Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File:                     A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier:          pIv/SbP5IinQEkvcnpNXmknRTpQud+EP2VPZQ7aweHU=
Subject key identifier:   69:AA:3E:E8:C8:FA:D9:A1:8F:81:11:B1:48:3A:0A:D8:4D:96:A9:B4
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer:       /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial:       0199FDD98AE0907B1089040C47434846D3EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number:          1373
Signing time:             Sun 19 Oct 2025 19:01:56 +0000
Manifest this update:     Sun 19 Oct 2025 19:01:56 +0000
Manifest next update:     Mon 20 Oct 2025 19:01:56 +0000
Files and hashes:         1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: VWM6E3W6cfUPuRDUHkH1N2BkJW5JznvO8QtJwIRiCZw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d9:8a:e0:90:7b:10:89:04:0c:47:43:48:46:d3:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=036847b297235faf071686fed2c1e910bf600486
        Validity
            Not Before: Oct 19 19:01:56 2025 GMT
            Not After : Oct 20 19:01:56 2025 GMT
        Subject: CN=69aa3ee8c8fad9a18f8111b1483a0ad84d96a9b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:e3:6d:1f:8c:29:a1:b7:5d:89:ed:6e:fe:21:
                    08:44:b9:0d:7b:d9:f6:e3:92:4b:35:ec:fe:55:89:
                    f2:4c:43:67:90:6e:35:88:bb:32:85:f4:b1:e7:c2:
                    82:fa:0b:45:9b:a2:27:d0:ca:ed:11:e2:3b:9b:cf:
                    26:d1:83:97:68:13:72:fd:f4:f8:61:12:72:62:55:
                    3d:20:4a:91:32:df:2b:9d:5e:0f:be:18:b3:39:e4:
                    9f:86:65:87:c4:5f:0a:98:8c:a7:ed:07:4f:02:7e:
                    bb:00:7f:16:50:08:d6:79:58:ab:71:42:1c:b9:01:
                    a5:1f:d4:f6:7a:bd:6d:d6:9e:b4:0c:8a:be:8f:d2:
                    e4:09:58:8d:1a:0c:04:13:97:d3:c1:ec:4d:a0:5a:
                    ac:3f:a3:67:d9:42:f7:6f:3b:3b:db:6b:e6:7b:91:
                    a6:21:e1:1e:81:11:9a:2b:f9:61:2d:0d:b4:d4:b5:
                    c5:cd:2e:66:02:36:7c:dc:8b:f1:a4:ea:3b:91:13:
                    be:57:42:9c:fe:b7:8a:76:ff:a4:31:cc:50:7b:48:
                    c5:26:6b:63:e3:d8:49:93:ec:c5:51:a1:a9:82:9f:
                    26:5d:b4:24:73:4f:1d:3c:ac:27:56:45:68:95:1f:
                    2e:1d:d1:9d:07:00:9e:8e:85:b2:8c:44:2c:3f:05:
                    f3:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:AA:3E:E8:C8:FA:D9:A1:8F:81:11:B1:48:3A:0A:D8:4D:96:A9:B4
            X509v3 Authority Key Identifier:
                keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:5d:d4:31:71:27:0b:9b:e8:35:7e:cc:59:84:aa:a5:2c:10:
         49:88:b1:0e:ea:51:b5:85:8f:be:ad:a7:1a:7e:be:1f:aa:40:
         7f:b5:ba:6b:22:4e:cd:9c:c4:0a:a0:fe:9a:ab:87:71:8a:96:
         fd:5d:77:4b:12:c6:7d:31:5e:fe:95:bd:2d:86:1a:ca:33:3e:
         8b:82:f2:43:27:62:75:8b:c1:8b:ee:63:44:99:7e:4b:dc:f1:
         a2:93:7d:d9:bc:53:c4:1b:5b:9c:ec:4c:38:53:6a:82:e7:60:
         12:37:5e:54:ab:49:07:06:98:4c:89:fa:21:0a:05:57:e2:f6:
         97:02:73:31:d2:63:d7:2c:09:3a:63:59:69:92:97:e0:e9:76:
         04:4e:c3:99:a0:72:34:b6:1c:a3:a3:89:15:97:4c:6c:6d:7e:
         5a:9d:85:75:3d:da:4e:4b:17:34:a5:07:62:82:8c:dc:82:40:
         11:27:46:a5:7c:8b:bd:cb:4d:2f:ad:cb:57:d7:73:0f:52:d3:
         34:5d:61:d5:ff:ff:a2:44:a1:30:a5:ec:1a:fb:e1:0b:66:2e:
         e4:63:54:34:90:dd:1b:a2:1b:6c:3e:0b:ec:b9:57:59:d0:a2:
         e9:64:5e:5e:3f:02:8b:39:95:5b:7f:29:1d:67:3d:41:1d:f7:
         f4:58:64:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92YrgkHsQiQQMR0NIRtPsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzNjg0N2IyOTcyMzVmYWYwNzE2ODZmZWQyYzFlOTEwYmY2
MDA0ODYwHhcNMjUxMDE5MTkwMTU2WhcNMjUxMDIwMTkwMTU2WjAzMTEwLwYDVQQD
Eyg2OWFhM2VlOGM4ZmFkOWExOGY4MTExYjE0ODNhMGFkODRkOTZhOWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeNtH4wpobddie1u/iEIRLkNe9n2
45JLNez+VYnyTENnkG41iLsyhfSx58KC+gtFm6In0MrtEeI7m88m0YOXaBNy/fT4
YRJyYlU9IEqRMt8rnV4PvhizOeSfhmWHxF8KmIyn7QdPAn67AH8WUAjWeVircUIc
uQGlH9T2er1t1p60DIq+j9LkCViNGgwEE5fTwexNoFqsP6Nn2UL3bzs722vme5Gm
IeEegRGaK/lhLQ201LXFzS5mAjZ83IvxpOo7kRO+V0Kc/reKdv+kMcxQe0jFJmtj
49hJk+zFUaGpgp8mXbQkc08dPKwnVkVolR8uHdGdBwCejoWyjEQsPwXz1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmqPujI+tmhj4ERsUg6CthNlqm0MB8GA1UdIwQY
MBaAFANoR7KXI1+vBxaG/tLB6RC/YASGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjIt
YmRkNzMyOGU5NGNiLzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjItYmRkNzMyOGU5NGNi
LzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFV3UMXEn
C5voNX7MWYSqpSwQSYixDupRtYWPvq2nGn6+H6pAf7W6ayJOzZzECqD+mquHcYqW
/V13SxLGfTFe/pW9LYYayjM+i4LyQydidYvBi+5jRJl+S9zxopN92bxTxBtbnOxM
OFNqgudgEjdeVKtJBwaYTIn6IQoFV+L2lwJzMdJj1ywJOmNZaZKX4Ol2BE7DmaBy
NLYco6OJFZdMbG1+Wp2FdT3aTksXNKUHYoKM3IJAESdGpXyLvctNL63LV9dzD1LT
NF1h1f//okShMKXsGvvhC2Yu5GNUNJDdG6IbbD4L7LlXWdCi6WReXj8CizmVW38p
HWc9QR339Fhkhg==
-----END CERTIFICATE-----