Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File:                     MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier:          yqzfdfpHVKZ00eI14D8mFBzeynkYUkh/taNLLOQsaaI=
Subject key identifier:   75:9C:17:7C:D1:57:37:A4:5A:7B:85:70:EB:93:A7:B9:3B:2E:0E:50
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer:       /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial:       0199FBEB836C304887785AB0CB07955C1469
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number:          1632
Signing time:             Sun 19 Oct 2025 10:02:19 +0000
Manifest this update:     Sun 19 Oct 2025 10:02:19 +0000
Manifest next update:     Mon 20 Oct 2025 10:02:19 +0000
Files and hashes:         1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: wV5b97tcFquHPnyRXDAmwBO3XFtir/3keXYkKXwkMBQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 10:02:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:83:6c:30:48:87:78:5a:b0:cb:07:95:5c:14:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
        Validity
            Not Before: Oct 19 10:02:19 2025 GMT
            Not After : Oct 20 10:02:19 2025 GMT
        Subject: CN=759c177cd15737a45a7b8570eb93a7b93b2e0e50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:23:7c:33:bb:cf:0c:6a:70:1e:60:1d:50:97:
                    26:1b:b2:c4:6e:9b:ad:f7:2d:56:13:3b:36:14:ef:
                    e4:d7:80:d4:09:10:4a:87:92:01:44:2e:e8:cd:98:
                    7a:17:e9:a7:73:2d:69:7f:46:a6:66:e2:3a:6a:aa:
                    25:2a:0b:30:26:29:8f:0c:5d:99:19:a7:16:1e:13:
                    cd:4c:69:94:b0:57:5b:9c:62:a8:e4:af:51:be:a3:
                    4f:5b:88:41:7c:88:7d:1f:c8:55:29:df:ca:97:af:
                    ff:cc:87:9e:bf:16:86:a6:5b:f5:32:53:f2:0d:95:
                    e9:aa:22:8d:7e:fe:c3:98:88:5f:04:98:20:d1:a6:
                    1e:89:cb:55:ef:b3:04:1c:f1:40:69:36:a4:13:d7:
                    69:50:37:79:cf:6b:cb:35:81:6d:06:54:b7:16:67:
                    3f:2d:93:a9:f4:dc:34:bf:8a:c5:bd:df:70:39:a8:
                    01:d4:13:01:d1:92:9b:d5:57:ef:a9:15:2d:d1:b5:
                    7e:c1:3b:e1:58:3d:4d:2e:4f:33:dc:b6:da:6c:0e:
                    c5:79:09:c7:32:bb:d1:51:14:71:46:9d:a2:24:67:
                    6a:9d:33:f3:25:ea:27:e5:4f:99:a5:3d:44:f5:99:
                    b9:f4:cf:64:7b:08:88:5c:aa:6b:58:eb:1b:e2:f5:
                    9a:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:9C:17:7C:D1:57:37:A4:5A:7B:85:70:EB:93:A7:B9:3B:2E:0E:50
            X509v3 Authority Key Identifier:
                keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:44:4e:93:d6:c9:35:ec:d7:aa:de:16:44:75:b1:e9:ce:5a:
         81:c1:08:29:f3:d2:3f:96:78:27:76:04:47:cc:ee:3e:61:0b:
         a0:3f:05:b8:06:75:8b:8b:c7:4e:7a:37:67:dd:95:ec:36:62:
         c3:3b:82:9c:d4:b4:05:3e:0a:0d:c6:f7:69:0c:46:80:3b:4a:
         8b:b0:08:ba:81:b1:72:04:ee:e7:ff:a7:eb:4c:d0:c0:17:97:
         ac:db:c4:50:1b:da:90:41:78:1b:aa:08:3d:4e:89:b4:ec:fa:
         2b:26:d4:35:61:66:80:34:94:c5:e5:b1:b3:8d:14:8a:ee:6c:
         ba:b4:22:81:94:69:61:b0:9a:0e:0b:a1:a7:98:c6:a1:1a:74:
         b8:98:2c:8c:fa:67:cb:4f:39:c7:03:89:ed:4c:d1:fc:b8:0f:
         e0:52:e9:92:91:e4:95:5e:49:24:97:0d:52:ca:94:98:85:68:
         d4:93:05:cc:2a:11:db:07:4b:da:dc:d2:a4:7b:89:78:ec:61:
         2b:d1:ac:01:39:e2:a0:7d:26:a9:75:d8:9f:ae:53:4a:f0:72:
         be:8c:a6:54:da:a9:df:81:4b:12:ec:84:93:d8:96:ef:71:03:
         02:d9:af:85:13:f7:fc:33:1d:c9:7d:69:cb:62:b5:ac:4c:2a:
         05:15:88:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn764NsMEiHeFqwyweVXBRpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMjZlMjQyMmZhNzIyNDU0ZTYwODMxN2QyMTg2MmI2NmFh
MzdkMzMwHhcNMjUxMDE5MTAwMjE5WhcNMjUxMDIwMTAwMjE5WjAzMTEwLwYDVQQD
Eyg3NTljMTc3Y2QxNTczN2E0NWE3Yjg1NzBlYjkzYTdiOTNiMmUwZTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3SN8M7vPDGpwHmAdUJcmG7LEbput
9y1WEzs2FO/k14DUCRBKh5IBRC7ozZh6F+mncy1pf0amZuI6aqolKgswJimPDF2Z
GacWHhPNTGmUsFdbnGKo5K9RvqNPW4hBfIh9H8hVKd/Kl6//zIeevxaGplv1MlPy
DZXpqiKNfv7DmIhfBJgg0aYeictV77MEHPFAaTakE9dpUDd5z2vLNYFtBlS3Fmc/
LZOp9Nw0v4rFvd9wOagB1BMB0ZKb1VfvqRUt0bV+wTvhWD1NLk8z3LbabA7FeQnH
MrvRURRxRp2iJGdqnTPzJeon5U+ZpT1E9Zm59M9kewiIXKprWOsb4vWanwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHWcF3zRVzekWnuFcOuTp7k7Lg5QMB8GA1UdIwQY
MBaAFDAm4kIvpyJFTmCDF9IYYrZqo30zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUNiaVFpLW5Ja1ZPWUlNWDBoaGl0bXFqZlRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iNzkyY2MtYWI5Ni00NTZlLTlkM2Ut
YTFlZTQ0MGZmZTNlLzEvTUNiaVFpLW5Ja1ZPWUlNWDBoaGl0bXFqZlRNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iNzkyY2MtYWI5Ni00NTZlLTlkM2UtYTFlZTQ0MGZmZTNl
LzEvTUNiaVFpLW5Ja1ZPWUlNWDBoaGl0bXFqZlRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJEROk9bJ
NezXqt4WRHWx6c5agcEIKfPSP5Z4J3YER8zuPmELoD8FuAZ1i4vHTno3Z92V7DZi
wzuCnNS0BT4KDcb3aQxGgDtKi7AIuoGxcgTu5/+n60zQwBeXrNvEUBvakEF4G6oI
PU6JtOz6KybUNWFmgDSUxeWxs40Uiu5surQigZRpYbCaDguhp5jGoRp0uJgsjPpn
y085xwOJ7UzR/LgP4FLpkpHklV5JJJcNUsqUmIVo1JMFzCoR2wdL2tzSpHuJeOxh
K9GsATnioH0mqXXYn65TSvByvoymVNqp34FLEuyEk9iW73EDAtmvhRP3/DMdyX1p
y2K1rEwqBRWI9A==
-----END CERTIFICATE-----