Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
File:                     5e_Rhp7q_m-fA8s0GGibywxpE3A.mft (raw, json)
Hash identifier:          ps2ihJYzgopJuMc/L6QNMoLvJbfOb7w4kcseu0GYejU=
Subject key identifier:   D6:18:F8:B0:87:5D:3A:06:29:75:BF:DD:0A:8A:D2:B0:28:E6:DE:6D
Authority key identifier: E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
Certificate issuer:       /CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Certificate serial:       0199FBEA92247A065C2F41E4FCDFC4B39366
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
Manifest number:          10FD
Signing time:             Sun 19 Oct 2025 10:01:17 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:17 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:17 +0000
Files and hashes:         1: 5e_Rhp7q_m-fA8s0GGibywxpE3A.crl (hash: sWLcBtllxW6CoeOdHcHkhhzFXUiwyBZO7xtSUtcqpUY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:92:24:7a:06:5c:2f:41:e4:fc:df:c4:b3:93:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
        Validity
            Not Before: Oct 19 10:01:17 2025 GMT
            Not After : Oct 20 10:01:17 2025 GMT
        Subject: CN=d618f8b0875d3a062975bfdd0a8ad2b028e6de6d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:27:4e:a2:f8:81:b5:0e:48:8b:21:02:5e:80:
                    5d:3a:c3:b1:97:ef:38:7f:01:22:9e:d5:ee:32:cf:
                    92:ea:59:e8:e1:c3:f3:d5:12:dc:67:7d:2c:a4:c0:
                    26:5d:2b:85:21:63:2b:bf:8c:20:d3:33:84:4a:81:
                    10:47:33:ea:91:4b:4b:ab:85:95:90:8a:38:3a:06:
                    d6:64:18:02:81:5e:64:b1:48:25:33:cf:06:f0:2b:
                    71:8b:22:ea:70:53:ba:bb:b9:60:71:32:90:aa:d8:
                    c4:9d:0f:3a:ee:33:94:27:2e:02:dd:0b:9b:8a:78:
                    34:1e:43:e6:50:3c:8a:3a:70:6f:58:fc:24:e5:5d:
                    21:f7:18:d9:00:72:e3:f3:e1:e9:f0:17:fc:7f:50:
                    35:ad:31:07:ea:4e:99:2c:67:f1:55:dc:f4:74:53:
                    d1:95:5a:07:b6:80:ff:53:ad:53:67:4d:65:7c:70:
                    1a:a9:02:77:0a:a8:41:51:85:69:82:98:f0:53:76:
                    58:f2:c7:2f:db:7c:aa:50:36:b9:e3:53:a3:a4:20:
                    ff:c2:61:fb:74:20:fc:d7:40:7a:96:1d:0d:77:48:
                    b8:72:9d:d6:d4:98:98:90:c1:ef:f5:71:00:66:80:
                    73:98:e2:10:06:28:3c:40:60:c7:87:f3:87:c0:6d:
                    b8:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:18:F8:B0:87:5D:3A:06:29:75:BF:DD:0A:8A:D2:B0:28:E6:DE:6D
            X509v3 Authority Key Identifier:
                keyid:E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:ec:bd:d0:43:22:11:1b:b8:e9:1c:51:97:58:6c:5c:b2:39:
         35:6d:22:b9:6a:fc:a7:20:1a:af:af:68:7b:ed:1d:c2:0b:dc:
         bb:bb:54:7c:28:f9:67:cd:0b:ba:54:7c:79:bf:b8:34:7a:3e:
         1f:0a:3b:a0:0d:20:71:5f:a6:a9:d6:20:ed:db:5d:6c:2b:2d:
         9c:a2:1e:38:a4:2a:3e:0e:a8:61:5b:72:fb:4e:12:66:8b:bf:
         13:96:38:be:98:e3:11:d5:cd:cb:d3:9e:5d:f5:78:c3:4c:ac:
         55:4a:d4:6e:c2:ac:d5:36:a5:7e:2e:c7:94:63:c7:10:94:f0:
         ab:15:38:94:e4:0a:ca:90:50:47:7b:20:a0:5f:a4:0f:71:b3:
         b2:87:2c:cd:d4:bc:48:d0:bf:3e:04:f7:7b:4f:bd:35:3a:5a:
         80:ae:b0:af:f3:fa:1b:69:4b:a7:09:1f:36:90:fe:84:54:e6:
         13:f9:01:f8:17:f9:bd:d6:73:e2:d4:6c:52:50:54:76:e8:f5:
         8a:f2:f0:f4:11:4a:8f:03:a0:c1:e6:65:08:f9:56:8b:31:bd:
         d9:bf:97:c9:43:5a:9e:a0:21:2e:8d:54:7c:a5:87:f3:cd:81:
         48:b1:90:4e:1d:7c:ae:38:4e:5e:67:81:72:e1:53:81:bd:e8:
         2a:03:87:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76pIkegZcL0Hk/N/Es5NmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1ZWZkMTg2OWVlYWZlNmY5ZjAzY2IzNDE4Njg5YmNiMGM2
OTEzNzAwHhcNMjUxMDE5MTAwMTE3WhcNMjUxMDIwMTAwMTE3WjAzMTEwLwYDVQQD
EyhkNjE4ZjhiMDg3NWQzYTA2Mjk3NWJmZGQwYThhZDJiMDI4ZTZkZTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSdOoviBtQ5IiyECXoBdOsOxl+84
fwEintXuMs+S6lno4cPz1RLcZ30spMAmXSuFIWMrv4wg0zOESoEQRzPqkUtLq4WV
kIo4OgbWZBgCgV5ksUglM88G8CtxiyLqcFO6u7lgcTKQqtjEnQ867jOUJy4C3Qub
ing0HkPmUDyKOnBvWPwk5V0h9xjZAHLj8+Hp8Bf8f1A1rTEH6k6ZLGfxVdz0dFPR
lVoHtoD/U61TZ01lfHAaqQJ3CqhBUYVpgpjwU3ZY8scv23yqUDa541OjpCD/wmH7
dCD810B6lh0Nd0i4cp3W1JiYkMHv9XEAZoBzmOIQBig8QGDHh/OHwG247wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNYY+LCHXToGKXW/3QqK0rAo5t5tMB8GA1UdIwQY
MBaAFOXv0Yae6v5vnwPLNBhom8sMaRNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iNDdiZGEtNjViNi00YTQyLTk5MGYt
MDI0OTM1ZGRiOGM2LzEvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9iNDdiZGEtNjViNi00YTQyLTk5MGYtMDI0OTM1ZGRiOGM2
LzEvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+y90EMi
ERu46RxRl1hsXLI5NW0iuWr8pyAar69oe+0dwgvcu7tUfCj5Z80LulR8eb+4NHo+
Hwo7oA0gcV+mqdYg7dtdbCstnKIeOKQqPg6oYVty+04SZou/E5Y4vpjjEdXNy9Oe
XfV4w0ysVUrUbsKs1Talfi7HlGPHEJTwqxU4lOQKypBQR3sgoF+kD3GzsocszdS8
SNC/PgT3e0+9NTpagK6wr/P6G2lLpwkfNpD+hFTmE/kB+Bf5vdZz4tRsUlBUduj1
ivLw9BFKjwOgweZlCPlWizG92b+XyUNanqAhLo1UfKWH882BSLGQTh18rjhOXmeB
cuFTgb3oKgOHzw==
-----END CERTIFICATE-----