Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
File:                     BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft (raw, json)
Hash identifier:          eQWHKjJoGli1uk7la53Etk8qpxU3/vEW4ikcy7ACEfM=
Subject key identifier:   B1:EF:66:F1:0D:C1:D1:4D:85:54:D3:A1:2A:3E:58:C4:19:82:3A:5D
Authority key identifier: 05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01
Certificate issuer:       /CN=056c66d45fe7e2f35599572a776b12764dc69a01
Certificate serial:       0199FE7E06463C721211F069A1A064D7847B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
Manifest number:          E9
Signing time:             Sun 19 Oct 2025 22:01:35 +0000
Manifest this update:     Sun 19 Oct 2025 22:01:35 +0000
Manifest next update:     Mon 20 Oct 2025 22:01:35 +0000
Files and hashes:         1: BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl (hash: ElyeOIx6shXs6JNdXyC0w+vV8wQVd55+w9Thhv83CI4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:7e:06:46:3c:72:12:11:f0:69:a1:a0:64:d7:84:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=056c66d45fe7e2f35599572a776b12764dc69a01
        Validity
            Not Before: Oct 19 22:01:35 2025 GMT
            Not After : Oct 20 22:01:35 2025 GMT
        Subject: CN=b1ef66f10dc1d14d8554d3a12a3e58c419823a5d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:65:5f:fd:ee:ed:9d:5d:78:ed:df:aa:31:65:
                    e4:b3:a4:12:3e:05:b1:1f:cc:84:5f:04:ff:97:be:
                    58:1d:ad:1b:57:c0:4c:3b:24:0f:8b:7c:24:c2:95:
                    bf:02:70:93:24:31:e3:79:ce:0d:13:94:1c:b4:f9:
                    af:77:a9:1c:fa:5f:a2:c9:8f:76:23:e5:ef:3d:8a:
                    65:06:37:63:0e:37:5e:3b:aa:7c:c4:39:c3:72:e4:
                    40:69:8e:d0:50:85:b6:63:7c:7a:8b:07:b0:58:d5:
                    c6:1d:a1:c1:7c:41:4f:27:3d:e2:36:6e:f7:5c:e5:
                    84:7b:dc:d0:b6:47:90:06:3a:71:55:65:62:b8:30:
                    27:be:64:69:bb:9e:f6:e7:09:43:87:2c:ac:f0:e6:
                    ac:c0:ce:b9:e7:ae:c4:9e:c4:ce:fc:c3:0e:ff:90:
                    80:ae:d9:4d:ac:b5:16:b6:33:9b:45:37:53:bc:37:
                    54:0b:34:b1:ed:bf:d3:d1:82:c7:a3:e6:16:39:a9:
                    a0:43:12:13:f8:70:8c:f3:01:38:9a:9e:f5:a8:c7:
                    9e:60:70:83:e7:c0:33:f8:fd:81:26:e2:8a:d1:c5:
                    a3:34:df:86:c6:87:d1:da:3f:40:de:04:e6:90:cc:
                    62:f4:35:40:3f:77:62:81:35:20:bf:7a:49:61:01:
                    9d:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:EF:66:F1:0D:C1:D1:4D:85:54:D3:A1:2A:3E:58:C4:19:82:3A:5D
            X509v3 Authority Key Identifier:
                keyid:05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:24:62:59:28:14:20:5e:27:bd:af:4f:e3:64:5a:68:bf:bd:
         2e:82:a7:eb:0c:1c:da:7a:8c:df:2a:09:2a:ba:c4:c4:ad:2d:
         ed:9c:a3:97:b5:79:ad:32:5e:df:18:33:e2:3d:cd:15:b7:33:
         be:d4:df:d7:83:77:ca:a0:df:eb:fe:67:d6:8e:1a:0a:3d:2e:
         07:06:48:eb:cc:59:e6:91:f5:3f:38:41:41:96:8e:50:3d:81:
         0f:b5:9e:15:d4:1b:9d:7c:96:0c:7d:ec:42:57:98:01:c6:40:
         32:10:b6:2b:9d:20:10:57:2b:59:41:88:e7:fc:28:b5:f9:d3:
         22:64:23:c9:63:16:64:8a:34:55:c9:32:83:93:03:98:1c:c4:
         66:d6:68:42:58:27:8d:e4:0f:f1:38:36:f9:b5:d7:65:d1:19:
         47:24:6f:2d:ec:d0:4c:f8:4e:cb:b6:7f:ce:77:d1:ee:9e:6a:
         c7:ed:93:6c:32:ff:df:1a:2b:ea:2b:4b:32:73:a6:23:77:ea:
         8f:d8:23:67:88:e4:dc:82:9e:f3:bb:fe:b2:24:01:68:f5:00:
         c6:00:f5:17:b2:38:2c:db:8e:5b:5a:c3:20:a7:a2:cd:90:5c:
         d0:4d:9a:01:63:bd:a1:27:db:2f:aa:16:27:76:84:bd:c4:fe:
         86:70:79:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+fgZGPHISEfBpoaBk14R7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NmM2NmQ0NWZlN2UyZjM1NTk5NTcyYTc3NmIxMjc2NGRj
NjlhMDEwHhcNMjUxMDE5MjIwMTM1WhcNMjUxMDIwMjIwMTM1WjAzMTEwLwYDVQQD
EyhiMWVmNjZmMTBkYzFkMTRkODU1NGQzYTEyYTNlNThjNDE5ODIzYTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GVf/e7tnV147d+qMWXks6QSPgWx
H8yEXwT/l75YHa0bV8BMOyQPi3wkwpW/AnCTJDHjec4NE5QctPmvd6kc+l+iyY92
I+XvPYplBjdjDjdeO6p8xDnDcuRAaY7QUIW2Y3x6iwewWNXGHaHBfEFPJz3iNm73
XOWEe9zQtkeQBjpxVWViuDAnvmRpu5725wlDhyys8OaswM65567EnsTO/MMO/5CA
rtlNrLUWtjObRTdTvDdUCzSx7b/T0YLHo+YWOamgQxIT+HCM8wE4mp71qMeeYHCD
58Az+P2BJuKK0cWjNN+GxofR2j9A3gTmkMxi9DVAP3digTUgv3pJYQGd0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHvZvENwdFNhVTToSo+WMQZgjpdMB8GA1UdIwQY
MBaAFAVsZtRf5+LzVZlXKndrEnZNxpoBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQld4bTFGX240dk5WbVZjcWQyc1NkazNHbWdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9jMDJjNWMtZWExNy00ODkzLTg1ZTAt
MDIwNTQ2MGU4OTkwLzEvQld4bTFGX240dk5WbVZjcWQyc1NkazNHbWdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9jMDJjNWMtZWExNy00ODkzLTg1ZTAtMDIwNTQ2MGU4OTkw
LzEvQld4bTFGX240dk5WbVZjcWQyc1NkazNHbWdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUyRiWSgU
IF4nva9P42RaaL+9LoKn6wwc2nqM3yoJKrrExK0t7Zyjl7V5rTJe3xgz4j3NFbcz
vtTf14N3yqDf6/5n1o4aCj0uBwZI68xZ5pH1PzhBQZaOUD2BD7WeFdQbnXyWDH3s
QleYAcZAMhC2K50gEFcrWUGI5/wotfnTImQjyWMWZIo0Vckyg5MDmBzEZtZoQlgn
jeQP8Tg2+bXXZdEZRyRvLezQTPhOy7Z/znfR7p5qx+2TbDL/3xor6itLMnOmI3fq
j9gjZ4jk3IKe87v+siQBaPUAxgD1F7I4LNuOW1rDIKeizZBc0E2aAWO9oSfbL6oW
J3aEvcT+hnB52Q==
-----END CERTIFICATE-----