Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
File:                     qqbmeSWCHkuHnIA-wKUiRflnOtA.mft (raw, json)
Hash identifier:          cGvTyMdw3MJ01LJsYavIgq6jlqownOEfAOoniyisO3s=
Subject key identifier:   6C:F7:C0:47:97:E1:99:04:DA:B7:C8:89:59:95:DB:7A:E4:35:04:B1
Authority key identifier: AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0
Certificate issuer:       /CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
Certificate serial:       0199FC214BCA087ACABFB1984869CED52138
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
Manifest number:          0484
Signing time:             Sun 19 Oct 2025 11:01:04 +0000
Manifest this update:     Sun 19 Oct 2025 11:01:04 +0000
Manifest next update:     Mon 20 Oct 2025 11:01:04 +0000
Files and hashes:         1: qqbmeSWCHkuHnIA-wKUiRflnOtA.crl (hash: 7uWJKE95eWecosdHs0xfYKCSIG2oQZhwiYoBbod+0Ag=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:21:4b:ca:08:7a:ca:bf:b1:98:48:69:ce:d5:21:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
        Validity
            Not Before: Oct 19 11:01:04 2025 GMT
            Not After : Oct 20 11:01:04 2025 GMT
        Subject: CN=6cf7c04797e19904dab7c8895995db7ae43504b1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:70:7a:53:9b:b3:63:6b:2c:53:cf:34:41:95:
                    a0:9b:67:c7:ea:fb:2d:13:c9:33:7e:f3:07:85:65:
                    0b:dc:c0:5d:1d:af:e1:95:12:f8:8d:ef:da:20:7f:
                    05:4f:ab:59:b7:dc:e0:72:47:3d:a9:1f:a9:56:41:
                    5b:f7:4d:e9:13:1d:8d:35:2c:d1:5d:e3:f2:a4:8a:
                    06:1a:88:f1:28:32:05:6f:e3:1c:ad:51:fb:16:32:
                    b9:76:7c:18:8b:1d:fc:80:25:36:c8:da:a7:50:4e:
                    82:f1:c0:17:2d:2b:0d:e6:83:35:74:b9:1f:e8:ed:
                    d0:c0:36:cf:6f:65:6e:17:b4:08:ae:4b:c3:21:78:
                    1f:1c:ed:64:a5:23:0a:1d:59:12:88:93:df:14:98:
                    36:6a:cc:d4:a1:f1:32:cc:eb:a6:f3:d8:64:ba:4b:
                    a9:bb:88:08:b7:8b:8f:f1:aa:94:92:37:f9:6e:ff:
                    2c:65:ac:f9:5f:b2:c6:67:09:c0:93:f6:37:f8:8d:
                    07:07:53:64:4a:ac:26:45:d7:40:fa:28:29:68:c9:
                    26:ce:06:dc:2d:d8:07:b6:d1:fc:6a:ef:fe:dc:d0:
                    02:24:b3:89:4f:a3:30:53:ff:8e:9c:3f:c1:8e:3c:
                    3c:e3:3c:8a:62:17:00:37:90:a8:c0:cf:a1:f7:c6:
                    14:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:F7:C0:47:97:E1:99:04:DA:B7:C8:89:59:95:DB:7A:E4:35:04:B1
            X509v3 Authority Key Identifier:
                keyid:AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:ca:10:cd:cb:c5:bb:0c:a0:a7:11:d0:e4:7b:e2:c1:25:55:
         34:de:72:53:7c:8e:7b:c5:d8:ab:52:75:e2:f7:15:a6:63:e2:
         fe:c4:8d:9f:6f:5f:57:e6:81:1d:18:8d:f3:c0:4a:9b:74:f5:
         6d:c5:47:31:d7:e4:ce:67:d9:90:4a:a2:e7:ce:32:fa:25:72:
         8b:2d:44:53:87:10:ae:66:1f:05:24:8c:fc:13:13:0c:ab:5f:
         ff:48:6a:48:ce:76:2c:a9:03:ec:07:af:23:f4:a8:ab:85:81:
         01:ac:e7:29:6a:b1:fd:1b:58:6b:86:4b:db:01:fd:b1:f6:95:
         07:06:b6:bb:ff:74:a4:88:83:ae:30:59:d7:e3:81:e8:43:45:
         08:bc:5e:85:d4:08:cc:39:cb:a1:b2:d1:64:55:2a:db:b3:17:
         5f:87:5a:9f:a5:da:ba:f5:c5:5b:fb:19:42:b8:3f:65:e3:66:
         03:af:d2:10:bc:da:1b:c8:35:90:49:2c:24:fa:2a:28:4a:cd:
         7b:fe:30:9b:e9:77:19:61:c1:ff:50:74:79:43:1a:7d:0c:09:
         1b:05:18:ea:a2:50:da:3f:90:bf:a1:21:a3:f5:74:5d:32:17:
         c0:85:91:ec:e7:0b:e7:99:bb:d4:fa:75:bc:e5:92:8c:8b:ab:
         cf:f0:43:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IUvKCHrKv7GYSGnO1SE4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhYTZlNjc5MjU4MjFlNGI4NzljODAzZWMwYTUyMjQ1Zjk2
NzNhZDAwHhcNMjUxMDE5MTEwMTA0WhcNMjUxMDIwMTEwMTA0WjAzMTEwLwYDVQQD
Eyg2Y2Y3YzA0Nzk3ZTE5OTA0ZGFiN2M4ODk1OTk1ZGI3YWU0MzUwNGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1XB6U5uzY2ssU880QZWgm2fH6vst
E8kzfvMHhWUL3MBdHa/hlRL4je/aIH8FT6tZt9zgckc9qR+pVkFb903pEx2NNSzR
XePypIoGGojxKDIFb+McrVH7FjK5dnwYix38gCU2yNqnUE6C8cAXLSsN5oM1dLkf
6O3QwDbPb2VuF7QIrkvDIXgfHO1kpSMKHVkSiJPfFJg2aszUofEyzOum89hkukup
u4gIt4uP8aqUkjf5bv8sZaz5X7LGZwnAk/Y3+I0HB1NkSqwmRddA+igpaMkmzgbc
LdgHttH8au/+3NACJLOJT6MwU/+OnD/Bjjw84zyKYhcAN5CowM+h98YUZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGz3wEeX4ZkE2rfIiVmV23rkNQSxMB8GA1UdIwQY
MBaAFKqm5nklgh5Lh5yAPsClIkX5ZzrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXFibWVTV0NIa3VIbklBLXdLVWlSZmxuT3RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy82NGFlNWEtODYyMi00NWUyLTkzMjct
NTEyZjU2NWFjMDExLzEvcXFibWVTV0NIa3VIbklBLXdLVWlSZmxuT3RBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy82NGFlNWEtODYyMi00NWUyLTkzMjctNTEyZjU2NWFjMDEx
LzEvcXFibWVTV0NIa3VIbklBLXdLVWlSZmxuT3RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATsoQzcvF
uwygpxHQ5HviwSVVNN5yU3yOe8XYq1J14vcVpmPi/sSNn29fV+aBHRiN88BKm3T1
bcVHMdfkzmfZkEqi584y+iVyiy1EU4cQrmYfBSSM/BMTDKtf/0hqSM52LKkD7Aev
I/Soq4WBAaznKWqx/RtYa4ZL2wH9sfaVBwa2u/90pIiDrjBZ1+OB6ENFCLxehdQI
zDnLobLRZFUq27MXX4dan6XauvXFW/sZQrg/ZeNmA6/SELzaG8g1kEksJPoqKErN
e/4wm+l3GWHB/1B0eUMafQwJGwUY6qJQ2j+Qv6Eho/V0XTIXwIWR7OcL55m71Pp1
vOWSjIurz/BDQg==
-----END CERTIFICATE-----