Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          goWfBv+URdccFr0gSpGK+Dvlz3ot84GwBUWcH2Hm4Ko=
Subject key identifier:   73:C2:FD:C9:C6:B6:2D:91:D0:E6:58:0C:2D:F1:44:22:99:AD:4E:C1
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       0199FFC754040A4C6BDD564064DD82311265
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          0484
Signing time:             Mon 20 Oct 2025 04:01:17 +0000
Manifest this update:     Mon 20 Oct 2025 04:01:17 +0000
Manifest next update:     Tue 21 Oct 2025 04:01:17 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: Nz4Z8h68rx7QkG0O42Nknp8DgV4deLrY10AieHb0jCU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 00:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:c7:54:04:0a:4c:6b:dd:56:40:64:dd:82:31:12:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: Oct 20 04:01:17 2025 GMT
            Not After : Oct 21 04:01:17 2025 GMT
        Subject: CN=73c2fdc9c6b62d91d0e6580c2df1442299ad4ec1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:a7:a4:d5:5e:a3:68:ef:f8:b1:dc:dc:1e:17:
                    3e:9d:ea:05:16:c4:f3:00:dc:99:26:ef:fe:77:13:
                    45:40:2a:06:8e:73:6c:a4:65:a2:50:6a:2c:52:13:
                    4f:67:8f:a8:33:59:11:2b:bf:9a:4d:ac:49:73:df:
                    bf:fc:1d:43:72:92:b7:0b:63:5f:0d:d4:e7:44:31:
                    3d:bb:52:cb:96:17:3a:6a:90:81:18:e4:53:3b:9a:
                    bc:69:c8:be:cb:59:a9:20:34:88:f7:10:87:59:e0:
                    dd:ff:68:94:74:3c:78:27:f2:06:12:b5:ec:03:92:
                    83:ac:e1:1d:10:ec:3d:bd:72:60:f1:47:88:99:fb:
                    1f:b8:ed:9c:f2:cb:f8:4b:14:92:ad:22:df:bc:e2:
                    3f:31:f9:9d:60:14:99:ee:b2:63:5d:12:9d:3a:d8:
                    58:40:f3:5a:ff:0e:29:90:d4:d1:e5:ff:0e:c0:88:
                    1d:8f:8c:f8:c6:70:b7:ae:45:60:6d:71:fb:c7:68:
                    28:12:0f:d8:a4:87:32:d4:6c:e4:af:c9:5d:71:23:
                    33:25:9c:98:24:c1:8f:b1:20:2d:8b:25:74:8a:93:
                    bf:25:2c:12:bd:23:70:24:fd:99:90:fc:53:e7:02:
                    01:c8:72:b6:70:fd:c3:53:db:80:56:ff:4a:e7:5e:
                    8c:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:C2:FD:C9:C6:B6:2D:91:D0:E6:58:0C:2D:F1:44:22:99:AD:4E:C1
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:34:5a:d8:93:94:f7:5f:f3:f5:2f:9f:e8:ea:c6:7c:ee:04:
         b7:cb:88:58:d9:c3:7a:8f:42:13:28:89:f4:b3:b3:19:85:ab:
         29:ff:01:8f:b0:e0:92:49:a2:68:33:b8:cc:d4:7e:68:93:c2:
         b3:fe:0f:cd:f8:76:d7:7b:fc:f4:2b:d8:01:e1:c7:88:e0:87:
         60:43:88:4d:8e:18:bf:1a:4d:63:8b:9a:67:49:d2:df:95:70:
         ed:d1:ee:f4:66:71:3e:ea:da:05:77:51:bb:ff:a8:76:c2:f2:
         2f:19:67:e7:69:cb:a0:ad:e2:f5:73:23:6f:44:0b:9b:17:e9:
         97:96:c2:9b:a3:90:fb:ef:0c:65:95:a7:cb:22:c0:90:11:04:
         2b:24:68:a6:34:75:2b:b6:56:ff:d1:22:28:58:75:74:c6:31:
         f8:e7:d9:b7:7b:57:38:77:a4:87:30:58:f0:8f:dd:27:84:a2:
         13:8f:5a:9a:cf:a9:86:5a:3f:f6:6d:e5:36:05:7e:09:49:06:
         39:5d:74:55:9c:0e:73:d9:a4:a5:5f:c7:9c:be:95:4e:50:d1:
         13:80:d4:70:1d:b5:bd:18:77:c7:fb:63:a5:b2:c1:b4:68:d1:
         06:93:01:1f:1a:b2:a0:23:ee:cc:b7:67:1a:3f:fe:15:00:b5:
         e8:7c:e1:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/x1QECkxr3VZAZN2CMRJlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYjNiYTgyZGExZGI1YzE5NDM3YWMzMzc4Mzg0NmYyZjJi
ZmY0NjIwHhcNMjUxMDIwMDQwMTE3WhcNMjUxMDIxMDQwMTE3WjAzMTEwLwYDVQQD
Eyg3M2MyZmRjOWM2YjYyZDkxZDBlNjU4MGMyZGYxNDQyMjk5YWQ0ZWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaek1V6jaO/4sdzcHhc+neoFFsTz
ANyZJu/+dxNFQCoGjnNspGWiUGosUhNPZ4+oM1kRK7+aTaxJc9+//B1DcpK3C2Nf
DdTnRDE9u1LLlhc6apCBGORTO5q8aci+y1mpIDSI9xCHWeDd/2iUdDx4J/IGErXs
A5KDrOEdEOw9vXJg8UeImfsfuO2c8sv4SxSSrSLfvOI/MfmdYBSZ7rJjXRKdOthY
QPNa/w4pkNTR5f8OwIgdj4z4xnC3rkVgbXH7x2goEg/YpIcy1Gzkr8ldcSMzJZyY
JMGPsSAtiyV0ipO/JSwSvSNwJP2ZkPxT5wIByHK2cP3DU9uAVv9K516M2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHPC/cnGti2R0OZYDC3xRCKZrU7BMB8GA1UdIwQY
MBaAFKKzuoLaHbXBlDesM3g4RvLyv/RiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUt
Zjg5OGQyMDRlYjRlLzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUtZjg5OGQyMDRlYjRl
LzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoTRa2JOU
91/z9S+f6OrGfO4Et8uIWNnDeo9CEyiJ9LOzGYWrKf8Bj7DgkkmiaDO4zNR+aJPC
s/4Pzfh213v89CvYAeHHiOCHYEOITY4YvxpNY4uaZ0nS35Vw7dHu9GZxPuraBXdR
u/+odsLyLxln52nLoK3i9XMjb0QLmxfpl5bCm6OQ++8MZZWnyyLAkBEEKyRopjR1
K7ZW/9EiKFh1dMYx+OfZt3tXOHekhzBY8I/dJ4SiE49ams+phlo/9m3lNgV+CUkG
OV10VZwOc9mkpV/HnL6VTlDRE4DUcB21vRh3x/tjpbLBtGjRBpMBHxqyoCPuzLdn
Gj/+FQC16Hzh5w==
-----END CERTIFICATE-----