Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft
File:                     FK5SmozFunaS25UmkqCLVCJLvzY.mft (raw, json)
Hash identifier:          lgS2Tb3AIZ2Wi7dI23TFG4z/OXZG7QOIfcus17MI9Zg=
Subject key identifier:   B7:44:21:BC:7B:55:F2:27:1F:13:90:29:FA:BA:C2:BA:53:49:15:0B
Authority key identifier: 14:AE:52:9A:8C:C5:BA:76:92:DB:95:26:92:A0:8B:54:22:4B:BF:36
Certificate issuer:       /CN=14ae529a8cc5ba7692db952692a08b54224bbf36
Certificate serial:       0198D4A8053E5F65146EB86503A45F19DF38
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft
Manifest number:          1645
Signing time:             Sat 23 Aug 2025 02:00:37 +0000
Manifest this update:     Sat 23 Aug 2025 02:00:37 +0000
Manifest next update:     Sun 24 Aug 2025 02:00:37 +0000
Files and hashes:         1: FK5SmozFunaS25UmkqCLVCJLvzY.crl (hash: 0U438LRmm62honBTk5ARGFkc/a0ccZ7PYlsOPFhtKi0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 02:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:a8:05:3e:5f:65:14:6e:b8:65:03:a4:5f:19:df:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14ae529a8cc5ba7692db952692a08b54224bbf36
        Validity
            Not Before: Aug 23 02:00:37 2025 GMT
            Not After : Aug 24 02:00:37 2025 GMT
        Subject: CN=b74421bc7b55f2271f139029fabac2ba5349150b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:0b:13:9f:f3:a6:03:1f:50:1a:ab:77:93:89:
                    e9:fb:8c:b5:40:ba:c1:04:ac:14:ab:73:ee:2b:e0:
                    91:0b:18:47:a4:e8:64:67:02:45:5b:f8:ae:9e:48:
                    65:43:78:3a:d7:72:de:c7:92:9b:fb:d5:a3:b6:81:
                    1c:8e:f4:a1:62:fe:7a:ee:13:75:33:6b:93:6d:a2:
                    18:f5:45:50:6b:11:87:a5:69:f3:0e:15:38:1f:47:
                    4a:c7:f9:01:cf:b4:a0:0e:07:83:ab:8d:07:d7:7b:
                    1b:5f:86:a3:cc:4c:e3:e0:3a:6d:a9:5b:3b:34:5d:
                    fc:ff:43:98:c8:cb:0c:fd:83:0c:df:2f:e8:11:0c:
                    d3:7c:57:d1:9b:ef:2e:13:03:4b:84:fb:2d:ee:a4:
                    0f:47:eb:30:38:9b:ab:d0:33:14:50:43:9d:5a:fe:
                    a5:f0:98:81:4f:e3:f3:e6:50:ed:b5:18:64:07:39:
                    d7:6d:cd:58:09:0b:4c:42:ea:27:f5:8a:27:13:f2:
                    49:6d:03:ad:ba:da:03:f0:29:33:10:a5:a3:58:26:
                    77:d5:c7:8a:0b:1c:ea:bf:2a:cb:be:53:ab:8b:20:
                    21:79:d4:72:01:0d:4f:11:d5:b9:73:29:62:06:e0:
                    d4:d0:8b:80:47:d1:c8:db:b8:12:4c:96:9e:3a:f1:
                    75:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:44:21:BC:7B:55:F2:27:1F:13:90:29:FA:BA:C2:BA:53:49:15:0B
            X509v3 Authority Key Identifier:
                keyid:14:AE:52:9A:8C:C5:BA:76:92:DB:95:26:92:A0:8B:54:22:4B:BF:36

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:17:27:10:6f:bf:3d:46:1b:a2:58:29:a6:76:5c:d3:82:2b:
         58:4b:67:74:12:5d:3b:a5:7f:37:db:2b:39:52:b9:ff:62:6f:
         7d:44:58:db:e1:e4:b9:03:c4:5d:4b:87:fe:b6:27:06:60:fb:
         6c:19:04:b7:2c:ec:31:02:1b:38:78:92:0a:51:18:a7:55:7a:
         4d:4f:69:15:01:b9:cc:c8:61:19:3a:0f:35:9b:be:8d:d9:4f:
         2a:2c:bf:d0:d0:a0:a6:f4:ab:97:06:ca:f9:a3:91:fa:c3:fc:
         28:12:56:b8:90:4a:0e:52:d8:7e:34:3e:f3:51:c7:4e:b3:4d:
         fa:8f:d2:1d:bc:4b:b7:52:b9:2e:f2:e3:68:a0:ef:9c:5f:22:
         c9:f8:1d:21:0b:ad:2f:97:45:b8:76:1a:6d:50:01:76:10:3e:
         76:92:31:fc:1d:3a:84:b9:e0:f2:ea:67:5d:4b:42:d0:4f:cc:
         0f:46:01:b8:4e:62:e6:2b:0f:57:1a:81:c4:4f:ec:3d:64:bb:
         1f:88:30:ec:36:0d:1a:e8:bb:25:72:f9:39:c5:e6:f7:6a:f2:
         ca:af:8b:d9:71:da:84:5d:4f:b2:36:58:ab:ac:87:69:91:e0:
         57:a3:ab:1b:fb:71:88:f1:8f:1e:5b:b5:6a:53:7a:c4:21:97:
         80:60:26:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqAU+X2UUbrhlA6RfGd84MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YWU1MjlhOGNjNWJhNzY5MmRiOTUyNjkyYTA4YjU0MjI0
YmJmMzYwHhcNMjUwODIzMDIwMDM3WhcNMjUwODI0MDIwMDM3WjAzMTEwLwYDVQQD
EyhiNzQ0MjFiYzdiNTVmMjI3MWYxMzkwMjlmYWJhYzJiYTUzNDkxNTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wsTn/OmAx9QGqt3k4np+4y1QLrB
BKwUq3PuK+CRCxhHpOhkZwJFW/iunkhlQ3g613Lex5Kb+9WjtoEcjvShYv567hN1
M2uTbaIY9UVQaxGHpWnzDhU4H0dKx/kBz7SgDgeDq40H13sbX4ajzEzj4DptqVs7
NF38/0OYyMsM/YMM3y/oEQzTfFfRm+8uEwNLhPst7qQPR+swOJur0DMUUEOdWv6l
8JiBT+Pz5lDttRhkBznXbc1YCQtMQuon9YonE/JJbQOtutoD8CkzEKWjWCZ31ceK
CxzqvyrLvlOriyAhedRyAQ1PEdW5cyliBuDU0IuAR9HI27gSTJaeOvF1qQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLdEIbx7VfInHxOQKfq6wrpTSRULMB8GA1UdIwQY
MBaAFBSuUpqMxbp2ktuVJpKgi1QiS782MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83NmVhNzctMTc1Ny00ZGIyLWEwODMt
ZDIxOGZiM2MxMzdiLzEvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS83NmVhNzctMTc1Ny00ZGIyLWEwODMtZDIxOGZiM2MxMzdi
LzEvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORcnEG+/
PUYbolgppnZc04IrWEtndBJdO6V/N9srOVK5/2JvfURY2+HkuQPEXUuH/rYnBmD7
bBkEtyzsMQIbOHiSClEYp1V6TU9pFQG5zMhhGToPNZu+jdlPKiy/0NCgpvSrlwbK
+aOR+sP8KBJWuJBKDlLYfjQ+81HHTrNN+o/SHbxLt1K5LvLjaKDvnF8iyfgdIQut
L5dFuHYabVABdhA+dpIx/B06hLng8upnXUtC0E/MD0YBuE5i5isPVxqBxE/sPWS7
H4gw7DYNGui7JXL5OcXm92ryyq+L2XHahF1PsjZYq6yHaZHgV6OrG/txiPGPHlu1
alN6xCGXgGAmiw==
-----END CERTIFICATE-----