Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
File:                     cegLwpz58rQKwwJOD3I126LVelQ.mft (raw, json)
Hash identifier:          q0fOzr0G4Vs4w24BztxbhJdwU+2iZp7UYdi03GUKghE=
Subject key identifier:   67:6A:1E:8C:ED:2E:F2:7E:74:1C:E2:04:DA:3A:F1:4A:F2:64:C7:74
Authority key identifier: 71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54
Certificate issuer:       /CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54
Certificate serial:       0199FAA1206685CBA76C4C325505AAA1D70B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
Manifest number:          0630
Signing time:             Sun 19 Oct 2025 04:01:27 +0000
Manifest this update:     Sun 19 Oct 2025 04:01:27 +0000
Manifest next update:     Mon 20 Oct 2025 04:01:27 +0000
Files and hashes:         1: cegLwpz58rQKwwJOD3I126LVelQ.crl (hash: fyN3/1xwEVAsxn5n3La5NpoaOxJ4TXgCq8PXySM8hgo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 04:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fa:a1:20:66:85:cb:a7:6c:4c:32:55:05:aa:a1:d7:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54
        Validity
            Not Before: Oct 19 04:01:27 2025 GMT
            Not After : Oct 20 04:01:27 2025 GMT
        Subject: CN=676a1e8ced2ef27e741ce204da3af14af264c774
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:a7:7b:b4:c1:90:04:ee:bf:91:db:a8:3d:75:
                    a0:8d:30:2c:63:3f:a7:85:02:0d:09:2a:9f:80:bc:
                    bd:08:ba:38:5e:5b:17:ab:68:9c:c5:5d:ad:45:5d:
                    6b:09:6b:57:05:1b:9d:ed:62:61:1c:5b:bb:e4:c8:
                    d6:a5:cb:1e:8c:5a:ef:fb:27:83:b7:fa:98:6d:37:
                    d1:cf:5b:dc:ca:dd:0b:43:98:35:5a:57:43:85:15:
                    b2:49:4a:5f:2d:3d:54:d0:86:6f:75:9c:a0:53:37:
                    f2:28:ca:b4:36:0d:75:81:7d:e7:e8:54:eb:6b:85:
                    23:07:77:86:ad:dc:df:91:a5:27:11:1b:42:ad:99:
                    7f:f2:0b:f5:57:cd:94:bc:70:bf:f4:ef:14:4f:b2:
                    9b:b0:89:9f:bd:04:59:1c:f3:12:a5:97:96:89:51:
                    70:5c:65:b3:4e:43:33:bb:69:c9:31:45:21:38:8e:
                    ac:aa:c5:c3:4e:37:95:e9:2a:f3:7b:ac:bb:63:31:
                    ca:b2:5f:a8:67:09:ea:e7:2a:5d:d9:a0:89:5c:39:
                    59:17:02:c2:5d:fc:fd:b4:c5:cb:9a:af:a9:01:06:
                    48:ba:dd:5b:f3:aa:c3:9f:27:6c:47:85:06:0f:1d:
                    66:ee:d8:2b:15:cb:64:d3:35:0c:59:81:ef:e7:a9:
                    29:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:6A:1E:8C:ED:2E:F2:7E:74:1C:E2:04:DA:3A:F1:4A:F2:64:C7:74
            X509v3 Authority Key Identifier:
                keyid:71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:c1:b8:dd:18:f7:b7:00:e3:42:c1:0b:3d:f0:13:8f:2a:22:
         d0:1c:c9:0a:72:18:0a:0d:ae:68:a7:90:55:56:7f:60:b4:d4:
         e7:d9:56:d3:d7:80:eb:01:58:fd:a7:0f:3b:b2:c1:bd:bd:03:
         12:6e:8a:a8:10:77:88:ed:b9:e7:35:ea:42:e0:8b:7f:cb:93:
         d8:c1:41:53:32:a6:0a:2e:a2:d6:dd:a7:65:cf:19:a7:9e:10:
         50:f9:c2:15:0c:c5:d3:52:32:39:06:a0:e2:20:18:f1:30:32:
         65:32:a3:2c:f0:30:25:21:be:f1:2e:ea:8b:ee:e9:7b:09:35:
         77:4e:86:99:43:32:13:36:0a:cd:ad:1b:f3:05:a3:cc:5d:8f:
         01:3e:0b:53:4e:0c:70:c8:f1:34:42:25:5c:e8:91:98:13:61:
         0a:b8:a1:c6:33:11:d6:c1:c5:71:e1:09:38:60:20:43:7e:76:
         31:7c:6d:88:58:d9:75:22:92:96:0c:b6:82:02:26:31:75:e2:
         88:ce:86:cf:b3:5a:e8:72:af:b8:da:da:8d:ad:b4:69:a6:ad:
         98:13:4c:2e:c4:71:57:54:3f:c2:78:c2:7e:a0:95:6f:9a:21:
         52:76:2d:d6:2e:a7:ad:08:66:36:98:0e:3e:29:9e:b3:0d:96:
         e6:dc:9a:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn6oSBmhcunbEwyVQWqodcLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZTgwYmMyOWNmOWYyYjQwYWMzMDI0ZTBmNzIzNWRiYTJk
NTdhNTQwHhcNMjUxMDE5MDQwMTI3WhcNMjUxMDIwMDQwMTI3WjAzMTEwLwYDVQQD
Eyg2NzZhMWU4Y2VkMmVmMjdlNzQxY2UyMDRkYTNhZjE0YWYyNjRjNzc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6d7tMGQBO6/kduoPXWgjTAsYz+n
hQINCSqfgLy9CLo4XlsXq2icxV2tRV1rCWtXBRud7WJhHFu75MjWpcsejFrv+yeD
t/qYbTfRz1vcyt0LQ5g1WldDhRWySUpfLT1U0IZvdZygUzfyKMq0Ng11gX3n6FTr
a4UjB3eGrdzfkaUnERtCrZl/8gv1V82UvHC/9O8UT7KbsImfvQRZHPMSpZeWiVFw
XGWzTkMzu2nJMUUhOI6sqsXDTjeV6Srze6y7YzHKsl+oZwnq5ypd2aCJXDlZFwLC
Xfz9tMXLmq+pAQZIut1b86rDnydsR4UGDx1m7tgrFctk0zUMWYHv56kpSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGdqHoztLvJ+dBziBNo68UryZMd0MB8GA1UdIwQY
MBaAFHHoC8Kc+fK0CsMCTg9yNdui1XpUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYt
NzI0NzMwNGZiMTVmLzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYtNzI0NzMwNGZiMTVm
LzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp8G43Rj3
twDjQsELPfATjyoi0BzJCnIYCg2uaKeQVVZ/YLTU59lW09eA6wFY/acPO7LBvb0D
Em6KqBB3iO255zXqQuCLf8uT2MFBUzKmCi6i1t2nZc8Zp54QUPnCFQzF01IyOQag
4iAY8TAyZTKjLPAwJSG+8S7qi+7pewk1d06GmUMyEzYKza0b8wWjzF2PAT4LU04M
cMjxNEIlXOiRmBNhCrihxjMR1sHFceEJOGAgQ352MXxtiFjZdSKSlgy2ggImMXXi
iM6Gz7Na6HKvuNraja20aaatmBNMLsRxV1Q/wnjCfqCVb5ohUnYt1i6nrQhmNpgO
Pimesw2W5tyaAA==
-----END CERTIFICATE-----