Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft
File:                     5BCXLMRZVogEu0t5HXwTz7IoOIM.mft (raw, json)
Hash identifier:          yoN1yClPldmsbACuQCGzj72DWTYF5gHqkXcQVD9Xbak=
Subject key identifier:   B1:44:23:9C:29:07:26:82:86:1D:2B:ED:3A:CD:DE:37:31:CD:F4:CE
Authority key identifier: E4:10:97:2C:C4:59:56:88:04:BB:4B:79:1D:7C:13:CF:B2:28:38:83
Certificate issuer:       /CN=e410972cc459568804bb4b791d7c13cfb2283883
Certificate serial:       0199FCC61FB05B1FA21EE3096A4D1C793287
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft
Manifest number:          14B1
Signing time:             Sun 19 Oct 2025 14:01:06 +0000
Manifest this update:     Sun 19 Oct 2025 14:01:06 +0000
Manifest next update:     Mon 20 Oct 2025 14:01:06 +0000
Files and hashes:         1: 5BCXLMRZVogEu0t5HXwTz7IoOIM.crl (hash: u1z3DbERu15A48/586SWHvdXURlssRzKw7zurFP5UtY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 14:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:c6:1f:b0:5b:1f:a2:1e:e3:09:6a:4d:1c:79:32:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e410972cc459568804bb4b791d7c13cfb2283883
        Validity
            Not Before: Oct 19 14:01:06 2025 GMT
            Not After : Oct 20 14:01:06 2025 GMT
        Subject: CN=b144239c29072682861d2bed3acdde3731cdf4ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:f8:fa:d3:3a:fb:5e:fb:0a:c0:eb:61:9f:a0:
                    44:54:51:33:eb:84:b8:fc:54:a1:bb:69:29:64:43:
                    64:18:3b:73:34:ce:66:5e:77:c3:0c:8d:10:bc:18:
                    a4:90:f4:15:e7:25:3a:6e:91:f9:a5:84:1b:f7:fa:
                    08:82:66:99:7e:51:06:b5:59:94:88:52:af:96:c7:
                    5a:90:ea:e1:1b:6e:b8:b6:92:93:b3:94:1a:bb:77:
                    bf:71:f1:62:0a:ab:bc:2d:52:5b:11:98:93:20:c0:
                    76:e8:27:5e:c8:52:0d:a1:52:7a:c4:df:0e:23:f6:
                    bc:e6:be:9a:3a:d8:bd:36:75:c8:41:e3:46:a6:7b:
                    f2:78:2d:3b:f8:e1:c2:1e:4b:31:f3:bc:66:7c:73:
                    70:dd:94:fd:50:6c:3b:2f:37:25:43:3a:c4:a1:dc:
                    6b:60:79:81:05:32:b0:df:38:a5:5a:0b:be:7f:75:
                    fb:5e:ec:10:df:06:76:99:96:5a:90:fd:66:1c:8e:
                    ae:fb:ac:4d:dd:66:64:50:fe:0b:04:f6:8e:5c:77:
                    6d:51:d3:78:a7:00:89:78:d6:70:14:9d:f9:a9:c2:
                    cf:4c:80:ff:ed:22:7b:c8:00:a1:d4:28:5d:92:f6:
                    0a:48:5e:52:b5:6b:5d:82:d3:3e:78:ab:f6:92:dd:
                    a9:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:44:23:9C:29:07:26:82:86:1D:2B:ED:3A:CD:DE:37:31:CD:F4:CE
            X509v3 Authority Key Identifier:
                keyid:E4:10:97:2C:C4:59:56:88:04:BB:4B:79:1D:7C:13:CF:B2:28:38:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:da:a4:a8:92:d5:0c:a3:2c:b5:44:59:45:f9:69:85:3d:e8:
         6b:33:d9:54:8a:ac:76:17:e4:9c:b3:df:f2:19:77:6c:be:84:
         e1:54:58:c6:cc:d0:bf:7b:2b:a0:7b:f1:2e:fa:85:a5:79:9d:
         fc:cf:f2:cb:18:6a:e6:0b:d7:0a:a0:16:c2:1d:b1:4a:35:99:
         fc:96:92:b5:52:50:72:de:fe:1c:83:d6:be:64:87:72:01:06:
         79:de:71:ea:d1:e7:f2:85:63:bb:4d:01:ca:b1:24:2f:5c:06:
         a6:50:ea:9c:9c:51:4f:cc:07:26:2d:cd:36:a7:94:26:af:bd:
         02:a0:6d:43:7a:e1:dc:50:38:5c:8e:93:0a:d4:9b:d4:a2:c8:
         dc:a0:5a:48:f8:32:c8:f0:c8:fc:1e:10:da:d2:23:b8:aa:ba:
         f0:6a:86:36:96:42:5c:35:33:84:a7:bd:4e:ef:b9:8c:fe:58:
         8f:e9:72:41:00:2d:f1:97:fb:5d:4a:58:dd:cd:e2:92:be:e5:
         81:59:b1:6d:c5:19:93:d1:c2:c5:c1:98:53:28:12:40:0c:4a:
         dd:68:e5:18:28:a1:93:73:79:bf:d7:e1:43:46:96:4e:05:a7:
         49:64:3c:ab:90:3e:a7:42:6b:74:4a:76:97:b8:37:29:0a:02:
         d6:89:73:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xh+wWx+iHuMJak0ceTKHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MTA5NzJjYzQ1OTU2ODgwNGJiNGI3OTFkN2MxM2NmYjIy
ODM4ODMwHhcNMjUxMDE5MTQwMTA2WhcNMjUxMDIwMTQwMTA2WjAzMTEwLwYDVQQD
EyhiMTQ0MjM5YzI5MDcyNjgyODYxZDJiZWQzYWNkZGUzNzMxY2RmNGNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fj60zr7XvsKwOthn6BEVFEz64S4
/FShu2kpZENkGDtzNM5mXnfDDI0QvBikkPQV5yU6bpH5pYQb9/oIgmaZflEGtVmU
iFKvlsdakOrhG264tpKTs5Qau3e/cfFiCqu8LVJbEZiTIMB26CdeyFINoVJ6xN8O
I/a85r6aOti9NnXIQeNGpnvyeC07+OHCHksx87xmfHNw3ZT9UGw7LzclQzrEodxr
YHmBBTKw3zilWgu+f3X7XuwQ3wZ2mZZakP1mHI6u+6xN3WZkUP4LBPaOXHdtUdN4
pwCJeNZwFJ35qcLPTID/7SJ7yACh1ChdkvYKSF5StWtdgtM+eKv2kt2pGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFEI5wpByaChh0r7TrN3jcxzfTOMB8GA1UdIwQY
MBaAFOQQlyzEWVaIBLtLeR18E8+yKDiDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUJDWExNUlpWb2dFdTB0NUhYd1R6N0lvT0lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zMDZlNjItZTU4NC00OTJhLWJmNDYt
ZjI3Y2VmNGJhMjI0LzEvNUJDWExNUlpWb2dFdTB0NUhYd1R6N0lvT0lNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8zMDZlNjItZTU4NC00OTJhLWJmNDYtZjI3Y2VmNGJhMjI0
LzEvNUJDWExNUlpWb2dFdTB0NUhYd1R6N0lvT0lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARtqkqJLV
DKMstURZRflphT3oazPZVIqsdhfknLPf8hl3bL6E4VRYxszQv3sroHvxLvqFpXmd
/M/yyxhq5gvXCqAWwh2xSjWZ/JaStVJQct7+HIPWvmSHcgEGed5x6tHn8oVju00B
yrEkL1wGplDqnJxRT8wHJi3NNqeUJq+9AqBtQ3rh3FA4XI6TCtSb1KLI3KBaSPgy
yPDI/B4Q2tIjuKq68GqGNpZCXDUzhKe9Tu+5jP5Yj+lyQQAt8Zf7XUpY3c3ikr7l
gVmxbcUZk9HCxcGYUygSQAxK3WjlGCihk3N5v9fhQ0aWTgWnSWQ8q5A+p0JrdEp2
l7g3KQoC1olzGg==
-----END CERTIFICATE-----