Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
File:                     13j4yccHK3MEiPnjISjdiVveMtM.mft (raw, json)
Hash identifier:          YAn7QeLgKceMqDsvY1nZ99JCE8l64YidBU3gxN3i/kg=
Subject key identifier:   5F:EA:E4:4E:DB:AC:A5:0F:99:8C:C3:59:1D:CD:82:78:C8:C3:D7:BC
Authority key identifier: D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
Certificate issuer:       /CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Certificate serial:       019A00DA26F385C8770F2814284760AA432E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
Manifest number:          06FE
Signing time:             Mon 20 Oct 2025 09:01:27 +0000
Manifest this update:     Mon 20 Oct 2025 09:01:27 +0000
Manifest next update:     Tue 21 Oct 2025 09:01:27 +0000
Files and hashes:         1: 13j4yccHK3MEiPnjISjdiVveMtM.crl (hash: rY21UiUjdIpDJe1ztrIYkYpzeratb+FEqtTzj1XWb24=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 09:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:00:da:26:f3:85:c8:77:0f:28:14:28:47:60:aa:43:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d778f8c9c7072b730488f9e32128dd895bde32d3
        Validity
            Not Before: Oct 20 09:01:27 2025 GMT
            Not After : Oct 21 09:01:27 2025 GMT
        Subject: CN=5feae44edbaca50f998cc3591dcd8278c8c3d7bc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:61:45:22:65:88:63:6f:f2:18:51:1e:e4:aa:
                    24:7b:e0:61:13:bf:48:2d:61:29:0c:20:70:45:28:
                    96:91:f7:fb:64:a7:bf:3e:b2:92:0e:0f:6b:57:64:
                    0d:b0:1f:a8:b3:b6:2f:de:2e:11:91:31:66:20:ae:
                    76:92:e0:99:9f:0a:c4:7a:b9:38:4e:78:d5:ad:0c:
                    3c:b6:65:49:c1:c2:2e:07:b9:d9:98:9f:fc:ca:7b:
                    f7:16:52:ad:37:0d:24:a4:37:fb:3f:53:59:9b:7e:
                    d6:c3:02:e0:b5:03:10:38:8c:d8:fd:81:37:2f:89:
                    cc:5b:a4:ce:8a:24:88:01:e2:b2:7c:71:8f:75:0e:
                    e6:8e:a4:c7:2a:16:ef:c2:ab:55:58:c8:84:42:50:
                    7b:67:e7:69:fd:8c:29:c0:1c:44:b4:a8:f3:7d:d9:
                    84:81:c5:cc:8d:b3:e6:6d:49:24:01:35:af:47:77:
                    09:49:e6:9a:f6:70:62:8e:1f:fc:6a:17:3e:e6:91:
                    4d:f7:2c:04:69:af:d8:39:7e:d4:c0:92:26:a8:8d:
                    55:76:e8:42:5a:91:62:15:b9:42:42:05:6e:87:80:
                    01:d3:1f:f8:d8:ec:5a:32:16:8f:e1:7c:83:61:70:
                    5e:4e:fd:2a:22:cd:47:54:b6:5f:61:a7:d5:86:b1:
                    94:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:EA:E4:4E:DB:AC:A5:0F:99:8C:C3:59:1D:CD:82:78:C8:C3:D7:BC
            X509v3 Authority Key Identifier:
                keyid:D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:dc:af:f5:3e:d1:0e:fb:36:cc:96:42:7a:ee:78:eb:07:72:
         42:1e:3d:4d:13:0b:44:87:7a:64:4c:c4:28:04:6d:4b:ea:78:
         86:fa:98:0a:40:14:87:76:01:50:6b:11:6a:ac:0d:6e:76:e4:
         69:75:fc:43:31:ea:81:42:58:67:c7:1e:d2:07:15:b1:39:4b:
         9f:05:11:c0:35:10:d8:da:c2:2d:4c:44:da:f4:bc:3b:83:36:
         2e:78:a0:45:27:74:ac:8e:fb:1b:1a:52:d7:ea:43:81:a6:cc:
         e4:9d:63:37:4e:22:1d:19:e0:08:87:e5:61:f0:16:67:9f:79:
         e8:5c:df:a3:39:b7:ba:93:ef:98:a6:65:7f:43:ff:69:21:c1:
         ce:98:d8:f0:41:0f:27:62:ad:2e:02:9c:bd:1b:e1:a5:44:da:
         de:f5:4e:45:0d:32:ab:23:aa:b7:aa:5a:0d:0c:4d:f9:59:ed:
         d7:22:4f:ee:d4:b8:6b:f4:c8:4c:5b:ed:05:1b:f3:8c:bb:f3:
         5f:d6:9d:c2:63:ae:c0:9c:47:de:7c:18:74:31:5a:59:8f:15:
         68:6a:ef:d0:d6:96:c9:07:3d:0e:2b:b7:36:4f:f7:65:80:d3:
         f9:10:99:27:2a:d6:24:a8:c1:55:fe:e8:8f:a8:a6:35:78:63:
         b4:0c:2d:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoA2ibzhch3DygUKEdgqkMuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NzhmOGM5YzcwNzJiNzMwNDg4ZjllMzIxMjhkZDg5NWJk
ZTMyZDMwHhcNMjUxMDIwMDkwMTI3WhcNMjUxMDIxMDkwMTI3WjAzMTEwLwYDVQQD
Eyg1ZmVhZTQ0ZWRiYWNhNTBmOTk4Y2MzNTkxZGNkODI3OGM4YzNkN2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWFFImWIY2/yGFEe5Koke+BhE79I
LWEpDCBwRSiWkff7ZKe/PrKSDg9rV2QNsB+os7Yv3i4RkTFmIK52kuCZnwrEerk4
TnjVrQw8tmVJwcIuB7nZmJ/8ynv3FlKtNw0kpDf7P1NZm37WwwLgtQMQOIzY/YE3
L4nMW6TOiiSIAeKyfHGPdQ7mjqTHKhbvwqtVWMiEQlB7Z+dp/YwpwBxEtKjzfdmE
gcXMjbPmbUkkATWvR3cJSeaa9nBijh/8ahc+5pFN9ywEaa/YOX7UwJImqI1VduhC
WpFiFblCQgVuh4AB0x/42OxaMhaP4XyDYXBeTv0qIs1HVLZfYafVhrGUvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/q5E7brKUPmYzDWR3NgnjIw9e8MB8GA1UdIwQY
MBaAFNd4+MnHBytzBIj54yEo3Ylb3jLTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTNqNHljY0hLM01FaVBuaklTamRpVnZlTXRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9hMjg0ZjctYWFkZS00MTY4LWE5ZDAt
NThiZTkyN2Y0MmU5LzEvMTNqNHljY0hLM01FaVBuaklTamRpVnZlTXRNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9hMjg0ZjctYWFkZS00MTY4LWE5ZDAtNThiZTkyN2Y0MmU5
LzEvMTNqNHljY0hLM01FaVBuaklTamRpVnZlTXRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApdyv9T7R
Dvs2zJZCeu546wdyQh49TRMLRId6ZEzEKARtS+p4hvqYCkAUh3YBUGsRaqwNbnbk
aXX8QzHqgUJYZ8ce0gcVsTlLnwURwDUQ2NrCLUxE2vS8O4M2LnigRSd0rI77GxpS
1+pDgabM5J1jN04iHRngCIflYfAWZ5956Fzfozm3upPvmKZlf0P/aSHBzpjY8EEP
J2KtLgKcvRvhpUTa3vVORQ0yqyOqt6paDQxN+Vnt1yJP7tS4a/TITFvtBRvzjLvz
X9adwmOuwJxH3nwYdDFaWY8VaGrv0NaWyQc9Diu3Nk/3ZYDT+RCZJyrWJKjBVf7o
j6imNXhjtAwtOg==
-----END CERTIFICATE-----