Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
File:                     TORqOpla2FRclax7aSMcpiT8iJM.mft (raw, json)
Hash identifier:          eQgSjwwt0C8Z64Soqa6aeMQDbXbjKzm47dVTEaLRTG0=
Subject key identifier:   EC:E2:2E:52:D6:57:BD:25:B6:9C:55:BE:2D:B8:AD:B6:4A:DE:43:64
Authority key identifier: 4C:E4:6A:3A:99:5A:D8:54:5C:95:AC:7B:69:23:1C:A6:24:FC:88:93
Certificate issuer:       /CN=4ce46a3a995ad8545c95ac7b69231ca624fc8893
Certificate serial:       0199FDDA4259AE67DFE6A3A5290AA8DC4542
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
Manifest number:          11C8
Signing time:             Sun 19 Oct 2025 19:02:43 +0000
Manifest this update:     Sun 19 Oct 2025 19:02:43 +0000
Manifest next update:     Mon 20 Oct 2025 19:02:43 +0000
Files and hashes:         1: TORqOpla2FRclax7aSMcpiT8iJM.crl (hash: 0n5Cph0wWvUH2g0tPBYKYV4d5OnBiQBCbZ1STdW1ylk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 19:02:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:da:42:59:ae:67:df:e6:a3:a5:29:0a:a8:dc:45:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ce46a3a995ad8545c95ac7b69231ca624fc8893
        Validity
            Not Before: Oct 19 19:02:43 2025 GMT
            Not After : Oct 20 19:02:43 2025 GMT
        Subject: CN=ece22e52d657bd25b69c55be2db8adb64ade4364
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:2f:2d:9e:ac:68:d7:66:20:d4:36:0b:96:73:
                    dd:e8:f0:d0:a0:23:dc:a5:1a:f6:d8:5e:f9:e3:e7:
                    41:f8:ef:5e:65:9f:45:40:ef:84:83:fc:90:b5:7d:
                    63:c8:79:3d:97:9b:42:7d:2a:0a:af:ae:ae:1f:2d:
                    57:5b:87:52:4c:2c:8c:e3:73:5b:6b:c3:4d:a2:3e:
                    65:4a:fb:4f:3e:dc:62:a2:18:d7:fb:54:9e:5e:44:
                    cb:69:e1:4a:60:51:ec:b2:38:1a:6d:cf:48:2d:fc:
                    df:e4:b7:78:3c:72:ff:46:9c:4c:5a:4a:7b:1e:71:
                    33:7a:f0:49:6c:e6:10:6e:58:f8:83:48:87:28:9b:
                    8c:23:58:ac:0d:8c:cb:9c:5c:ad:d6:19:63:f5:f5:
                    0b:a9:d9:f6:29:27:5e:5b:51:c2:b8:f7:11:85:bd:
                    88:17:5b:8c:b9:6b:ce:cd:6f:d8:90:32:af:cf:b0:
                    13:0c:49:c6:d5:63:c4:97:10:e8:26:1a:bd:17:53:
                    2a:e4:29:8f:8c:f3:8b:58:c3:38:a9:a6:61:36:a3:
                    2d:25:17:cb:19:3f:a6:b2:65:d6:c1:3c:09:0c:f4:
                    97:6a:75:7c:32:52:be:5b:d5:df:d7:3f:e7:3e:99:
                    a5:88:ce:8a:12:6f:7a:c3:e5:08:1c:bc:c5:d9:d5:
                    24:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:E2:2E:52:D6:57:BD:25:B6:9C:55:BE:2D:B8:AD:B6:4A:DE:43:64
            X509v3 Authority Key Identifier:
                keyid:4C:E4:6A:3A:99:5A:D8:54:5C:95:AC:7B:69:23:1C:A6:24:FC:88:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:59:da:2a:bd:1a:dd:c1:29:12:5f:eb:67:d9:76:a9:ec:3e:
         7d:c0:f7:a0:94:81:b9:51:f6:d9:83:79:c8:c6:ca:92:6d:8b:
         d1:0c:aa:c3:be:ac:3b:a8:33:2c:81:9f:1c:27:25:b2:94:92:
         4e:66:3d:b7:66:d7:19:04:18:27:5d:e6:cc:1b:57:d2:66:39:
         cc:93:30:81:10:c7:60:d3:de:4f:a7:24:fc:bc:3a:3d:19:46:
         91:49:09:fb:ec:75:e8:c6:b6:fc:c7:c8:a3:63:e6:ed:1b:06:
         5b:19:36:4b:ad:d2:0f:4d:d0:50:d4:ae:d0:28:6c:99:8b:19:
         75:c1:bc:d7:e3:10:3a:84:70:4c:4c:7a:9f:58:25:94:b0:c3:
         40:85:de:a8:0b:ef:e3:61:9e:e9:0b:15:bc:cc:a9:45:2d:4d:
         0e:75:af:12:a9:a8:3b:cb:70:1b:8f:3b:d7:34:b9:b9:c0:d3:
         22:59:a8:7d:71:2a:95:e2:0f:d1:85:cd:d9:03:e2:ad:34:57:
         54:9f:71:31:ec:e9:c8:86:38:a0:08:8a:0c:1d:88:ce:b9:ab:
         37:3c:9f:69:b9:77:7e:8b:f0:56:2b:64:01:45:3c:0a:6e:8e:
         3f:40:b3:93:1f:f7:e8:fc:23:77:9d:f6:e3:70:75:ba:9d:65:
         e9:14:c6:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92kJZrmff5qOlKQqo3EVCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZTQ2YTNhOTk1YWQ4NTQ1Yzk1YWM3YjY5MjMxY2E2MjRm
Yzg4OTMwHhcNMjUxMDE5MTkwMjQzWhcNMjUxMDIwMTkwMjQzWjAzMTEwLwYDVQQD
EyhlY2UyMmU1MmQ2NTdiZDI1YjY5YzU1YmUyZGI4YWRiNjRhZGU0MzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAui8tnqxo12Yg1DYLlnPd6PDQoCPc
pRr22F754+dB+O9eZZ9FQO+Eg/yQtX1jyHk9l5tCfSoKr66uHy1XW4dSTCyM43Nb
a8NNoj5lSvtPPtxiohjX+1SeXkTLaeFKYFHssjgabc9ILfzf5Ld4PHL/RpxMWkp7
HnEzevBJbOYQblj4g0iHKJuMI1isDYzLnFyt1hlj9fULqdn2KSdeW1HCuPcRhb2I
F1uMuWvOzW/YkDKvz7ATDEnG1WPElxDoJhq9F1Mq5CmPjPOLWMM4qaZhNqMtJRfL
GT+msmXWwTwJDPSXanV8MlK+W9Xf1z/nPpmliM6KEm96w+UIHLzF2dUkRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOziLlLWV70ltpxVvi24rbZK3kNkMB8GA1UdIwQY
MBaAFEzkajqZWthUXJWse2kjHKYk/IiTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE9ScU9wbGEyRlJjbGF4N2FTTWNwaVQ4aUpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iMzRkMDYtNTI0Ny00OGY4LTliNTYt
NjBmNmQ0YTVhNzRmLzEvVE9ScU9wbGEyRlJjbGF4N2FTTWNwaVQ4aUpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iMzRkMDYtNTI0Ny00OGY4LTliNTYtNjBmNmQ0YTVhNzRm
LzEvVE9ScU9wbGEyRlJjbGF4N2FTTWNwaVQ4aUpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVnaKr0a
3cEpEl/rZ9l2qew+fcD3oJSBuVH22YN5yMbKkm2L0Qyqw76sO6gzLIGfHCclspSS
TmY9t2bXGQQYJ13mzBtX0mY5zJMwgRDHYNPeT6ck/Lw6PRlGkUkJ++x16Ma2/MfI
o2Pm7RsGWxk2S63SD03QUNSu0ChsmYsZdcG81+MQOoRwTEx6n1gllLDDQIXeqAvv
42Ge6QsVvMypRS1NDnWvEqmoO8twG4871zS5ucDTIlmofXEqleIP0YXN2QPirTRX
VJ9xMezpyIY4oAiKDB2IzrmrNzyfabl3fovwVitkAUU8Cm6OP0Czkx/36Pwjd532
43B1up1l6RTGGg==
-----END CERTIFICATE-----