Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
File:                     RHhnr-yeLyk5So9fl_kJKdkoIQI.mft (raw, json)
Hash identifier:          6g3KIHFT7AHcP/8zj0H+mrcBlKZ13CLpewWWYqsZkKY=
Subject key identifier:   FD:89:00:61:CB:AD:9F:D1:5A:F8:E8:54:CC:02:4F:DD:12:A3:58:E3
Authority key identifier: 44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02
Certificate issuer:       /CN=447867afec9e2f29394a8f5f97f90929d9282102
Certificate serial:       0199FBEAF1F63581AF2D6120591BC8FE7F13
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
Manifest number:          16DF
Signing time:             Sun 19 Oct 2025 10:01:42 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:42 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:42 +0000
Files and hashes:         1: RHhnr-yeLyk5So9fl_kJKdkoIQI.crl (hash: Rb1y/uwZOdFlfHvbbs8PY4xL53gi/s1XYEqgKpZZJNc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:ea:f1:f6:35:81:af:2d:61:20:59:1b:c8:fe:7f:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=447867afec9e2f29394a8f5f97f90929d9282102
        Validity
            Not Before: Oct 19 10:01:42 2025 GMT
            Not After : Oct 20 10:01:42 2025 GMT
        Subject: CN=fd890061cbad9fd15af8e854cc024fdd12a358e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:ca:1f:93:45:c3:f3:46:41:49:1c:66:00:f2:
                    f3:7a:d1:53:df:a6:6e:68:d7:a6:78:de:b5:42:d0:
                    63:e4:4a:89:7d:a6:54:14:f5:28:60:86:14:18:1a:
                    23:28:58:86:a6:cb:d2:db:10:9a:b7:18:cc:fd:ea:
                    77:f9:7c:7b:98:22:8e:c8:22:6a:f7:39:68:7b:12:
                    cb:f5:3b:88:c3:82:6b:88:97:98:25:c2:56:27:d8:
                    83:6b:60:d9:9b:8c:dd:bd:26:0d:19:8d:fd:47:e1:
                    57:54:3e:03:d4:f3:6b:91:51:af:f0:e6:aa:5d:72:
                    0c:fc:37:8f:5c:3d:e7:92:19:27:8c:a6:96:97:4e:
                    d4:e7:4b:af:fd:40:52:30:ab:68:0e:34:4b:34:03:
                    7e:43:55:d2:cd:db:9d:4c:40:b1:65:9a:7a:92:d8:
                    65:3f:e2:5f:e0:e7:06:cf:d5:70:86:f6:8a:d4:85:
                    68:f0:af:6a:c5:39:7b:b2:19:4d:7a:29:a3:3d:f0:
                    ac:24:8f:01:e9:28:8f:e8:3e:fe:fc:48:46:27:3e:
                    5f:c0:49:1e:5e:54:f6:09:91:91:ee:70:e4:ef:0c:
                    49:52:06:fd:90:9e:2f:2d:8e:b3:23:b6:0c:13:84:
                    72:c7:0b:4f:a2:27:21:42:fa:9b:b4:8c:1d:7b:18:
                    dc:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:89:00:61:CB:AD:9F:D1:5A:F8:E8:54:CC:02:4F:DD:12:A3:58:E3
            X509v3 Authority Key Identifier:
                keyid:44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:4d:e0:ab:98:39:b0:c4:3e:3b:8c:ed:cb:8b:21:65:a6:5c:
         b8:0b:58:f6:ec:44:d3:b4:12:40:73:d7:8d:17:2b:d1:d0:c0:
         b4:3a:e5:33:c1:41:8f:53:bc:68:d5:11:c4:36:e5:85:f2:24:
         c0:1a:b4:3e:2f:4c:95:13:9b:e8:24:ab:e9:02:64:b1:4b:9d:
         fb:26:d1:a7:c5:ec:1b:e4:41:59:72:a7:2a:eb:d6:92:89:9f:
         c5:d4:17:d1:14:19:4d:00:79:01:68:bf:c4:39:fb:5d:53:27:
         d1:c8:23:43:6e:21:cd:b7:96:71:50:4f:31:e5:14:cd:0a:e4:
         ca:60:61:d2:13:2f:7c:b5:5f:59:b2:7e:ae:e9:f1:c4:70:a3:
         8b:10:8f:ad:2f:b6:8b:8c:5a:13:1d:ef:f2:da:25:24:d1:15:
         f7:bb:ef:9b:89:36:7d:17:74:e1:27:5a:51:58:94:bb:fa:f6:
         64:56:66:4f:b1:8d:ef:c5:bf:94:8c:f3:93:73:b1:30:ce:3c:
         10:6c:8d:d9:6d:96:25:07:0d:5e:69:33:75:bf:94:af:24:1f:
         53:7c:8a:92:90:41:a2:6c:4d:2f:66:4b:5c:a8:49:4a:0f:4e:
         2d:73:06:11:55:6d:21:00:9f:b2:ee:42:a0:c2:8d:d8:71:92:
         67:15:d3:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76vH2NYGvLWEgWRvI/n8TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0Nzg2N2FmZWM5ZTJmMjkzOTRhOGY1Zjk3ZjkwOTI5ZDky
ODIxMDIwHhcNMjUxMDE5MTAwMTQyWhcNMjUxMDIwMTAwMTQyWjAzMTEwLwYDVQQD
EyhmZDg5MDA2MWNiYWQ5ZmQxNWFmOGU4NTRjYzAyNGZkZDEyYTM1OGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7cofk0XD80ZBSRxmAPLzetFT36Zu
aNemeN61QtBj5EqJfaZUFPUoYIYUGBojKFiGpsvS2xCatxjM/ep3+Xx7mCKOyCJq
9zloexLL9TuIw4JriJeYJcJWJ9iDa2DZm4zdvSYNGY39R+FXVD4D1PNrkVGv8Oaq
XXIM/DePXD3nkhknjKaWl07U50uv/UBSMKtoDjRLNAN+Q1XSzdudTECxZZp6kthl
P+Jf4OcGz9VwhvaK1IVo8K9qxTl7shlNeimjPfCsJI8B6SiP6D7+/EhGJz5fwEke
XlT2CZGR7nDk7wxJUgb9kJ4vLY6zI7YME4RyxwtPoichQvqbtIwdexjclwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP2JAGHLrZ/RWvjoVMwCT90So1jjMB8GA1UdIwQY
MBaAFER4Z6/sni8pOUqPX5f5CSnZKCECMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkhobnIteWVMeWs1U285Zmxfa0pLZGtvSVFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTMyMmItNjQ4Mi00NGE1LWIzZDIt
M2UxMDkxMDdjZWI2LzEvUkhobnIteWVMeWs1U285Zmxfa0pLZGtvSVFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC83YTMyMmItNjQ4Mi00NGE1LWIzZDItM2UxMDkxMDdjZWI2
LzEvUkhobnIteWVMeWs1U285Zmxfa0pLZGtvSVFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjk3gq5g5
sMQ+O4zty4shZaZcuAtY9uxE07QSQHPXjRcr0dDAtDrlM8FBj1O8aNURxDblhfIk
wBq0Pi9MlROb6CSr6QJksUud+ybRp8XsG+RBWXKnKuvWkomfxdQX0RQZTQB5AWi/
xDn7XVMn0cgjQ24hzbeWcVBPMeUUzQrkymBh0hMvfLVfWbJ+runxxHCjixCPrS+2
i4xaEx3v8tolJNEV97vvm4k2fRd04SdaUViUu/r2ZFZmT7GN78W/lIzzk3OxMM48
EGyN2W2WJQcNXmkzdb+UryQfU3yKkpBBomxNL2ZLXKhJSg9OLXMGEVVtIQCfsu5C
oMKN2HGSZxXToQ==
-----END CERTIFICATE-----