Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File:                     cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier:          3ln//TWOLlJ9wIMSfHuDhR03XEXqlTE/OguGnMxi4os=
Subject key identifier:   71:B0:0B:82:7C:97:63:FB:1C:5C:7C:3E:A8:7B:49:52:E2:D2:A4:6C
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer:       /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial:       0199FD344B4C3630FA5C0F2E190032004147
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number:          048C
Signing time:             Sun 19 Oct 2025 16:01:26 +0000
Manifest this update:     Sun 19 Oct 2025 16:01:26 +0000
Manifest next update:     Mon 20 Oct 2025 16:01:26 +0000
Files and hashes:         1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: EwIxtqnYk4IsG46M49DbtI3/TIOyXjnZwYJ91uv9BUY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:34:4b:4c:36:30:fa:5c:0f:2e:19:00:32:00:41:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
        Validity
            Not Before: Oct 19 16:01:26 2025 GMT
            Not After : Oct 20 16:01:26 2025 GMT
        Subject: CN=71b00b827c9763fb1c5c7c3ea87b4952e2d2a46c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:36:17:76:7f:b3:f2:cf:3d:8f:7c:67:00:ab:
                    e3:f2:56:2c:7c:b5:92:ac:9d:7c:35:8d:4b:49:15:
                    1f:99:0c:a0:de:ec:31:53:68:71:80:15:af:ee:ef:
                    45:1a:d4:72:ed:a3:b8:fe:bf:98:ee:b0:ad:d9:f4:
                    50:3a:34:71:e9:3d:aa:a8:5e:70:35:e7:59:7a:c1:
                    19:da:4c:49:b2:58:11:a9:bf:be:18:70:5d:75:02:
                    ad:9f:2d:69:91:7b:54:e4:0f:62:83:5e:dc:d2:2a:
                    61:a9:09:ef:6a:e4:05:5a:5e:35:28:d6:a5:d0:a6:
                    2a:2d:09:62:7f:b0:56:da:73:88:6a:51:fa:1a:1e:
                    94:53:97:1c:84:09:40:b3:2f:9b:2a:23:9e:d6:8c:
                    71:88:03:f6:c3:17:fa:0b:06:9b:67:e7:07:7b:f1:
                    63:67:88:0c:87:1b:e7:00:ce:fe:ec:be:9d:03:a4:
                    23:be:40:14:0b:df:33:39:61:18:e7:fc:c7:86:7d:
                    81:12:65:bc:96:75:18:80:ea:c1:23:be:28:01:5e:
                    9a:09:7a:5b:63:b4:98:db:c4:a7:a5:3b:1e:c5:d8:
                    0e:ec:cf:fb:c6:db:6d:4a:35:ba:18:41:d7:1d:e3:
                    c4:bb:36:24:30:0a:57:2a:6d:39:c0:d4:68:15:06:
                    c3:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:B0:0B:82:7C:97:63:FB:1C:5C:7C:3E:A8:7B:49:52:E2:D2:A4:6C
            X509v3 Authority Key Identifier:
                keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:4b:74:3d:ec:b3:97:c0:ca:30:9d:c0:5a:0f:79:dd:4e:2a:
         06:30:9b:b9:9b:1e:3b:59:03:32:63:47:ce:33:65:5e:6f:a3:
         b5:51:51:3d:b9:3e:42:a7:7e:57:3f:39:3b:8d:1a:6b:6e:ba:
         5a:30:db:bf:d3:a0:40:f3:02:c9:86:92:73:19:62:b2:3b:b4:
         90:2b:6a:56:d1:38:b4:aa:30:10:e3:dc:5c:11:a3:d8:7d:eb:
         91:ab:99:49:51:bf:88:36:e2:04:90:b3:c5:e9:aa:7e:4c:1d:
         97:49:49:24:4e:37:78:a2:83:9f:6b:dc:7f:c9:af:82:df:60:
         f2:16:e2:84:86:7d:81:bf:aa:f9:9b:6f:f7:49:af:37:db:d8:
         9b:5d:5b:e2:d0:66:db:8a:99:48:54:ea:14:71:f2:ca:ea:64:
         c4:27:f9:a3:8a:ad:21:cd:7e:6d:27:41:2c:e7:d0:9b:ff:af:
         d8:23:6e:41:66:18:75:a4:7b:90:d5:bd:80:e6:71:9e:fc:d3:
         87:14:b5:f3:86:f2:2e:7e:d3:30:25:28:47:1e:13:76:e9:e7:
         04:ec:42:27:30:84:20:d4:07:a9:be:65:c0:72:22:d1:b4:d1:
         70:0e:d1:51:7d:bb:a4:c8:54:08:d3:4c:74:50:59:7d:b2:37:
         35:01:15:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NEtMNjD6XA8uGQAyAEFHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZTVhMDYxMzE1NjcwYjViZjI2ZTI3N2M5MmMzODk0ZDcy
Y2QzYzUwHhcNMjUxMDE5MTYwMTI2WhcNMjUxMDIwMTYwMTI2WjAzMTEwLwYDVQQD
Eyg3MWIwMGI4MjdjOTc2M2ZiMWM1YzdjM2VhODdiNDk1MmUyZDJhNDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTYXdn+z8s89j3xnAKvj8lYsfLWS
rJ18NY1LSRUfmQyg3uwxU2hxgBWv7u9FGtRy7aO4/r+Y7rCt2fRQOjRx6T2qqF5w
NedZesEZ2kxJslgRqb++GHBddQKtny1pkXtU5A9ig17c0iphqQnvauQFWl41KNal
0KYqLQlif7BW2nOIalH6Gh6UU5cchAlAsy+bKiOe1oxxiAP2wxf6CwabZ+cHe/Fj
Z4gMhxvnAM7+7L6dA6QjvkAUC98zOWEY5/zHhn2BEmW8lnUYgOrBI74oAV6aCXpb
Y7SY28SnpTsexdgO7M/7xtttSjW6GEHXHePEuzYkMApXKm05wNRoFQbDLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHGwC4J8l2P7HFx8Pqh7SVLi0qRsMB8GA1UdIwQY
MBaAFHDloGExVnC1vybid8ksOJTXLNPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY09XZ1lURldjTFdfSnVKM3lTdzRsTmNzMDhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83NDZkM2EtMTNiZS00OTJlLThjYjMt
NjJhYTA1NGE3ODUxLzEvY09XZ1lURldjTFdfSnVKM3lTdzRsTmNzMDhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS83NDZkM2EtMTNiZS00OTJlLThjYjMtNjJhYTA1NGE3ODUx
LzEvY09XZ1lURldjTFdfSnVKM3lTdzRsTmNzMDhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQUt0Peyz
l8DKMJ3AWg953U4qBjCbuZseO1kDMmNHzjNlXm+jtVFRPbk+Qqd+Vz85O40aa266
WjDbv9OgQPMCyYaScxlisju0kCtqVtE4tKowEOPcXBGj2H3rkauZSVG/iDbiBJCz
xemqfkwdl0lJJE43eKKDn2vcf8mvgt9g8hbihIZ9gb+q+Ztv90mvN9vYm11b4tBm
24qZSFTqFHHyyupkxCf5o4qtIc1+bSdBLOfQm/+v2CNuQWYYdaR7kNW9gOZxnvzT
hxS184byLn7TMCUoRx4TdunnBOxCJzCEINQHqb5lwHIi0bTRcA7RUX27pMhUCNNM
dFBZfbI3NQEVOA==
-----END CERTIFICATE-----