Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e65c73-eeb1-4064-b6d4-b56d0c53ff04/1/uSlkIXfSedGfRHiNubyPENZdm9c.mft
File:                     uSlkIXfSedGfRHiNubyPENZdm9c.mft (raw, json)
Hash identifier:          +P3FlcmFNqUgUj9q/PdIbSWp8Hz1bi1umvCukxFgIa0=
Subject key identifier:   D5:01:76:81:CE:C6:2C:F7:AA:7B:A2:27:53:80:71:9E:3D:89:28:B5
Authority key identifier: B9:29:64:21:77:D2:79:D1:9F:44:78:8D:B9:BC:8F:10:D6:5D:9B:D7
Certificate issuer:       /CN=b929642177d279d19f44788db9bc8f10d65d9bd7
Certificate serial:       019A72257DD71E860F00ACD463FA063ACC61
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uSlkIXfSedGfRHiNubyPENZdm9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/e65c73-eeb1-4064-b6d4-b56d0c53ff04/1/uSlkIXfSedGfRHiNubyPENZdm9c.mft
Manifest number:          A5
Signing time:             Tue 11 Nov 2025 09:00:50 +0000
Manifest this update:     Tue 11 Nov 2025 09:00:50 +0000
Manifest next update:     Wed 12 Nov 2025 09:00:50 +0000
Files and hashes:         1: uSlkIXfSedGfRHiNubyPENZdm9c.crl (hash: 7DAA+JK1h8u1x/92y+5Y/berpwKG3aCYNSKpjPROw5Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/e65c73-eeb1-4064-b6d4-b56d0c53ff04/1/uSlkIXfSedGfRHiNubyPENZdm9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/e65c73-eeb1-4064-b6d4-b56d0c53ff04/1/uSlkIXfSedGfRHiNubyPENZdm9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uSlkIXfSedGfRHiNubyPENZdm9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 09:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:72:25:7d:d7:1e:86:0f:00:ac:d4:63:fa:06:3a:cc:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b929642177d279d19f44788db9bc8f10d65d9bd7
        Validity
            Not Before: Nov 11 09:00:50 2025 GMT
            Not After : Nov 12 09:00:50 2025 GMT
        Subject: CN=d5017681cec62cf7aa7ba2275380719e3d8928b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:88:e5:00:7d:7f:31:47:88:b2:af:f1:1c:cf:
                    0e:4f:85:7e:38:d6:8e:11:eb:d1:ce:e2:c6:1d:c2:
                    5d:1c:27:b2:e8:f0:36:f3:59:e3:e3:07:d8:47:5c:
                    45:f2:93:4d:b5:95:59:05:40:57:32:47:7a:51:c5:
                    74:e3:d9:5a:a7:5f:54:09:02:c9:92:e1:69:ac:30:
                    55:45:52:bd:d0:b0:83:3d:17:16:f8:72:d3:69:58:
                    2d:64:ae:58:9f:c3:40:13:df:a6:37:72:b3:0a:80:
                    7f:f8:3a:c5:3b:7a:bd:e8:9b:fd:6d:6a:0c:26:e1:
                    58:4c:b2:f8:3d:3d:87:8e:f7:65:59:a7:02:df:ef:
                    9b:d6:82:87:b0:71:53:71:c8:b0:13:0a:9c:ee:15:
                    eb:7c:18:ab:df:46:3a:6b:fd:35:b9:7a:8e:0e:f7:
                    c9:7b:bf:2b:b7:35:93:7e:b1:31:5b:35:4f:2a:3c:
                    14:6f:5d:69:9e:15:ca:64:1a:05:9b:8c:27:e5:b8:
                    26:3d:9a:9b:65:be:8c:e3:f3:52:a8:bd:ba:29:f6:
                    fe:52:7b:ec:86:c7:64:78:5b:96:3d:35:9c:e0:32:
                    ee:bb:45:5f:87:e7:55:39:87:2b:7d:53:27:7b:bb:
                    11:83:1f:15:b0:00:74:2b:90:d9:a5:12:88:b7:44:
                    b2:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:01:76:81:CE:C6:2C:F7:AA:7B:A2:27:53:80:71:9E:3D:89:28:B5
            X509v3 Authority Key Identifier:
                keyid:B9:29:64:21:77:D2:79:D1:9F:44:78:8D:B9:BC:8F:10:D6:5D:9B:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uSlkIXfSedGfRHiNubyPENZdm9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e65c73-eeb1-4064-b6d4-b56d0c53ff04/1/uSlkIXfSedGfRHiNubyPENZdm9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e65c73-eeb1-4064-b6d4-b56d0c53ff04/1/uSlkIXfSedGfRHiNubyPENZdm9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:5f:04:23:d2:a7:43:c4:af:9a:a6:36:f5:73:b1:f2:ce:84:
         76:56:35:83:ef:4b:58:e9:75:e4:ed:c2:51:c7:53:5b:42:c6:
         91:29:55:36:63:25:34:6f:8e:e0:e3:ac:64:30:be:a2:43:8a:
         4d:6f:07:e2:2f:18:74:09:77:43:b0:fa:73:bd:8f:ab:41:3d:
         45:b8:8e:d7:57:b7:79:54:26:7d:b7:25:d9:05:4b:d5:09:51:
         b7:23:9c:96:fe:bc:d1:f8:5e:6b:fa:8d:14:68:a3:62:1b:fc:
         5c:41:d3:bc:9b:23:5d:69:a9:c3:a4:2d:f4:f2:51:4d:f7:d9:
         a4:d8:cf:53:38:db:2a:70:ad:ce:42:6e:71:5f:ab:04:2e:f3:
         19:0c:06:3c:59:d2:11:8b:f3:8b:e2:d7:80:16:cb:5d:03:4f:
         3a:b3:a6:36:61:a8:b4:14:9f:e8:95:48:aa:1c:68:29:c7:a0:
         9f:9d:2d:0a:a6:fe:5a:00:be:d5:70:08:45:3b:aa:26:20:6b:
         47:77:64:b1:c6:32:32:cf:e5:bc:42:80:a9:70:19:6c:ce:4a:
         82:7e:ce:66:6e:e1:a0:c9:71:41:f5:44:7d:c4:f1:45:84:b4:
         9f:89:03:de:1d:7c:99:24:71:84:79:72:b4:72:bb:ee:3d:fa:
         47:3a:88:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJX3XHoYPAKzUY/oGOsxhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5Mjk2NDIxNzdkMjc5ZDE5ZjQ0Nzg4ZGI5YmM4ZjEwZDY1
ZDliZDcwHhcNMjUxMTExMDkwMDUwWhcNMjUxMTEyMDkwMDUwWjAzMTEwLwYDVQQD
EyhkNTAxNzY4MWNlYzYyY2Y3YWE3YmEyMjc1MzgwNzE5ZTNkODkyOGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuojlAH1/MUeIsq/xHM8OT4V+ONaO
EevRzuLGHcJdHCey6PA281nj4wfYR1xF8pNNtZVZBUBXMkd6UcV049lap19UCQLJ
kuFprDBVRVK90LCDPRcW+HLTaVgtZK5Yn8NAE9+mN3KzCoB/+DrFO3q96Jv9bWoM
JuFYTLL4PT2HjvdlWacC3++b1oKHsHFTcciwEwqc7hXrfBir30Y6a/01uXqODvfJ
e78rtzWTfrExWzVPKjwUb11pnhXKZBoFm4wn5bgmPZqbZb6M4/NSqL26Kfb+Unvs
hsdkeFuWPTWc4DLuu0Vfh+dVOYcrfVMne7sRgx8VsAB0K5DZpRKIt0SyYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUBdoHOxiz3qnuiJ1OAcZ49iSi1MB8GA1UdIwQY
MBaAFLkpZCF30nnRn0R4jbm8jxDWXZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVNsa0lYZlNlZEdmUkhpTnVieVBFTlpkbTljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9lNjVjNzMtZWViMS00MDY0LWI2ZDQt
YjU2ZDBjNTNmZjA0LzEvdVNsa0lYZlNlZEdmUkhpTnVieVBFTlpkbTljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9lNjVjNzMtZWViMS00MDY0LWI2ZDQtYjU2ZDBjNTNmZjA0
LzEvdVNsa0lYZlNlZEdmUkhpTnVieVBFTlpkbTljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASV8EI9Kn
Q8SvmqY29XOx8s6EdlY1g+9LWOl15O3CUcdTW0LGkSlVNmMlNG+O4OOsZDC+okOK
TW8H4i8YdAl3Q7D6c72Pq0E9RbiO11e3eVQmfbcl2QVL1QlRtyOclv680fhea/qN
FGijYhv8XEHTvJsjXWmpw6Qt9PJRTffZpNjPUzjbKnCtzkJucV+rBC7zGQwGPFnS
EYvzi+LXgBbLXQNPOrOmNmGotBSf6JVIqhxoKcegn50tCqb+WgC+1XAIRTuqJiBr
R3dkscYyMs/lvEKAqXAZbM5Kgn7OZm7hoMlxQfVEfcTxRYS0n4kD3h18mSRxhHly
tHK77j36RzqIvA==
-----END CERTIFICATE-----