Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
File:                     _e3ZOtbKqmCtSfD5N32Kq_h34ts.mft (raw, json)
Hash identifier:          ujW7wFoCiffeqoag3iThPWnP7Tg3iwe832iPO12Gwxk=
Subject key identifier:   EC:88:9D:91:A9:0B:2E:85:26:27:F9:08:C0:A1:83:1B:B5:E9:50:1D
Authority key identifier: FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB
Certificate issuer:       /CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
Certificate serial:       0199FBEA9115DBBD9E65EE372ED3A0F4A75C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
Manifest number:          0861
Signing time:             Sun 19 Oct 2025 10:01:17 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:17 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:17 +0000
Files and hashes:         1: _e3ZOtbKqmCtSfD5N32Kq_h34ts.crl (hash: HFqro1ct9WSqQ2p1ISnZyRW/rJ+lLNXc6lxrKjWEMgI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:91:15:db:bd:9e:65:ee:37:2e:d3:a0:f4:a7:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fdedd93ad6caaa60ad49f0f9377d8aabf877e2db
        Validity
            Not Before: Oct 19 10:01:17 2025 GMT
            Not After : Oct 20 10:01:17 2025 GMT
        Subject: CN=ec889d91a90b2e852627f908c0a1831bb5e9501d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:a7:e7:3f:20:40:e1:25:b7:eb:b8:6e:6c:a1:
                    9e:72:c8:4e:98:cb:e9:45:1f:3e:98:31:39:e5:b7:
                    47:8b:9d:98:9b:a1:9d:dc:7c:72:e8:9a:2f:ec:78:
                    42:c8:c7:aa:ac:e6:98:d8:0b:6e:e6:d0:dd:d0:e7:
                    5b:aa:c0:9f:0e:63:16:42:5a:14:4b:e9:68:7d:90:
                    a7:82:07:d0:30:81:0c:44:6c:6b:65:b0:83:5f:3a:
                    32:c1:57:03:d2:30:e9:bf:de:20:5f:11:a9:96:0c:
                    38:8c:5b:52:f0:47:3c:c0:2f:42:db:e5:dc:c8:08:
                    00:06:59:1f:fd:4c:59:13:68:e9:f2:6b:ec:e7:f9:
                    f5:73:74:14:b6:a5:89:9e:a1:96:3f:e2:d9:c6:fe:
                    cb:fd:3d:21:e8:8c:87:86:46:ae:66:23:cd:77:08:
                    d7:89:6f:82:f7:5e:78:8d:32:da:f3:50:0c:4e:7f:
                    b3:4d:6b:2f:64:a0:14:a5:b0:e8:76:fe:44:39:57:
                    d4:53:95:69:9c:fa:9a:15:51:92:c3:37:8b:9e:1a:
                    61:04:54:d9:d6:8d:ed:de:d9:17:05:07:01:90:01:
                    72:b8:d7:4e:e0:ad:95:e3:06:ed:e3:5e:5b:89:2e:
                    0a:26:8b:ae:77:9c:ce:09:36:e0:36:a4:a3:ea:b3:
                    24:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:88:9D:91:A9:0B:2E:85:26:27:F9:08:C0:A1:83:1B:B5:E9:50:1D
            X509v3 Authority Key Identifier:
                keyid:FD:ED:D9:3A:D6:CA:AA:60:AD:49:F0:F9:37:7D:8A:AB:F8:77:E2:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_e3ZOtbKqmCtSfD5N32Kq_h34ts.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/00b426-128b-4f9c-a3af-bdb5f16d46f0/1/_e3ZOtbKqmCtSfD5N32Kq_h34ts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:cd:98:4b:0b:99:d3:cd:77:de:17:ba:e6:cf:8a:96:7f:a5:
         62:d8:d8:51:28:d3:95:6b:0e:9d:5d:1f:93:81:ea:b3:24:ca:
         83:31:25:be:75:d4:92:41:9d:e4:7a:53:4e:c5:90:b8:ce:34:
         62:b9:d3:77:3d:2a:fd:36:d8:a7:23:f2:53:35:06:ce:ed:1c:
         4b:6f:15:d2:15:cd:ba:7d:a5:3e:f3:04:27:db:0c:8e:7f:dc:
         16:d2:27:98:09:03:a7:55:7e:94:4a:e3:91:4f:2b:b1:90:d3:
         89:28:76:cb:fc:cd:b5:4e:27:dc:5b:ec:78:a3:03:a3:d5:e9:
         14:8b:52:ae:52:d9:0f:b0:de:14:69:83:e4:88:9c:46:e0:31:
         ba:7a:cf:5a:50:93:c6:40:95:74:b9:be:87:61:61:04:30:b7:
         5f:2b:44:b1:1c:0b:a9:14:48:8b:38:bc:02:64:72:ff:66:41:
         28:79:05:64:eb:05:d4:a1:14:6c:2e:48:a7:d9:92:81:5e:87:
         e4:59:4d:da:dc:1c:36:91:d9:3d:bf:49:58:7e:7d:49:bb:f0:
         a6:a4:44:fe:1e:4b:44:bb:60:65:70:e7:3c:4e:fc:cf:7f:5b:
         4a:82:95:65:30:e4:bc:41:63:b4:4c:74:ae:da:e7:05:f7:12:
         9b:64:4c:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76pEV272eZe43LtOg9KdcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkZWRkOTNhZDZjYWFhNjBhZDQ5ZjBmOTM3N2Q4YWFiZjg3
N2UyZGIwHhcNMjUxMDE5MTAwMTE3WhcNMjUxMDIwMTAwMTE3WjAzMTEwLwYDVQQD
EyhlYzg4OWQ5MWE5MGIyZTg1MjYyN2Y5MDhjMGExODMxYmI1ZTk1MDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKfnPyBA4SW367hubKGecshOmMvp
RR8+mDE55bdHi52Ym6Gd3Hxy6Jov7HhCyMeqrOaY2Atu5tDd0OdbqsCfDmMWQloU
S+lofZCnggfQMIEMRGxrZbCDXzoywVcD0jDpv94gXxGplgw4jFtS8Ec8wC9C2+Xc
yAgABlkf/UxZE2jp8mvs5/n1c3QUtqWJnqGWP+LZxv7L/T0h6IyHhkauZiPNdwjX
iW+C9154jTLa81AMTn+zTWsvZKAUpbDodv5EOVfUU5VpnPqaFVGSwzeLnhphBFTZ
1o3t3tkXBQcBkAFyuNdO4K2V4wbt415biS4KJouud5zOCTbgNqSj6rMknwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyInZGpCy6FJif5CMChgxu16VAdMB8GA1UdIwQY
MBaAFP3t2TrWyqpgrUnw+Td9iqv4d+LbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2UzWk90YktxbUN0U2ZENU4zMktxX2gzNHRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8wMGI0MjYtMTI4Yi00ZjljLWEzYWYt
YmRiNWYxNmQ0NmYwLzEvX2UzWk90YktxbUN0U2ZENU4zMktxX2gzNHRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8wMGI0MjYtMTI4Yi00ZjljLWEzYWYtYmRiNWYxNmQ0NmYw
LzEvX2UzWk90YktxbUN0U2ZENU4zMktxX2gzNHRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbM2YSwuZ
08133he65s+Kln+lYtjYUSjTlWsOnV0fk4HqsyTKgzElvnXUkkGd5HpTTsWQuM40
YrnTdz0q/TbYpyPyUzUGzu0cS28V0hXNun2lPvMEJ9sMjn/cFtInmAkDp1V+lErj
kU8rsZDTiSh2y/zNtU4n3FvseKMDo9XpFItSrlLZD7DeFGmD5IicRuAxunrPWlCT
xkCVdLm+h2FhBDC3XytEsRwLqRRIizi8AmRy/2ZBKHkFZOsF1KEUbC5Ip9mSgV6H
5FlN2twcNpHZPb9JWH59SbvwpqRE/h5LRLtgZXDnPE78z39bSoKVZTDkvEFjtEx0
rtrnBfcSm2RMMA==
-----END CERTIFICATE-----