Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
File:                     5cfDmlkS3cIen2tRmJZyV2ISeDM.mft (raw, json)
Hash identifier:          F6STlcePXTcdkmjXRDv0olKSt8p1S5s56wdFY/tclqI=
Subject key identifier:   19:92:AE:F7:C3:50:D4:99:AF:40:9E:AF:C3:BB:FD:EB:78:6C:57:AE
Authority key identifier: E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33
Certificate issuer:       /CN=e5c7c39a5912ddc21e9f6b519896725762127833
Certificate serial:       0198D472E20535F139420DF8CCBDA8F41699
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
Manifest number:          01C3
Signing time:             Sat 23 Aug 2025 01:02:35 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:35 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:35 +0000
Files and hashes:         1: 5cfDmlkS3cIen2tRmJZyV2ISeDM.crl (hash: kuHmuhDA+/9SST32jldSjMxCYXx7ZJ6lmqR0PBtzWP0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:72:e2:05:35:f1:39:42:0d:f8:cc:bd:a8:f4:16:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5c7c39a5912ddc21e9f6b519896725762127833
        Validity
            Not Before: Aug 23 01:02:35 2025 GMT
            Not After : Aug 24 01:02:35 2025 GMT
        Subject: CN=1992aef7c350d499af409eafc3bbfdeb786c57ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:58:bc:62:da:61:75:00:76:73:8d:3a:7e:74:
                    2d:cc:50:75:f9:eb:5d:fd:5b:82:a1:9a:2f:a8:be:
                    a5:e7:26:f2:9e:e6:38:60:2d:82:5f:e5:93:9d:91:
                    41:36:74:7b:e5:88:4a:aa:e9:b7:9f:bb:c9:e3:d5:
                    59:9e:b0:1f:6b:8b:6b:0a:97:33:ee:49:3f:81:01:
                    89:7d:a8:65:75:ad:c9:d5:c0:03:0c:ae:51:a7:0a:
                    0c:00:d4:71:2a:8d:3f:13:92:f0:05:68:ae:8b:84:
                    34:8e:67:cd:0e:5d:b6:e7:f8:3e:55:f8:a5:84:b4:
                    b2:49:a8:1e:f8:3e:c9:d1:83:50:ed:90:b1:02:93:
                    84:0c:36:c6:d7:3f:ed:59:cd:66:6f:f0:a9:8c:2c:
                    eb:c8:68:28:c2:37:c6:f2:ca:76:93:6f:eb:ce:8f:
                    9c:7a:b1:f7:34:ca:bb:91:9c:72:91:77:13:58:1e:
                    ad:88:d2:27:82:30:f3:a4:05:ec:16:5f:8f:b6:72:
                    10:66:7c:e0:05:01:f4:17:2c:bd:1b:d7:52:9e:c4:
                    9d:11:14:1e:df:74:c8:45:2a:f4:45:d7:ef:e4:62:
                    83:99:f5:3f:3a:5d:b2:fe:9c:59:95:1e:31:ad:36:
                    cb:d6:28:16:f7:7d:ca:70:37:ea:73:82:76:73:1a:
                    9b:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:92:AE:F7:C3:50:D4:99:AF:40:9E:AF:C3:BB:FD:EB:78:6C:57:AE
            X509v3 Authority Key Identifier:
                keyid:E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:34:2b:d6:fa:1e:42:b0:c1:c8:12:ac:25:2f:fa:c4:36:b4:
         e0:7b:ad:ca:ea:93:75:a0:30:14:19:6b:31:e1:b2:85:21:66:
         76:22:9e:3c:b2:ac:9a:05:9c:f6:c0:eb:a6:59:94:df:5a:04:
         29:52:34:e6:92:0f:ab:1c:56:47:5f:4c:ab:30:79:65:75:91:
         2c:13:95:50:7d:13:ec:55:53:81:b4:95:3b:79:47:ca:ad:0e:
         16:5a:ba:c1:7e:76:25:1a:d9:3a:84:ca:f7:0e:16:91:a0:f3:
         8e:7d:08:78:b6:18:31:4f:06:c7:da:1f:04:76:b0:ba:5c:b3:
         48:89:90:06:2c:1b:a1:21:1e:74:20:0b:7f:6f:a1:f2:ee:d9:
         ac:c2:f4:d8:6b:0d:9c:70:d5:7b:12:78:c5:ab:24:92:18:8b:
         ce:de:49:ca:bb:09:20:7a:1f:e7:77:7d:d5:d2:ec:a3:3d:dd:
         f4:81:33:b7:8d:55:b8:5a:b3:e0:ad:5a:96:98:4f:76:5c:b2:
         2b:c6:ff:13:ca:00:8d:4b:09:db:95:49:09:53:4b:c1:7d:59:
         65:d8:31:a4:01:9e:9f:ae:41:cd:64:71:00:fa:9c:5c:6d:bc:
         d6:fa:fe:53:8d:22:f1:e4:f1:9d:5c:98:f4:d8:0c:fb:20:b6:
         f7:64:fe:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcuIFNfE5Qg34zL2o9BaZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YzdjMzlhNTkxMmRkYzIxZTlmNmI1MTk4OTY3MjU3NjIx
Mjc4MzMwHhcNMjUwODIzMDEwMjM1WhcNMjUwODI0MDEwMjM1WjAzMTEwLwYDVQQD
EygxOTkyYWVmN2MzNTBkNDk5YWY0MDllYWZjM2JiZmRlYjc4NmM1N2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvli8YtphdQB2c406fnQtzFB1+etd
/VuCoZovqL6l5ybynuY4YC2CX+WTnZFBNnR75YhKqum3n7vJ49VZnrAfa4trCpcz
7kk/gQGJfahlda3J1cADDK5RpwoMANRxKo0/E5LwBWiui4Q0jmfNDl225/g+Vfil
hLSySage+D7J0YNQ7ZCxApOEDDbG1z/tWc1mb/CpjCzryGgowjfG8sp2k2/rzo+c
erH3NMq7kZxykXcTWB6tiNIngjDzpAXsFl+PtnIQZnzgBQH0Fyy9G9dSnsSdERQe
33TIRSr0Rdfv5GKDmfU/Ol2y/pxZlR4xrTbL1igW933KcDfqc4J2cxqbWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBmSrvfDUNSZr0Cer8O7/et4bFeuMB8GA1UdIwQY
MBaAFOXHw5pZEt3CHp9rUZiWcldiEngzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWNmRG1sa1MzY0llbjJ0Um1KWnlWMklTZURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8xMGFmODMtMDhmNS00OTE5LWJhMWQt
MzhmODY0YTM0Yjc4LzEvNWNmRG1sa1MzY0llbjJ0Um1KWnlWMklTZURNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8xMGFmODMtMDhmNS00OTE5LWJhMWQtMzhmODY0YTM0Yjc4
LzEvNWNmRG1sa1MzY0llbjJ0Um1KWnlWMklTZURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZTQr1voe
QrDByBKsJS/6xDa04HutyuqTdaAwFBlrMeGyhSFmdiKePLKsmgWc9sDrplmU31oE
KVI05pIPqxxWR19MqzB5ZXWRLBOVUH0T7FVTgbSVO3lHyq0OFlq6wX52JRrZOoTK
9w4WkaDzjn0IeLYYMU8Gx9ofBHawulyzSImQBiwboSEedCALf2+h8u7ZrML02GsN
nHDVexJ4xaskkhiLzt5JyrsJIHof53d91dLsoz3d9IEzt41VuFqz4K1alphPdlyy
K8b/E8oAjUsJ25VJCVNLwX1ZZdgxpAGen65BzWRxAPqcXG281vr+U40i8eTxnVyY
9NgM+yC292T+YA==
-----END CERTIFICATE-----