Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
File:                     d_M68l-VqylxEYjp_-pQzMshHXY.mft (raw, json)
Hash identifier:          9Nmut0QyGKciO6HcZd5dX4OrO6oJJP65LBL/CxwTHoA=
Subject key identifier:   69:0F:29:C6:87:F9:58:30:0C:23:14:48:94:9F:F8:EB:EE:D9:33:7A
Authority key identifier: 77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76
Certificate issuer:       /CN=77f33af25f95ab29711188e9ffea50cccb211d76
Certificate serial:       0199FD34329EF96E18BE89421773CDB97E0B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
Manifest number:          0E58
Signing time:             Sun 19 Oct 2025 16:01:20 +0000
Manifest this update:     Sun 19 Oct 2025 16:01:20 +0000
Manifest next update:     Mon 20 Oct 2025 16:01:20 +0000
Files and hashes:         1: d_M68l-VqylxEYjp_-pQzMshHXY.crl (hash: dX/HGfdIwpZL+T2M+sFytujKaL0wxdb38RQVKPjnRcI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:34:32:9e:f9:6e:18:be:89:42:17:73:cd:b9:7e:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77f33af25f95ab29711188e9ffea50cccb211d76
        Validity
            Not Before: Oct 19 16:01:20 2025 GMT
            Not After : Oct 20 16:01:20 2025 GMT
        Subject: CN=690f29c687f958300c231448949ff8ebeed9337a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:c0:bf:df:d1:c5:79:6d:cc:3f:37:6c:eb:0e:
                    f8:2d:b6:5d:b4:5f:c6:69:48:b9:2c:07:39:2b:4b:
                    de:36:4a:38:92:73:ee:30:17:4c:81:00:b6:36:f0:
                    a5:f4:56:2c:ae:d0:e3:bb:f0:92:17:c6:e0:a9:f8:
                    d7:7d:2a:18:3f:8b:b9:b8:25:fd:e5:91:88:6a:39:
                    fc:47:a8:0e:b3:b9:51:40:e2:c9:93:15:32:86:c7:
                    6d:f1:4b:2a:af:fe:56:62:c1:4c:e9:f1:74:6e:53:
                    4d:c4:86:ea:47:59:fa:69:6d:d0:f3:b6:d9:ad:89:
                    33:16:e1:7e:39:f0:4d:f2:eb:7e:4e:92:21:49:98:
                    45:3b:e7:00:e2:f3:3b:3b:9e:05:b8:7c:58:16:82:
                    cc:9d:e6:00:2f:c5:9c:86:d4:20:1c:de:15:20:d5:
                    8e:70:55:65:14:1e:8b:11:4c:c2:b3:2e:d5:01:8b:
                    98:b7:ca:0e:c4:0a:a6:21:1c:d8:9b:ad:8b:76:7a:
                    0f:29:32:8e:5b:4d:8a:0d:34:ef:85:91:8f:29:5e:
                    6e:7d:ed:95:c6:65:ff:fc:78:f3:51:96:93:07:64:
                    63:96:d5:8f:ff:a4:a7:81:4b:0a:48:dc:6e:f8:8f:
                    95:52:d9:09:05:47:d8:1b:d4:23:83:88:a8:bb:c2:
                    b2:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:0F:29:C6:87:F9:58:30:0C:23:14:48:94:9F:F8:EB:EE:D9:33:7A
            X509v3 Authority Key Identifier:
                keyid:77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:5f:c0:db:8b:7b:da:ba:2e:f6:9d:4e:ee:55:6e:67:c7:8d:
         fa:b8:7d:d1:59:fa:7e:85:33:71:15:86:c2:fa:e4:dc:0f:27:
         f5:1d:ac:27:0a:44:c0:36:b8:48:90:81:51:35:e2:92:e1:40:
         ab:e7:81:df:75:40:9e:4d:53:f0:61:2b:77:79:f4:38:52:7d:
         56:c7:c7:51:86:28:be:50:33:3b:cf:79:37:3e:6e:44:93:8f:
         b9:1d:27:b1:0b:65:22:65:50:71:50:f4:9b:0a:fb:96:cd:b8:
         3d:41:69:3e:77:67:a0:fc:b8:fe:98:f9:04:18:e7:c2:3b:d7:
         38:4e:a2:3a:31:fa:9a:ca:dd:22:45:57:c8:8f:95:48:49:96:
         8b:4d:5f:04:81:6b:9f:66:e5:14:c9:bf:b0:ad:d8:d7:eb:b0:
         07:15:1e:50:a4:3a:1a:3a:52:30:c7:ed:72:bc:2b:da:33:68:
         6e:bd:31:9b:c3:8b:21:e3:5b:0a:6d:e5:fb:db:5b:51:a2:97:
         76:5b:63:65:0e:67:22:f1:0a:b8:6b:f5:f4:d6:c3:01:e1:cd:
         ee:1d:2d:1d:b9:33:49:76:c3:66:bb:df:64:5e:f0:82:ad:af:
         02:a1:76:5b:45:4b:f2:8c:6d:93:5e:6a:9b:86:75:8f:ff:3c:
         10:eb:a0:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NDKe+W4YvolCF3PNuX4LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjMzYWYyNWY5NWFiMjk3MTExODhlOWZmZWE1MGNjY2Iy
MTFkNzYwHhcNMjUxMDE5MTYwMTIwWhcNMjUxMDIwMTYwMTIwWjAzMTEwLwYDVQQD
Eyg2OTBmMjljNjg3Zjk1ODMwMGMyMzE0NDg5NDlmZjhlYmVlZDkzMzdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMC/39HFeW3MPzds6w74LbZdtF/G
aUi5LAc5K0veNko4knPuMBdMgQC2NvCl9FYsrtDju/CSF8bgqfjXfSoYP4u5uCX9
5ZGIajn8R6gOs7lRQOLJkxUyhsdt8Usqr/5WYsFM6fF0blNNxIbqR1n6aW3Q87bZ
rYkzFuF+OfBN8ut+TpIhSZhFO+cA4vM7O54FuHxYFoLMneYAL8WchtQgHN4VINWO
cFVlFB6LEUzCsy7VAYuYt8oOxAqmIRzYm62LdnoPKTKOW02KDTTvhZGPKV5ufe2V
xmX//HjzUZaTB2RjltWP/6SngUsKSNxu+I+VUtkJBUfYG9Qjg4iou8KysQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGkPKcaH+VgwDCMUSJSf+Ovu2TN6MB8GA1UdIwQY
MBaAFHfzOvJflaspcRGI6f/qUMzLIR12MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9NNjhsLVZxeWx4RVlqcF8tcFF6TXNoSFhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9iNjQ2MmYtY2M3Mi00ZjY5LTk2ZjQt
OGJjYTA1NjFiNzJkLzEvZF9NNjhsLVZxeWx4RVlqcF8tcFF6TXNoSFhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9iNjQ2MmYtY2M3Mi00ZjY5LTk2ZjQtOGJjYTA1NjFiNzJk
LzEvZF9NNjhsLVZxeWx4RVlqcF8tcFF6TXNoSFhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb1/A24t7
2rou9p1O7lVuZ8eN+rh90Vn6foUzcRWGwvrk3A8n9R2sJwpEwDa4SJCBUTXikuFA
q+eB33VAnk1T8GErd3n0OFJ9VsfHUYYovlAzO895Nz5uRJOPuR0nsQtlImVQcVD0
mwr7ls24PUFpPndnoPy4/pj5BBjnwjvXOE6iOjH6msrdIkVXyI+VSEmWi01fBIFr
n2blFMm/sK3Y1+uwBxUeUKQ6GjpSMMftcrwr2jNobr0xm8OLIeNbCm3l+9tbUaKX
dltjZQ5nIvEKuGv19NbDAeHN7h0tHbkzSXbDZrvfZF7wgq2vAqF2W0VL8oxtk15q
m4Z1j/88EOug7A==
-----END CERTIFICATE-----