Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft
File:                     yfcvcKzNptLmEzWoFzDm9u5RPMU.mft (raw, json)
Hash identifier:          V7/GJKQVl4bRPyAAgOWNj5HRXZdRecTVCg8d5FJIaQM=
Subject key identifier:   2D:D4:D4:BA:51:19:C1:57:84:93:7A:E5:4F:9B:90:87:8D:6E:AB:84
Authority key identifier: C9:F7:2F:70:AC:CD:A6:D2:E6:13:35:A8:17:30:E6:F6:EE:51:3C:C5
Certificate issuer:       /CN=c9f72f70accda6d2e61335a81730e6f6ee513cc5
Certificate serial:       0198D65FA176E837597ACA8516B1EB9C5533
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft
Manifest number:          1646
Signing time:             Sat 23 Aug 2025 10:00:48 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:48 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:48 +0000
Files and hashes:         1: yfcvcKzNptLmEzWoFzDm9u5RPMU.crl (hash: NmFNRo/Uk7HyJ/aDmYUbICHnyeGlNsfY4W3RF/Tjtqk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:a1:76:e8:37:59:7a:ca:85:16:b1:eb:9c:55:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c9f72f70accda6d2e61335a81730e6f6ee513cc5
        Validity
            Not Before: Aug 23 10:00:48 2025 GMT
            Not After : Aug 24 10:00:48 2025 GMT
        Subject: CN=2dd4d4ba5119c15784937ae54f9b90878d6eab84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:ae:cd:8e:52:22:90:90:8d:16:44:cc:bc:4f:
                    62:0d:c4:14:c3:59:61:13:cd:80:83:d4:86:15:e7:
                    8a:fc:99:d9:65:4c:9e:8d:9b:0c:be:a0:4e:49:d1:
                    c5:57:d7:04:63:e3:cc:45:e6:b9:dc:db:f5:d4:27:
                    2c:62:34:8c:9e:e3:a9:b1:7d:3e:0f:74:56:e1:03:
                    42:a9:09:36:c3:67:e3:42:9d:1b:2d:9d:ee:06:99:
                    f6:1d:13:00:d7:6e:45:15:b1:5e:7c:3a:e6:5a:c1:
                    c4:c8:50:a2:cb:60:2f:49:4c:5b:a2:16:ae:4c:08:
                    1e:25:4f:f7:14:99:7c:2f:26:bd:7d:2c:60:11:7a:
                    d6:d6:24:a9:32:5b:18:bd:7a:44:5d:7a:c3:6b:cf:
                    a6:99:a1:4f:e2:52:15:fe:00:f4:0f:db:c7:c0:f2:
                    b0:77:42:e6:83:23:bf:23:fa:4f:37:82:1a:c5:72:
                    7f:2a:77:93:cf:5b:5d:ea:18:d1:76:19:f9:f9:63:
                    3e:45:03:76:d1:8c:f4:53:b7:e4:b5:9c:a0:ee:ea:
                    8e:eb:cd:3b:46:d5:86:c8:19:75:55:f4:78:26:d3:
                    f2:0a:26:86:2e:73:1c:e4:2d:a0:7b:fb:eb:fd:56:
                    80:94:e9:a9:76:07:33:9f:e1:52:6d:98:be:4d:b7:
                    58:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:D4:D4:BA:51:19:C1:57:84:93:7A:E5:4F:9B:90:87:8D:6E:AB:84
            X509v3 Authority Key Identifier:
                keyid:C9:F7:2F:70:AC:CD:A6:D2:E6:13:35:A8:17:30:E6:F6:EE:51:3C:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:7c:3a:86:d8:2e:3c:ac:2d:5d:ee:96:25:ba:98:65:9b:57:
         cc:b8:32:c8:2d:19:5c:27:2a:92:35:2b:f7:e7:db:99:b1:b1:
         77:e5:67:87:c9:67:d2:7d:7c:27:7a:c6:25:27:55:43:8d:fc:
         77:b4:2d:74:16:40:0c:ec:0a:e4:62:e3:86:01:b4:6c:2c:21:
         b3:55:92:b5:95:4f:f1:cc:ea:59:1e:b2:15:b0:cd:b0:10:e0:
         b6:6d:08:4f:c3:f8:35:a2:0a:bd:e9:76:81:79:c8:cb:21:3f:
         31:07:6c:e5:ad:cf:38:89:08:0c:49:93:c3:ee:77:a8:18:f3:
         d4:4a:98:34:96:7b:4b:7c:00:9b:bc:7a:4a:e5:fc:e2:a1:95:
         93:67:1c:f0:07:51:d1:3f:d1:df:30:5a:d0:46:1a:46:b0:b9:
         8b:25:1c:23:8f:5e:43:db:fa:d8:70:73:fe:09:03:b2:eb:9c:
         d2:3f:4a:ba:dc:cc:cf:42:8f:d0:56:5e:05:38:31:52:60:81:
         e8:ff:28:b5:7b:f7:d5:4a:f4:24:b6:8c:ed:6f:65:b1:c0:c1:
         68:d2:9c:d1:12:12:16:34:06:ee:9a:c9:1e:8e:d3:21:d5:7c:
         36:56:66:bd:de:5a:1a:97:f9:2c:f9:af:b9:4b:7b:66:3d:a1:
         f5:dd:54:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX6F26DdZesqFFrHrnFUzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZjcyZjcwYWNjZGE2ZDJlNjEzMzVhODE3MzBlNmY2ZWU1
MTNjYzUwHhcNMjUwODIzMTAwMDQ4WhcNMjUwODI0MTAwMDQ4WjAzMTEwLwYDVQQD
EygyZGQ0ZDRiYTUxMTljMTU3ODQ5MzdhZTU0ZjliOTA4NzhkNmVhYjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzK7NjlIikJCNFkTMvE9iDcQUw1lh
E82Ag9SGFeeK/JnZZUyejZsMvqBOSdHFV9cEY+PMRea53Nv11CcsYjSMnuOpsX0+
D3RW4QNCqQk2w2fjQp0bLZ3uBpn2HRMA125FFbFefDrmWsHEyFCiy2AvSUxbohau
TAgeJU/3FJl8Lya9fSxgEXrW1iSpMlsYvXpEXXrDa8+mmaFP4lIV/gD0D9vHwPKw
d0LmgyO/I/pPN4IaxXJ/KneTz1td6hjRdhn5+WM+RQN20Yz0U7fktZyg7uqO6807
RtWGyBl1VfR4JtPyCiaGLnMc5C2ge/vr/VaAlOmpdgczn+FSbZi+TbdYIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC3U1LpRGcFXhJN65U+bkIeNbquEMB8GA1UdIwQY
MBaAFMn3L3CszabS5hM1qBcw5vbuUTzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWZjdmNLek5wdExtRXpXb0Z6RG05dTVSUE1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9hN2IyNjUtNTQ3Ni00OWY0LWJkNGEt
MmY5ZjgxZTkzMjk4LzEveWZjdmNLek5wdExtRXpXb0Z6RG05dTVSUE1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS9hN2IyNjUtNTQ3Ni00OWY0LWJkNGEtMmY5ZjgxZTkzMjk4
LzEveWZjdmNLek5wdExtRXpXb0Z6RG05dTVSUE1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFHw6htgu
PKwtXe6WJbqYZZtXzLgyyC0ZXCcqkjUr9+fbmbGxd+Vnh8ln0n18J3rGJSdVQ438
d7QtdBZADOwK5GLjhgG0bCwhs1WStZVP8czqWR6yFbDNsBDgtm0IT8P4NaIKvel2
gXnIyyE/MQds5a3POIkIDEmTw+53qBjz1EqYNJZ7S3wAm7x6SuX84qGVk2cc8AdR
0T/R3zBa0EYaRrC5iyUcI49eQ9v62HBz/gkDsuuc0j9KutzMz0KP0FZeBTgxUmCB
6P8otXv31Ur0JLaM7W9lscDBaNKc0RISFjQG7prJHo7TIdV8NlZmvd5aGpf5LPmv
uUt7Zj2h9d1UWw==
-----END CERTIFICATE-----