:b6:55:14:08:55:60:
                    99:6c:5b:de:12:e0:ff:95:89:13:2f:cf:52:13:e3:
                    aa:9e:1a:1c:be:5f:d6:cf:02:b0:f0:e4:e6:a7:e6:
                    14:ce:78:05:f7:32:33:42:83:83:1a:b6:dd:df:41:
                    6e:f8:31:15:ff:ae:9a:42:bc:e9:ed:70:d8:c6:29:
                    1c:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:C9:97:55:44:03:DA:46:F6:49:D9:1A:23:B8:97:D6:09:6E:F3:81
            X509v3 Authority Key Identifier:
                keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:65:9f:95:a6:e3:7b:b2:a9:63:79:01:74:00:0f:be:48:a7:
         dd:ca:5c:50:c2:c6:1f:e5:34:e8:21:7c:03:fd:5b:58:e9:2f:
         0b:36:14:0b:78:5b:8f:a3:60:7a:44:63:cb:57:32:0a:f2:19:
         89:48:d8:92:b4:57:a1:97:62:df:0f:f5:b0:e2:76:40:02:94:
         4a:f2:8b:09:d0:58:38:c4:8e:25:89:7d:29:59:d5:4d:19:e5:
         e7:50:c3:ff:75:aa:87:f9:84:c1:58:02:db:e2:d9:f6:c7:32:
         71:6f:c3:a8:96:98:12:ef:0d:8f:3f:cf:0f:e4:b1:81:77:65:
         79:e8:eb:23:c3:c2:e2:cc:0c:90:64:18:b3:18:31:c3:81:6c:
         cf:a7:ce:95:79:27:2a:77:59:45:07:3f:95:ba:51:f7:63:32:
         55:8e:3c:b7:da:8b:3c:57:f2:57:48:9d:e2:9c:fb:e7:0e:61:
         64:16:aa:80:2a:51:1b:fc:ab:b3:40:7d:a9:6c:90:f7:5e:48:
         71:8d:d1:bd:83:3b:c4:29:d4:61:e4:67:9b:76:cb:f3:26:e3:
         86:36:bb:f2:d9:ca:98:1b:3e:64:d6:df:7b:9f:0b:c6:7f:35:
         dd:7d:b1:b9:0e:1c:7b:87:90:d5:7e:51:f3:19:6b:4b:12:21:
         7e:0e:e7:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+knar5ZkzWxfUolNqc3RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2YzAwYzU1M2E1NGRhMDViOTM2MzVhNjU0Y2FkYTAzYzZk
OWRmMmIwHhcNMjUwOTA3MDcwMDUyWhcNMjUwOTA4MDcwMDUyWjAzMTEwLwYDVQQD
Eyg4M2M5OTc1NTQ0MDNkYTQ2ZjY0OWQ5MWEyM2I4OTdkNjA5NmVmMzgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyPH2prOnkFLlmpmKFhiDJyud4ac
uNLFlVDNNb33k3vDQxE1T3BpYikDRn7f8XR5zrFfGCXprhjtHFERHVKFGqFDDdBN
G+UAqMYPlhRmW9UJ9fJvFDR88Vw7uANtL/bXSPyJRP6O81XBkL8gkrhG6cn0b3p9
Dy7ZoFHChIccGHOI8OQYx7BgoJjmZWrOkTRa9m3U0devqmjnovDFCSbnJo3MWlAi
9fpcbwN9g9bmMYyegtY86xM8luEf6hK2VRQIVWCZbFveEuD/lYkTL89SE+Oqnhoc
vl/WzwKw8OTmp+YUzngF9zIzQoODGrbd30Fu+DEV/66aQrzp7XDYxikc/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIPJl1VEA9pG9knZGiO4l9YJbvOBMB8GA1UdIwQY
MBaAFMbADFU6VNoFuTY1plTK2gPG2d8rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82ZmRhMWQtYjk2Yi00Y2Y5LWJiNjgt
M2ZiZGQ5ZGJiZDkyLzEveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82ZmRhMWQtYjk2Yi00Y2Y5LWJiNjgtM2ZiZGQ5ZGJiZDky
LzEveHNBTVZUcFUyZ1c1TmpXbVZNcmFBOGJaM3lzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdmWflabj
e7KpY3kBdAAPvkin3cpcUMLGH+U06CF8A/1bWOkvCzYUC3hbj6NgekRjy1cyCvIZ
iUjYkrRXoZdi3w/1sOJ2QAKUSvKLCdBYOMSOJYl9KVnVTRnl51DD/3Wqh/mEwVgC
2+LZ9scycW/DqJaYEu8Njz/PD+SxgXdleejrI8PC4swMkGQYsxgxw4Fsz6fOlXkn
KndZRQc/lbpR92MyVY48t9qLPFfyV0id4pz75w5hZBaqgCpRG/yrs0B9qWyQ915I
cY3RvYM7xCnUYeRnm3bL8ybjhja78tnKmBs+ZNbfe58Lxn813X2xuQ4ce4eQ1X5R
8xlrSxIhfg7n7w==
-----END CERTIFICATE-----